Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CAA70090408911F08B691979DAE4EC9C.roa
File: CAA70090408911F08B691979DAE4EC9C.roa (raw, json)
Hash identifier: n7KDvjjCjYvW4DKjf7Xzml7M3EAy9c9gkjfJECwLhZA=
Subject key identifier: F2:CF:B5:A1:5D:56:0D:29:45:91:80:6C:3D:FD:6D:24:6E:00:70:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01849D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CAA70090408911F08B691979DAE4EC9C.roa
Signing time: Tue 03 Jun 2025 14:48:21 +0000
ROA not before: Tue 03 Jun 2025 14:48:16 +0000
ROA not after: Sun 03 Aug 2025 14:48:16 +0000
asID: 63139
IP address blocks: 154.94.90.0/24 maxlen: 24
154.94.91.0/24 maxlen: 24
154.94.92.0/24 maxlen: 24
154.94.93.0/24 maxlen: 24
154.94.96.0/24 maxlen: 24
154.94.97.0/24 maxlen: 24
154.94.98.0/24 maxlen: 24
154.94.99.0/24 maxlen: 24
154.94.100.0/24 maxlen: 24
154.94.125.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99485 (0x1849d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 14:48:16 2025 GMT
Not After : Aug 3 14:48:16 2025 GMT
Subject: CN=683f0b35-b296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:cb:d9:7d:d0:30:26:61:80:74:87:ce:cf:9f:
df:7c:8a:1f:ec:cb:b6:09:a8:eb:36:55:2e:5e:06:
2f:5a:db:b5:a8:8f:0a:0e:8a:8d:fc:29:24:30:2e:
75:e2:87:f2:50:65:4c:c9:02:64:5a:73:2e:7b:b8:
91:fd:63:98:4b:8d:d5:9d:c9:89:4f:3f:76:0e:2e:
b6:a7:e2:19:8a:c4:74:93:8b:65:ab:cd:cb:6b:3b:
9a:df:68:4c:d3:c6:70:df:87:b7:d8:af:03:3e:c9:
24:06:5e:76:91:96:b6:57:28:05:4d:42:fe:88:39:
9d:d9:ae:8a:ee:b1:51:76:47:cb:ce:bd:84:c9:4d:
6c:16:5c:60:8a:ff:83:c8:ee:78:3e:4a:7e:75:0d:
ed:9c:e1:ed:67:ee:5e:ac:40:78:39:30:e0:ef:2d:
df:e6:e2:c3:ec:96:aa:7b:ca:d7:e5:56:95:be:d2:
b5:83:2d:cc:96:41:0d:ee:9a:ba:40:50:b3:31:7b:
d9:ab:33:f2:c7:12:8b:dd:5f:ff:78:10:d2:ff:93:
b2:92:35:5b:0b:86:43:54:f4:b6:e5:0b:91:4c:8e:
9c:80:a6:02:6b:6d:a8:4a:95:32:74:06:e9:97:10:
80:11:57:ac:3e:7e:db:b4:70:89:b6:5a:40:da:d5:
b0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:CF:B5:A1:5D:56:0D:29:45:91:80:6C:3D:FD:6D:24:6E:00:70:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CAA70090408911F08B691979DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.90.0-154.94.93.255
154.94.96.0-154.94.100.255
154.94.125.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:71:b4:a1:29:3d:d9:0a:77:25:eb:ac:1c:f6:80:69:67:da:
ce:b2:7e:f4:fd:f4:9c:01:a8:32:13:a8:a6:50:f5:1b:f4:b7:
b8:72:58:d5:aa:e5:ba:9d:cd:28:27:e9:3e:6b:9e:3d:92:55:
2c:e7:31:36:c7:fb:1f:33:63:be:e5:dd:40:de:56:41:af:d7:
f9:9c:11:06:8b:97:f3:00:c9:78:ff:67:7c:c4:ab:e7:59:c6:
a3:f1:b1:4a:e4:fb:a0:d5:ae:fc:a2:de:62:3a:96:8a:eb:14:
88:76:c7:15:0f:a2:fb:e6:48:c6:d8:41:70:b6:fa:1b:c7:96:
c8:4d:45:ab:93:81:0c:62:7f:1e:78:fe:ce:02:c1:a7:a8:88:
93:25:88:7a:35:43:a7:56:d0:da:da:c5:4c:2f:bc:bc:0a:28:
35:4e:47:66:de:ac:3d:d9:ac:47:56:d8:b3:55:97:f6:b9:d3:
98:89:76:11:15:55:74:d3:b3:dc:70:8a:0a:3b:5e:8e:fa:8a:
49:1f:d1:b7:a2:5d:88:a3:b7:06:6d:f9:ee:36:37:b4:76:38:
39:b5:5e:a0:50:df:dc:b8:7f:a5:f3:d9:60:8f:cf:39:09:8c:
2b:94:e4:a3:e7:30:04:48:08:1c:aa:a3:c8:57:ce:c1:7d:b2:
e2:14:46:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:33:45 2025 by rpki-client