Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92C31FC4040211F0B07410A5762E951A.roa
File: 92C31FC4040211F0B07410A5762E951A.roa (raw, json)
Hash identifier: Z148WXGnl1TSvkdFiPixP2nCGT1x1HV3tP03NQv3fQA=
Subject key identifier: 1B:C3:62:7E:AE:0B:6D:DF:CF:74:BE:9F:11:09:1F:33:EC:7B:0E:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0174A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92C31FC4040211F0B07410A5762E951A.roa
Signing time: Tue 18 Mar 2025 14:09:15 +0000
ROA not before: Tue 18 Mar 2025 14:09:11 +0000
ROA not after: Thu 01 May 2025 14:09:11 +0000
asID: 62240
IP address blocks: 154.223.209.0/24 maxlen: 24
154.223.210.0/24 maxlen: 24
154.223.211.0/24 maxlen: 24
154.223.212.0/24 maxlen: 24
154.223.219.0/24 maxlen: 24
154.223.220.0/24 maxlen: 24
154.223.221.0/24 maxlen: 24
154.223.222.0/24 maxlen: 24
154.223.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Apr 2025 00:06:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95394 (0x174a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 18 14:09:11 2025 GMT
Not After : May 1 14:09:11 2025 GMT
Subject: CN=67d97e8b-d754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:22:de:69:f4:ef:ec:8a:5c:12:c3:ee:18:4d:
70:26:a6:17:b4:68:03:ed:e1:5f:f6:6a:ba:92:a4:
b3:83:52:43:89:f6:93:dd:4e:f2:43:b3:6f:c2:a9:
40:92:52:6f:12:4b:53:d3:78:34:10:83:b7:05:79:
07:bc:9f:3c:71:96:19:fd:da:35:70:d5:03:d1:b7:
f0:2b:a2:90:36:26:04:88:f0:c5:ac:51:6d:de:a1:
5a:c5:af:02:69:60:ab:85:36:16:2c:21:59:6c:d8:
59:fb:ca:74:2f:eb:ce:c0:94:e3:c9:73:e5:a9:44:
65:26:9c:12:31:5b:49:a7:f0:c3:e6:92:55:cd:c2:
1e:18:e2:4d:7a:68:60:4b:66:d2:7a:46:2a:4e:58:
ff:92:7b:ec:ab:ae:2c:cc:7d:98:fc:8c:0f:4f:1b:
44:f2:16:bf:0c:8e:6b:db:d0:4a:59:54:ac:81:a8:
e8:92:7b:c0:00:16:6a:1c:6a:cc:58:b1:e8:00:77:
9c:92:15:2b:eb:e8:f0:57:bb:ae:5d:dd:2d:f8:3e:
30:21:8d:e6:ce:a2:d8:7c:8d:ab:87:e4:c1:67:5e:
63:5c:81:8e:55:54:8a:e6:a5:7a:4b:2b:f6:72:c1:
d6:58:64:48:c0:1f:37:f3:76:80:84:73:94:88:76:
22:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C3:62:7E:AE:0B:6D:DF:CF:74:BE:9F:11:09:1F:33:EC:7B:0E:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/92C31FC4040211F0B07410A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.209.0-154.223.212.255
154.223.219.0-154.223.223.255
Signature Algorithm: sha256WithRSAEncryption
1b:c4:81:f1:02:d0:09:23:71:23:86:4a:6c:5e:84:78:f2:e5:
c8:d8:da:b2:14:e8:6d:a3:23:c8:5f:3d:27:33:7a:51:2e:8f:
5f:23:4b:af:de:c9:99:37:52:ab:e1:ee:78:56:c3:70:1b:34:
85:15:1b:38:00:03:90:38:2f:42:c6:0a:31:33:62:47:ed:5d:
89:24:92:cc:90:54:06:25:67:a0:ba:74:69:6f:ab:98:47:03:
a5:7c:73:ef:67:e6:23:73:1c:01:3b:de:d6:fe:44:3d:15:ce:
7a:04:bf:36:28:0a:1e:a7:4d:eb:b1:3c:ae:8b:63:32:6b:7f:
0d:68:4c:35:38:3b:c7:05:fd:65:e1:ca:af:fa:74:1b:7e:79:
cd:da:71:72:d2:fc:55:cc:a9:eb:a0:00:a2:ae:91:c7:0d:a1:
50:88:d9:db:d0:a5:28:b0:e6:6c:52:da:89:fe:e6:4a:89:ed:
76:ae:22:aa:87:f4:29:33:f6:73:10:18:43:36:83:de:37:2a:
94:8f:d0:8a:da:4e:09:f9:0f:12:43:ba:39:e1:10:4d:c4:24:
b6:b7:77:18:04:0a:6b:9c:06:e4:3a:d8:e1:e3:83:c9:61:3c:
25:77:23:57:5f:ee:02:c3:45:a7:aa:e4:42:be:6f:1f:c0:85:
14:eb:31:e2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Apr 3 22:34:20 2025 by rpki-client