Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A69D4ECC040011F082ADFD9B762E951A.roa
File: A69D4ECC040011F082ADFD9B762E951A.roa (raw, json)
Hash identifier: IdyyB+OsO2XCIWiFjBItSGaOtTpYWYv3vpFpFnylo/g=
Subject key identifier: CE:9B:AF:73:52:72:9F:E9:05:32:39:4C:AC:6E:9E:1B:CA:D4:0F:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01749E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A69D4ECC040011F082ADFD9B762E951A.roa
Signing time: Tue 18 Mar 2025 13:55:29 +0000
ROA not before: Tue 18 Mar 2025 13:55:25 +0000
ROA not after: Wed 30 Apr 2025 13:55:25 +0000
asID: 62240
IP address blocks: 154.194.4.0/24 maxlen: 24
154.194.7.0/24 maxlen: 24
154.194.38.0/24 maxlen: 24
154.194.70.0/24 maxlen: 24
154.194.71.0/24 maxlen: 24
154.194.86.0/24 maxlen: 24
154.194.87.0/24 maxlen: 24
154.195.0.0/24 maxlen: 24
154.195.1.0/24 maxlen: 24
154.195.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Apr 2025 00:06:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95390 (0x1749e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 18 13:55:25 2025 GMT
Not After : Apr 30 13:55:25 2025 GMT
Subject: CN=67d97b51-b673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:10:00:8b:f8:c3:0d:5b:3f:14:26:5f:f0:da:
2c:d8:9c:ce:70:ae:32:91:8b:72:4f:c7:2a:ef:5c:
17:d1:b9:d3:26:12:9b:38:eb:c3:10:09:20:9a:d4:
fa:43:33:59:46:fe:73:39:bb:a6:a1:3a:3e:86:62:
93:ff:e9:97:7b:a2:df:c8:bf:17:a3:cf:ba:31:18:
00:1a:d0:6a:33:4a:22:a9:c3:d3:c5:5f:33:71:45:
66:e1:0c:e3:02:c6:31:bd:da:6d:0a:a8:5a:27:95:
6b:b7:f1:05:45:4b:6a:3f:b8:7e:c3:9f:e9:33:c4:
3e:ed:99:20:51:a8:a1:a1:32:24:03:ee:94:86:3d:
de:10:27:8f:a1:b9:a6:91:6a:39:61:26:30:00:eb:
42:d4:98:e4:ec:a4:4b:70:5d:bc:32:c5:2c:de:e7:
50:f7:ef:9f:2e:da:58:6a:07:0c:9d:48:a3:15:87:
c5:41:a7:43:b5:65:90:61:64:ea:d9:62:0b:a9:85:
8a:58:d0:1b:07:63:08:6b:58:d9:d7:76:b8:7a:14:
4b:05:d6:c9:21:0f:39:dd:94:71:95:ce:80:0a:bf:
da:b4:c1:5e:37:f2:c4:e0:05:f4:56:63:16:ff:e3:
08:6c:d2:5c:c9:a7:29:1f:0e:fb:05:98:3d:d9:8d:
53:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:9B:AF:73:52:72:9F:E9:05:32:39:4C:AC:6E:9E:1B:CA:D4:0F:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A69D4ECC040011F082ADFD9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.4.0/24
154.194.7.0/24
154.194.38.0/24
154.194.70.0/23
154.194.86.0/23
154.195.0.0/23
154.195.100.0/24
Signature Algorithm: sha256WithRSAEncryption
30:76:66:d5:37:2a:8c:8a:ed:4f:22:bf:1e:72:41:9b:d3:ef:
93:ea:83:a0:4b:9f:c6:21:38:d8:38:47:4c:3a:42:8e:cd:d4:
c3:ca:d7:62:4b:d2:04:b2:f3:5f:db:5f:91:5d:67:7a:73:e8:
ff:01:7f:8a:26:b5:be:7e:2a:00:ae:d8:f8:64:9f:47:82:e4:
fd:16:9a:9a:ac:ab:75:f7:db:b9:53:d6:08:52:4a:e8:0d:06:
e0:85:68:f1:f5:cd:e1:10:b2:93:0c:89:a1:f1:81:43:dc:6e:
e1:cf:52:1f:62:c5:40:8f:00:68:40:41:86:e5:00:7a:4d:f7:
55:49:b4:41:b5:35:23:a1:cc:e3:ea:11:78:6f:08:fd:4b:f1:
6a:43:c2:a4:11:7e:4c:49:05:34:21:03:01:0d:03:c3:da:33:
d6:27:b2:77:e9:d9:f2:82:8d:de:f5:6e:36:39:44:ff:66:1b:
d5:5d:04:dd:0f:77:c2:3c:c0:6b:61:ba:1c:03:85:ba:d8:52:
c1:43:36:b8:fa:bc:60:35:a9:fe:4b:5d:57:25:a1:75:da:04:
82:cf:7d:ad:c1:57:04:c4:1b:1a:7f:2e:52:5e:7d:a1:71:4c:
37:79:2a:45:c2:0e:92:4f:51:ec:71:ea:64:30:f0:49:56:bf:
02:b8:f6:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 22:29:39 2025 by rpki-client