Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF73E984FE4611EF90373D5E762E951A.roa
File: BF73E984FE4611EF90373D5E762E951A.roa (raw, json)
Hash identifier: h1TidaM7BQeDXFUKC2907RcKJtR5sWBGk4Xwz46CEJQ=
Subject key identifier: E5:4C:7E:63:6A:D9:F7:C5:40:E4:02:B3:51:5E:6A:86:C6:9B:7B:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01734C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF73E984FE4611EF90373D5E762E951A.roa
Signing time: Tue 11 Mar 2025 07:02:08 +0000
ROA not before: Tue 11 Mar 2025 07:02:05 +0000
ROA not after: Thu 17 Apr 2025 07:02:05 +0000
asID: 54801
IP address blocks: 154.81.61.0/24 maxlen: 24
154.81.140.0/24 maxlen: 24
154.81.161.0/24 maxlen: 24
154.81.164.0/24 maxlen: 24
154.81.178.0/24 maxlen: 24
154.83.128.0/24 maxlen: 24
154.83.135.0/24 maxlen: 24
154.83.137.0/24 maxlen: 24
154.83.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95052 (0x1734c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 11 07:02:05 2025 GMT
Not After : Apr 17 07:02:05 2025 GMT
Subject: CN=67cfdff0-2e26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5d:33:4e:47:a3:2b:7f:7c:dd:db:e1:3a:29:
01:c5:da:a8:a8:44:a1:84:f7:42:18:95:af:58:2c:
93:fd:f6:dd:c4:e1:12:72:67:f0:86:ce:cc:fa:9f:
c3:ae:66:36:31:d3:30:fd:11:36:09:93:27:e2:e6:
01:10:79:bf:06:af:2b:44:05:d3:cd:d3:ce:fb:75:
e8:96:48:00:f3:7a:e6:e4:82:9d:25:c3:a4:0d:2e:
c1:88:a0:a9:60:1c:0d:a2:ec:cd:db:d8:2f:e4:db:
c9:63:41:e5:4c:aa:ad:af:28:3c:c8:fa:79:79:b3:
f3:3c:db:ac:60:a2:91:c6:5e:58:a6:f0:bf:33:51:
31:52:f5:60:5c:77:16:c1:1f:50:ba:2b:d3:f6:37:
fb:ff:de:7a:0d:4d:fe:16:fc:00:fa:fe:48:75:36:
c9:ca:ac:da:7e:8f:1e:9d:97:ff:c2:71:ad:4c:d9:
25:46:1b:15:07:e3:d8:88:5f:d3:3f:44:c5:1c:f7:
dd:9a:9c:ca:f6:5c:a1:46:e6:11:ce:a0:cc:76:fe:
91:55:78:a7:ef:91:de:56:bd:99:47:8e:1a:81:9a:
f2:ee:21:36:e8:8a:5f:28:94:9d:72:c0:53:1c:51:
fe:ad:7f:1a:4a:10:8a:a7:5f:09:0e:1e:95:c8:cf:
9c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:4C:7E:63:6A:D9:F7:C5:40:E4:02:B3:51:5E:6A:86:C6:9B:7B:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF73E984FE4611EF90373D5E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.61.0/24
154.81.140.0/24
154.81.161.0/24
154.81.164.0/24
154.81.178.0/24
154.83.128.0/24
154.83.135.0/24
154.83.137.0/24
154.83.141.0/24
Signature Algorithm: sha256WithRSAEncryption
90:46:8b:32:68:a7:2f:a6:67:59:71:16:c4:33:8a:95:6e:95:
b2:7e:69:43:71:74:3a:5f:b2:b1:fa:e1:3e:4d:e5:57:1c:93:
a2:fc:f3:00:41:20:00:98:1e:0b:66:e7:79:aa:1e:55:b1:3f:
e5:ea:56:b2:bb:f0:7d:9a:9f:5f:de:98:6e:ca:8e:80:e4:c3:
50:d2:e7:15:af:f2:40:54:fb:ad:ec:bc:aa:12:f8:7d:92:5c:
1f:1f:c1:46:de:64:f0:f6:27:52:b9:64:40:db:f3:60:e6:8d:
24:eb:81:f7:be:d0:f5:b8:8d:9e:2b:d9:9d:ff:8a:79:4f:9e:
ce:95:2c:26:78:8f:18:a2:df:f5:76:c8:3e:f4:e0:a1:8c:49:
48:33:1a:1d:66:41:24:27:a7:1f:06:e6:6d:46:35:96:ee:1e:
56:90:64:57:03:20:1e:83:8e:dc:0d:ed:2c:fe:31:ca:02:dc:
10:80:9f:96:9a:27:3b:bd:c6:7c:a2:c1:03:7a:ad:cb:26:84:
97:fa:fa:04:0e:e5:fb:ff:86:e9:d5:a5:eb:87:0f:ba:85:55:
5c:6e:1e:e2:23:86:9e:f3:b1:1a:3c:96:cf:1c:f3:69:ba:64:
15:3c:fb:13:fe:e3:45:db:aa:78:3a:45:7b:7d:2e:4d:05:18:
56:45:f5:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:04:42 2025 by rpki-client