Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCDB08BC088511F0B0BA014E762E951A.roa
File: BCDB08BC088511F0B0BA014E762E951A.roa (raw, json)
Hash identifier: 7QHiCGlphPpgzHyHpkPM/WZdwMERzmybo94UbTBP0eU=
Subject key identifier: A7:F3:23:55:FF:A5:9C:70:8F:16:D9:F7:4E:AA:7F:3C:BF:0D:35:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0175C6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCDB08BC088511F0B0BA014E762E951A.roa
Signing time: Mon 24 Mar 2025 07:58:14 +0000
ROA not before: Mon 24 Mar 2025 07:58:10 +0000
ROA not after: Thu 01 May 2025 07:58:10 +0000
asID: 395793
IP address blocks: 154.82.162.0/23 maxlen: 24
154.82.164.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95686 (0x175c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 24 07:58:10 2025 GMT
Not After : May 1 07:58:10 2025 GMT
Subject: CN=67e11096-f059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a7:aa:c7:92:45:10:52:49:95:54:11:7e:65:
47:dd:e0:57:5a:9e:31:0f:e7:30:0c:07:c5:e7:cd:
e6:d7:3a:78:a6:37:18:c5:c4:15:e5:c0:52:ef:1a:
4f:a0:06:1a:6d:f1:20:6c:28:b0:f3:66:42:85:54:
c6:bf:3b:56:8a:45:91:ab:9e:df:a8:55:bd:63:11:
1f:ad:1b:a0:5f:4b:b8:ed:30:ae:22:ba:85:e8:70:
91:a9:28:cd:60:ba:28:a8:d6:0d:c5:5f:c9:2f:9b:
a0:32:9b:51:f6:01:de:af:1f:cb:8d:19:14:d7:a3:
51:19:4f:07:ac:bc:08:4b:3a:88:b6:0c:ec:74:c3:
9c:c4:69:d5:f8:cd:b4:1a:6a:dc:fe:53:d0:c9:ea:
73:c9:4d:35:44:2b:20:af:1f:c5:06:bc:ff:d4:79:
d5:71:d0:dd:97:46:77:be:59:50:a6:2c:4c:d0:7f:
63:7d:e0:6b:71:ce:74:13:e2:5a:10:e4:2d:36:12:
b0:99:c4:f4:69:68:3d:cb:ec:dd:c2:93:41:78:18:
ae:a6:bf:be:1b:42:5d:f8:9d:5e:fb:94:f2:ce:42:
d2:66:ec:61:22:2a:91:48:b6:21:e2:89:67:07:eb:
9e:3d:be:6a:81:73:0b:87:d4:58:d4:22:08:9a:8b:
f9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F3:23:55:FF:A5:9C:70:8F:16:D9:F7:4E:AA:7F:3C:BF:0D:35:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCDB08BC088511F0B0BA014E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.162.0-154.82.167.255
Signature Algorithm: sha256WithRSAEncryption
d5:42:1c:4a:af:d0:c6:d6:bd:7c:dd:48:aa:72:fd:78:52:98:
8c:11:51:4c:46:ff:17:81:06:33:b3:04:ae:89:40:b0:64:50:
67:be:9e:38:46:98:50:e7:26:10:7a:2d:dc:01:88:fd:c1:40:
27:bd:3c:05:29:e2:5a:52:c2:15:b7:73:5b:ff:99:6a:eb:24:
9c:a7:0b:22:02:36:13:ea:50:ed:17:0d:fa:84:6a:e9:2c:b9:
71:e3:70:31:44:f5:4c:fc:8a:f6:d8:74:dc:d2:73:69:5f:0a:
98:68:b3:9a:df:1c:0f:4e:a7:83:d9:6c:e9:2b:8a:fa:d8:ed:
9b:a9:25:d0:35:66:af:af:c1:d8:4b:f4:27:02:4b:3b:48:92:
2d:03:15:9c:0a:2d:82:1e:62:a8:60:b1:07:fe:69:13:6a:b5:
df:3a:4a:53:b8:7e:8a:3b:64:ad:e5:9d:58:8f:0c:d9:25:e2:
32:2c:af:26:5d:9e:b7:76:4b:a8:e4:f7:29:a3:4c:9e:0f:d0:
7d:16:68:ce:fd:09:c5:04:30:99:a6:d7:45:fb:bc:5e:2a:1b:
d4:c6:8e:8d:2c:0c:5f:73:c9:73:a7:d0:02:4e:2f:11:cd:6b:
db:d7:96:d7:d1:c7:84:89:72:2c:9f:d7:0a:83:6a:55:58:7b:
46:4a:e5:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:14:50 2025 by rpki-client