Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8B76152357611F0B584A5ABDAE4EC9C.roa
File: D8B76152357611F0B584A5ABDAE4EC9C.roa (raw, json)
Hash identifier: ZW7Egah2WgodKCW1vmz99+E+5ckEL9PkDTQDuY3tT9o=
Subject key identifier: 4E:A4:AA:C7:2F:67:55:DC:E8:58:25:BF:13:1C:EF:45:D6:C7:9D:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0181AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8B76152357611F0B584A5ABDAE4EC9C.roa
Signing time: Tue 20 May 2025 12:35:01 +0000
ROA not before: Tue 20 May 2025 12:34:56 +0000
ROA not after: Mon 30 Jun 2025 12:34:56 +0000
asID: 62240
IP address blocks: 154.195.2.0/24 maxlen: 24
154.195.3.0/24 maxlen: 24
154.195.97.0/24 maxlen: 24
154.195.98.0/24 maxlen: 24
154.195.99.0/24 maxlen: 24
154.195.101.0/24 maxlen: 24
154.195.102.0/24 maxlen: 24
154.195.103.0/24 maxlen: 24
154.195.104.0/24 maxlen: 24
154.195.105.0/24 maxlen: 24
154.195.106.0/24 maxlen: 24
154.195.107.0/24 maxlen: 24
154.195.109.0/24 maxlen: 24
154.195.110.0/24 maxlen: 24
154.195.114.0/24 maxlen: 24
154.195.115.0/24 maxlen: 24
154.195.119.0/24 maxlen: 24
154.196.83.0/24 maxlen: 24
154.196.84.0/24 maxlen: 24
154.196.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98731 (0x181ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 20 12:34:56 2025 GMT
Not After : Jun 30 12:34:56 2025 GMT
Subject: CN=682c76f5-6fe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:21:19:43:b4:d4:92:72:b8:46:3f:92:71:48:
84:16:fe:02:88:3a:bc:1c:44:f7:34:3f:b5:a5:34:
91:13:74:23:c2:c3:cf:54:45:4d:4a:65:98:f0:e3:
2b:91:13:4e:8b:a1:bf:6f:e1:8f:7a:af:12:63:c6:
df:60:24:16:70:44:94:48:91:7f:09:f8:a8:50:a4:
c8:ee:39:f4:05:48:7f:b2:d9:ae:9a:46:a4:66:e1:
a9:34:ca:c0:4a:21:bd:a3:c7:00:68:9b:cb:25:24:
62:a9:8a:10:0a:4e:ff:dd:ca:a0:7e:2c:8a:c8:24:
7d:13:44:c0:f6:b4:f8:16:ee:a5:eb:8e:61:4e:f2:
40:b7:32:f9:7d:fc:24:40:f0:75:2e:18:fd:4c:21:
00:9d:49:84:17:81:a8:bd:c0:d3:12:d8:d9:23:34:
1b:14:02:42:89:dd:91:9c:9c:c8:89:74:d0:28:32:
d9:5a:c7:65:81:a5:c3:c4:d4:09:47:7d:34:78:74:
e4:e6:65:3b:e9:05:c6:f3:c2:ae:01:5b:20:fc:4b:
27:04:64:10:a5:af:2e:1c:94:42:98:ab:e5:b8:32:
74:2a:93:3e:d8:ef:b6:94:62:0f:14:ff:1f:0e:3b:
51:0e:25:66:3d:e3:99:c2:fe:40:94:87:c7:e6:84:
ae:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:A4:AA:C7:2F:67:55:DC:E8:58:25:BF:13:1C:EF:45:D6:C7:9D:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8B76152357611F0B584A5ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.2.0/23
154.195.97.0-154.195.99.255
154.195.101.0-154.195.107.255
154.195.109.0-154.195.110.255
154.195.114.0/23
154.195.119.0/24
154.196.83.0-154.196.85.255
Signature Algorithm: sha256WithRSAEncryption
06:b3:fe:6f:30:8b:f5:a0:b1:16:98:01:64:0c:a2:c0:b8:69:
82:b9:7e:13:a6:3d:68:fa:28:6c:13:bd:88:24:ed:39:bf:cd:
4d:0b:cd:9f:c9:6e:2e:f7:52:e2:de:b2:e2:cc:2a:58:b0:d6:
5c:47:55:c8:06:ff:a1:13:00:5b:13:97:77:be:75:29:09:9c:
f4:ed:98:07:31:b3:d5:70:ca:f4:7a:7e:a3:8d:a5:eb:7f:5e:
09:24:44:2c:48:15:d4:2e:93:24:a9:c5:85:d5:32:11:ac:b6:
31:cc:f9:8d:28:af:34:ef:9f:8c:1c:44:7d:e8:cd:9f:8d:33:
a6:27:97:e5:74:16:4c:c1:ef:26:64:a4:70:63:db:a9:77:82:
69:35:81:7f:4f:9c:97:f1:f8:a3:e3:49:5a:3a:5c:38:ad:21:
04:25:48:d8:7a:90:a3:21:aa:fc:81:18:f8:50:d1:47:88:71:
34:82:4c:8d:7f:8d:b3:0a:de:b5:ca:7d:35:07:62:c0:19:35:
f3:ee:76:81:31:6c:79:31:85:e7:b0:27:9a:d4:b9:72:da:fa:
04:49:56:dc:d5:5f:45:58:0a:66:3a:11:1c:0f:65:dc:25:59:
52:2e:d0:f9:c9:50:d7:43:76:9f:f3:7c:f7:bf:ae:6f:e9:8f:
6c:d1:16:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 19:16:59 2025 by rpki-client