Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F1DEED0097511F091243884762E951A.roa
File: 8F1DEED0097511F091243884762E951A.roa (raw, json)
Hash identifier: Mp1RM82hnv83Y3oeAESYKYxsPvsNwgGl8TD4V4qO/l8=
Subject key identifier: 7D:EC:BF:DB:87:1E:25:13:BB:11:F4:8A:6B:4F:37:61:C2:00:53:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01763A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F1DEED0097511F091243884762E951A.roa
Signing time: Tue 25 Mar 2025 12:34:57 +0000
ROA not before: Tue 25 Mar 2025 12:34:53 +0000
ROA not after: Tue 03 Jun 2025 12:34:53 +0000
asID: 63139
IP address blocks: 154.93.73.0/24 maxlen: 24
154.93.75.0/24 maxlen: 24
154.93.76.0/24 maxlen: 24
154.93.77.0/24 maxlen: 24
154.93.78.0/24 maxlen: 24
154.93.79.0/24 maxlen: 24
154.93.80.0/24 maxlen: 24
154.93.81.0/24 maxlen: 24
154.93.82.0/24 maxlen: 24
154.93.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95802 (0x1763a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 25 12:34:53 2025 GMT
Not After : Jun 3 12:34:53 2025 GMT
Subject: CN=67e2a2f0-d32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:97:27:c7:f7:b6:51:5a:10:6c:2a:6d:8e:b1:
fe:0c:97:3a:5a:a0:f8:6b:6c:24:27:eb:d1:41:e9:
3c:b6:c6:59:0c:8a:39:82:c2:00:a0:3c:63:61:c4:
c8:85:08:0d:21:bf:5c:cf:b1:02:a7:24:0b:b3:08:
13:cb:23:03:b5:1a:2d:3c:42:87:aa:39:46:54:a9:
9c:0c:e8:af:dd:b1:49:e6:ea:6d:49:43:75:35:56:
e5:63:06:6f:e9:44:b6:aa:89:f7:eb:8f:6b:5b:a2:
12:a4:3f:41:3e:f8:b1:dc:54:02:26:25:69:6b:c7:
9e:d0:02:fb:f1:15:1d:c9:fa:8b:e4:5f:81:7b:5f:
f1:6c:dd:5a:46:86:76:51:1f:9b:aa:e6:8c:4f:ae:
15:eb:e8:30:fd:f0:75:16:15:03:6a:69:8b:51:09:
41:3b:03:d3:7e:de:a5:b5:18:09:8b:a4:8b:06:7f:
7f:0e:0b:e9:02:ec:8d:c9:f0:e3:5f:77:28:1b:da:
b3:d8:78:82:a5:86:6b:f3:3f:8d:74:a4:19:68:fb:
f2:65:36:02:d0:28:ad:ce:68:48:e5:62:25:fe:8d:
f8:9a:81:b3:34:52:d7:3a:b8:49:bc:26:27:e0:ef:
38:7d:d0:d9:e3:38:51:6f:12:0c:ba:4d:cd:1f:a3:
b9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:EC:BF:DB:87:1E:25:13:BB:11:F4:8A:6B:4F:37:61:C2:00:53:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F1DEED0097511F091243884762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.73.0/24
154.93.75.0-154.93.83.255
Signature Algorithm: sha256WithRSAEncryption
16:c6:99:af:43:d2:7e:4e:e7:ba:e4:29:a5:0f:21:73:24:50:
c1:4c:fe:99:fa:d5:69:56:50:fc:03:ad:e8:5e:d0:c4:4a:23:
d7:67:84:f5:fc:4e:ee:e5:d9:11:ad:bd:7b:17:b4:78:e1:4e:
77:f3:5f:8e:0e:c2:95:58:2c:2a:52:25:68:13:41:48:ba:3a:
01:99:bc:39:bc:7a:94:c1:d1:58:35:a9:94:79:5c:42:7a:c9:
82:f1:97:7a:65:3d:58:85:27:60:21:6b:61:50:30:de:3b:09:
ff:7c:41:c7:cf:aa:bc:a6:19:01:9b:e3:dd:48:12:6f:27:4e:
91:f7:37:ad:44:ee:76:9f:6f:c7:6a:48:7e:b2:00:f9:70:87:
58:8c:3c:b7:d4:6e:ce:0b:13:43:75:52:3b:65:2d:31:66:2d:
52:42:51:6b:4b:3c:d7:db:3e:e5:bf:3c:cd:de:10:22:b4:1f:
0f:73:02:86:d4:ac:c7:36:b0:48:e6:57:7c:cc:3d:4f:a9:73:
46:95:b7:d1:bb:f2:0f:6a:e1:3d:63:c4:79:84:e9:5a:e7:7d:
3d:bf:0e:3e:1d:08:ec:af:aa:5f:74:a7:74:26:69:dc:b4:0a:
18:be:f7:16:9b:5b:6c:d5:50:31:ef:00:1a:8b:62:58:f7:ca:
68:2e:fd:47
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAXY6MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzI1MTIzNDUzWhcNMjUwNjAzMTIzNDUzWjAYMRYw
FAYDVQQDEw02N2UyYTJmMC1kMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoZcnx/e2UVoQbCptjrH+DJc6WqD4a2wkJ+vRQek8tsZZDIo5gsIAoDxj
YcTIhQgNIb9cz7ECpyQLswgTyyMDtRotPEKHqjlGVKmcDOiv3bFJ5uptSUN1NVbl
YwZv6US2qon3649rW6ISpD9BPvix3FQCJiVpa8ee0AL78RUdyfqL5F+Be1/xbN1a
RoZ2UR+bquaMT64V6+gw/fB1FhUDammLUQlBOwPTft6ltRgJi6SLBn9/DgvpAuyN
yfDjX3coG9qz2HiCpYZr8z+NdKQZaPvyZTYC0CitzmhI5WIl/o34moGzNFLXOrhJ
vCYn4O84fdDZ4zhRbxIMuk3NH6O5swIDAQABo4ICszCCAq8wHQYDVR0OBBYEFH3s
v9uHHiUTuxH0imtPN2HCAFOlMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84RjFERUVEMDA5NzUxMUYwOTEyNDM4ODQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAml1JMAwDBACaXUsDBAKa
XVAwDQYJKoZIhvcNAQELBQADggEBABbGma9D0n5O57rkKaUPIXMkUMFM/pn61WlW
UPwDrehe0MRKI9dnhPX8Tu7l2RGtvXsXtHjhTnfzX44OwpVYLCpSJWgTQUi6OgGZ
vDm8epTB0Vg1qZR5XEJ6yYLxl3plPViFJ2Aha2FQMN47Cf98QcfPqrymGQGb491I
Em8nTpH3N61E7nafb8dqSH6yAPlwh1iMPLfUbs4LE0N1UjtlLTFmLVJCUWtLPNfb
PuW/PM3eECK0Hw9zAobUrMc2sEjmV3zMPU+pc0aVt9G78g9q4T1jxHmE6VrnfT2/
Dj4dCOyvql90p3Qmady0Chi+9xabW2zVUDHvABqLYlj3ymgu/Uc=
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:45 2025 by rpki-client