Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE8BEAA037EC11F08904B2ECDAE4EC9C.roa
File: BE8BEAA037EC11F08904B2ECDAE4EC9C.roa (raw, json)
Hash identifier: s0jPGKljd9NnPs/4+Tjf6LLCHNScjqLPtLu4zCmxp3I=
Subject key identifier: 7B:91:58:48:0B:3B:CA:45:94:37:7C:C2:E2:01:30:25:5C:94:49:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01822B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE8BEAA037EC11F08904B2ECDAE4EC9C.roa
Signing time: Fri 23 May 2025 15:44:00 +0000
ROA not before: Fri 23 May 2025 15:43:55 +0000
ROA not after: Mon 30 Jun 2025 15:43:55 +0000
asID: 202656
IP address blocks: 154.200.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 07:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98859 (0x1822b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 15:43:55 2025 GMT
Not After : Jun 30 15:43:55 2025 GMT
Subject: CN=683097c0-0584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f7:57:36:c3:c9:1e:b1:9b:8c:9a:fe:da:5a:
38:40:3b:59:f4:9d:c1:ab:c0:a5:80:84:5e:14:3c:
be:40:3d:44:ed:06:b8:26:c6:a8:30:62:d3:3c:34:
28:2e:31:5c:88:78:19:0f:02:0a:97:b0:bf:25:2f:
d2:90:57:11:51:97:d7:d0:28:bc:f6:4a:19:eb:7c:
e1:6a:9e:c1:be:89:94:2d:34:3b:2f:b6:59:34:b6:
5b:16:6c:c9:a6:9a:8c:4d:f4:61:cc:3b:de:25:99:
41:0a:b1:13:86:54:5a:90:2b:5b:db:8a:26:37:af:
d2:fe:be:39:1a:30:35:c7:d8:ea:6f:2f:6f:86:5e:
ce:66:00:ab:4a:a1:99:e4:e3:0c:09:77:1e:67:73:
d2:c6:ba:f1:c2:da:cc:78:19:30:3a:98:3b:1b:01:
e4:dd:e8:0f:08:4b:d7:37:30:41:f2:01:c6:25:4f:
38:19:79:15:3b:6b:ec:15:7c:43:02:d5:71:43:2d:
fc:b9:bb:2b:fb:09:0d:a7:84:99:e8:27:11:b6:38:
db:b2:c9:fa:91:4c:af:03:9f:d5:0a:e9:0a:bd:7d:
e5:8d:dc:c9:0f:1b:7d:8f:cd:4b:81:1b:90:84:f0:
67:61:c4:6b:b6:a3:df:f1:de:dd:ad:98:5f:62:05:
56:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:91:58:48:0B:3B:CA:45:94:37:7C:C2:E2:01:30:25:5C:94:49:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE8BEAA037EC11F08904B2ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.227.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:4d:fc:21:3c:35:b2:93:09:97:b5:89:4b:fe:de:7e:10:42:
af:31:d4:f6:ee:2e:9e:9f:af:86:f9:cb:a5:70:62:fa:04:8a:
55:d6:10:aa:f9:30:b1:61:63:d6:62:1b:3e:51:cf:c9:1c:de:
06:0c:56:24:1f:a4:13:22:56:4a:8b:01:1f:97:48:89:2f:dd:
55:e0:3b:bc:8e:80:f9:74:db:d3:65:25:5d:55:e2:79:6f:12:
e6:51:c5:af:25:5f:1c:79:a5:04:d2:35:70:2a:ce:35:a7:fd:
3a:0b:42:55:60:db:f6:78:2a:30:6d:0b:91:2c:17:92:01:15:
f7:d2:01:95:ef:4f:4f:f8:83:4a:7b:70:c9:09:0d:42:0d:09:
bb:b6:34:0c:25:27:7c:5b:8f:b4:c8:5f:66:4e:e4:66:cf:38:
55:5a:7b:a9:55:70:56:7d:45:c2:0c:4b:b8:06:94:ed:5f:a7:
cc:f7:0b:84:2e:5a:85:e5:9a:99:b7:03:34:a8:94:ca:6d:d5:
13:85:ac:28:57:11:07:57:ba:23:d9:5e:c5:89:98:36:00:1e:
77:df:e4:b3:bf:ca:1b:1c:bc:ea:2b:f5:bf:20:f3:52:95:db:
b9:c8:6e:8e:50:94:81:50:2e:65:48:9e:ca:0c:b2:c1:06:d1:
d4:9b:73:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:28:16 2025 by rpki-client