Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC2ED356F8E011EFBE52FB6E762E951A.roa
File: DC2ED356F8E011EFBE52FB6E762E951A.roa (raw, json)
Hash identifier: MBOSuoxbOtQoPUeyhhQhhCSr7x6MiXzmE0NvJjRfSDI=
Subject key identifier: 62:90:D8:A2:4D:B9:51:4E:E9:AC:64:A9:B9:39:AE:85:0B:C2:7D:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0171AC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC2ED356F8E011EFBE52FB6E762E951A.roa
Signing time: Tue 04 Mar 2025 10:10:12 +0000
ROA not before: Tue 04 Mar 2025 10:10:08 +0000
ROA not after: Wed 30 Apr 2025 10:10:08 +0000
asID: 138915
IP address blocks: 154.93.74.0/24 maxlen: 24
154.93.96.0/24 maxlen: 24
154.93.97.0/24 maxlen: 24
154.93.102.0/24 maxlen: 24
154.93.103.0/24 maxlen: 24
154.93.106.0/24 maxlen: 24
154.93.107.0/24 maxlen: 24
154.93.108.0/24 maxlen: 24
154.93.109.0/24 maxlen: 24
154.93.112.0/23 maxlen: 24
154.93.115.0/24 maxlen: 24
154.93.120.0/24 maxlen: 24
154.93.121.0/24 maxlen: 24
154.93.122.0/24 maxlen: 24
154.93.124.0/23 maxlen: 24
154.93.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94636 (0x171ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 4 10:10:08 2025 GMT
Not After : Apr 30 10:10:08 2025 GMT
Subject: CN=67c6d184-8a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:33:e8:d2:34:a5:e8:1d:58:66:66:30:36:72:
19:0f:53:48:a1:77:9a:a2:92:56:83:2f:5e:52:e4:
73:9f:a4:0c:3a:f3:fc:07:52:1f:25:5e:ce:85:22:
ad:d8:40:39:5f:56:86:9b:7d:5b:1b:db:50:c0:4d:
dc:a8:2f:4c:95:70:81:05:90:e5:0e:69:18:71:bb:
45:ee:00:3c:ae:22:80:3d:51:bd:d7:6e:0d:ad:93:
a7:97:65:2d:d9:9e:0e:b8:17:e3:35:15:ac:60:1f:
c6:dc:28:87:64:10:01:a3:2d:e9:2e:c1:4b:b3:b2:
8f:a6:95:04:cc:8d:b5:d5:2b:0e:c0:db:f9:76:2d:
64:e2:a3:42:74:4d:57:d6:de:60:d4:e2:54:37:4d:
0f:94:f2:f4:54:9c:1d:05:2a:22:7d:8f:12:e0:bf:
92:e1:44:8c:2c:da:f6:d5:cf:22:5f:fe:b1:f8:e8:
32:47:ee:31:6f:30:d5:c1:30:86:5a:d8:be:85:2b:
53:db:46:89:35:43:14:0c:a1:2c:6f:15:28:72:ce:
67:a0:98:fd:fd:16:31:fb:45:54:09:c5:6c:aa:41:
83:28:8b:4a:91:9b:f5:5e:9c:9e:49:24:5d:e2:65:
c3:27:3a:81:ff:16:ee:f5:02:93:50:c4:52:c2:37:
99:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:90:D8:A2:4D:B9:51:4E:E9:AC:64:A9:B9:39:AE:85:0B:C2:7D:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC2ED356F8E011EFBE52FB6E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.74.0/24
154.93.96.0/23
154.93.102.0/23
154.93.106.0-154.93.109.255
154.93.112.0/23
154.93.115.0/24
154.93.120.0-154.93.122.255
154.93.124.0/23
154.93.127.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:4e:44:73:fe:50:36:ad:72:94:c4:94:07:bf:fa:19:4a:6b:
51:a3:c9:f5:e1:77:7d:e5:44:f8:ab:68:fd:25:6c:c8:ad:21:
de:78:dd:b9:54:6e:b1:cb:20:d9:54:33:0d:d4:0e:cb:c2:d9:
71:5a:58:9b:bb:89:fd:13:54:a9:16:df:75:57:47:57:9d:2e:
70:65:e5:27:43:24:b2:de:a2:73:02:25:df:76:66:d5:da:48:
de:2e:bf:9e:91:06:f2:de:9a:40:82:07:68:a3:62:85:d9:e1:
53:14:36:b1:48:b6:92:a7:0b:c1:76:d7:aa:e1:8d:72:f5:64:
e3:e7:0b:d4:8f:ee:1b:a1:a6:6a:ea:29:e1:b2:6e:89:ee:ee:
4e:70:c9:7c:74:0a:42:26:8c:b3:78:94:74:30:76:ba:ae:99:
bc:d3:c0:c3:f0:a9:d7:5a:c3:d0:bc:db:11:54:68:04:ae:38:
8c:ab:d5:aa:d0:c9:0a:c2:28:d3:97:90:7f:fc:4b:b7:54:db:
40:59:b3:5b:70:bd:58:6f:cf:fd:54:28:d8:18:31:c7:9e:c9:
ab:69:95:f8:5d:d9:eb:24:18:c2:89:a4:cf:48:3b:af:55:5b:
f9:08:2b:5c:cf:ba:df:2e:95:b8:9a:8d:27:02:23:a2:90:b3:
04:3b:66:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:33 2025 by rpki-client