Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B53D89E4408F11F0A0E3D59EDAE4EC9C.roa
File: B53D89E4408F11F0A0E3D59EDAE4EC9C.roa (raw, json)
Hash identifier: qXHu92K2JIufKXbxqlDDyM6Y9Y8SsAzKO/DT+zFVuyk=
Subject key identifier: 3D:18:B9:57:68:C4:E5:CE:4C:1D:4D:53:27:D3:06:63:7D:B0:6A:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0184AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B53D89E4408F11F0A0E3D59EDAE4EC9C.roa
Signing time: Tue 03 Jun 2025 15:30:42 +0000
ROA not before: Tue 03 Jun 2025 15:30:37 +0000
ROA not after: Fri 08 Aug 2025 15:30:37 +0000
asID: 61112
IP address blocks: 154.83.83.0/24 maxlen: 24
154.83.84.0/22 maxlen: 24
154.83.88.0/21 maxlen: 24
154.83.96.0/23 maxlen: 24
154.83.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99499 (0x184ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 15:30:37 2025 GMT
Not After : Aug 8 15:30:37 2025 GMT
Subject: CN=683f1522-7240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e6:9e:54:0e:3c:f4:7f:88:d5:40:98:f8:5c:
ac:28:14:4f:a9:61:fe:d5:d5:d0:bb:ea:73:cd:78:
5e:e3:93:3c:03:12:0a:f5:c3:4a:e4:92:32:19:ea:
a9:bc:c8:44:2e:40:da:6f:1c:84:ac:f5:cf:61:b6:
56:f0:14:38:00:37:bc:fe:f0:a9:20:ee:b5:2a:f4:
6f:af:b2:cc:da:83:a2:2e:75:86:11:93:0f:c2:61:
3e:a0:eb:35:00:7d:07:30:f1:9f:62:0e:93:9f:e0:
e8:4b:48:52:3b:d9:94:94:98:6d:4d:04:7e:a2:15:
32:1b:a7:89:89:c3:05:ab:f7:e0:cc:fe:a6:c4:e9:
14:2c:8e:ce:b4:31:a9:e9:42:bd:2f:8f:71:ba:da:
aa:72:a2:30:a2:11:86:fd:34:aa:2d:d8:36:ed:c6:
73:a2:33:60:72:3d:e0:5f:6a:e8:b7:f0:27:7a:95:
23:3f:44:4d:03:a4:3e:5a:5e:09:6d:a0:74:a4:25:
0a:02:b8:9c:eb:4c:a1:54:c7:33:31:37:71:cb:07:
36:e3:00:93:ad:59:6f:f8:7b:1a:a4:49:3d:5b:a3:
ef:a3:2b:65:ee:60:95:22:97:e9:95:fa:5f:8d:75:
f9:cb:4a:b8:f5:86:7f:05:02:0e:e3:2a:f9:0d:d3:
83:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:18:B9:57:68:C4:E5:CE:4C:1D:4D:53:27:D3:06:63:7D:B0:6A:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B53D89E4408F11F0A0E3D59EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.83.0-154.83.98.255
Signature Algorithm: sha256WithRSAEncryption
b3:6b:62:db:90:87:c5:7a:ec:6d:aa:eb:30:0f:b6:b8:c1:dd:
ed:b7:22:2e:fd:f9:af:56:2a:8c:5e:a3:0e:25:fe:ad:00:e8:
bb:7c:7a:2c:52:cd:69:89:68:62:31:62:93:2e:61:f9:f1:c7:
c6:a6:22:4b:58:6f:29:47:f3:34:33:f2:a6:86:87:54:d3:c3:
7e:18:1f:39:c5:bd:ea:84:14:9b:37:18:0d:97:f9:c5:3e:11:
c3:63:a4:7d:e5:dc:fb:c7:5b:b2:7b:b0:46:51:a8:a6:be:79:
ae:4f:16:5f:e0:95:32:11:00:c1:d0:4d:d4:0a:1e:80:ee:13:
6c:9b:64:34:80:62:70:63:fb:e7:b2:ec:ff:93:0f:1e:67:52:
ec:60:f0:7f:1a:bd:b0:3f:24:01:a3:30:04:69:b5:eb:51:f6:
a6:94:64:79:49:12:a7:e7:d1:e0:27:b8:e5:32:d5:21:14:a3:
cb:be:b3:98:dc:62:75:1b:2d:41:4c:05:cb:dd:42:31:07:49:
ca:98:b4:b6:9e:2e:80:f4:40:74:a7:c8:78:01:4d:7b:2f:96:
13:c4:27:73:2f:a8:78:af:f8:b7:cb:11:b2:e7:3f:70:22:dd:
1c:92:bd:4c:55:8d:fd:ba:17:fc:49:eb:6e:7e:c1:83:84:5a:
bc:77:41:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:44:44 2025 by rpki-client