Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4A0EC163BD611F0819B11ECDAE4EC9C.roa
File: E4A0EC163BD611F0819B11ECDAE4EC9C.roa (raw, json)
Hash identifier: 4mCL4SCXRRlIJIQPTqslxkl582iB7TRaVqIRtT1j7SI=
Subject key identifier: 4F:76:D8:FF:49:A3:54:17:97:2B:60:94:3E:10:18:FB:1A:DB:EC:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018388
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4A0EC163BD611F0819B11ECDAE4EC9C.roa
Signing time: Wed 28 May 2025 15:17:40 +0000
ROA not before: Wed 28 May 2025 15:17:35 +0000
ROA not after: Sat 07 Jun 2025 15:17:35 +0000
asID: 54801
IP address blocks: 154.91.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99208 (0x18388)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 15:17:35 2025 GMT
Not After : Jun 7 15:17:35 2025 GMT
Subject: CN=68372914-acb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a4:af:df:2b:4f:16:70:41:b9:de:cf:75:b5:
0c:80:2d:e3:58:b9:b0:a8:d1:cf:0d:cd:d4:83:5d:
cd:91:e1:4a:aa:b2:5a:54:db:89:16:af:18:b1:ae:
97:63:75:9b:e8:0a:30:5c:ef:ec:d8:d2:6a:68:59:
44:aa:cf:3d:53:ed:dd:df:08:72:d9:e8:52:38:7e:
bd:57:47:5c:e5:ec:74:74:a9:c7:05:54:d2:af:de:
7c:ea:09:96:3d:d6:69:5d:74:32:6d:b9:ae:8e:11:
b7:4d:13:be:d7:a8:5b:a1:ac:c1:83:9e:e7:16:73:
19:cb:f3:5a:62:72:08:d6:f4:02:e3:de:f6:f2:a0:
6b:b6:ac:eb:72:43:b7:5d:1f:92:cb:78:bc:9a:4e:
a5:c6:08:fb:ae:cf:1d:55:ae:bb:42:64:3b:2f:21:
71:e6:48:81:60:92:57:28:66:3a:b6:7f:79:7b:1e:
63:14:36:c7:e7:28:b8:c6:08:0d:43:35:bd:97:d3:
d5:0b:49:9e:19:f0:d5:5a:b8:0c:67:ce:14:17:63:
09:c8:02:14:99:d6:d5:95:5b:a6:fa:89:34:8e:ec:
b7:ea:67:6d:97:fc:13:3e:b8:3a:55:25:40:0a:85:
a2:b5:2e:e0:7b:20:cf:31:23:69:95:2c:35:eb:66:
b5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:76:D8:FF:49:A3:54:17:97:2B:60:94:3E:10:18:FB:1A:DB:EC:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4A0EC163BD611F0819B11ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.224.0/19
Signature Algorithm: sha256WithRSAEncryption
b4:d0:69:43:7c:54:46:de:b3:34:de:2d:c3:6c:fa:ff:d1:f2:
1d:d7:6d:ec:21:e5:63:04:d1:6a:fb:d6:61:0c:d7:f9:b1:86:
f6:99:8f:a7:5b:53:51:de:63:13:a1:ea:d2:f8:3a:68:68:46:
2a:35:cf:f2:a4:42:49:1f:b0:d0:e9:14:bd:80:8e:07:4c:97:
f5:64:ae:87:8d:37:26:7e:17:2a:8a:d3:63:dc:0c:22:fc:03:
2b:cc:4c:23:d8:9a:c2:2f:16:d3:48:23:d8:6a:b3:73:3c:fd:
47:79:94:8a:07:e4:56:7b:0a:b1:96:95:73:b0:f6:0c:1d:a0:
5a:5d:60:7f:e8:05:40:32:e0:9d:39:8a:cf:e8:40:14:a0:f9:
6f:97:2d:63:60:3a:cf:bb:fa:d5:00:03:85:bf:19:01:9d:e3:
c8:6c:96:7f:30:e6:e8:7e:77:1f:e6:94:af:ee:a0:5a:d5:ee:
a6:2c:a4:8f:58:89:df:17:c9:1f:76:59:47:e8:0a:8a:db:23:
57:b7:b2:3c:0b:5a:83:26:f8:f8:03:43:b1:b7:33:75:f8:d6:
02:e2:9d:a1:8c:99:74:b5:e9:f2:6c:d9:11:dd:80:bb:0a:5e:
01:83:e9:b2:c4:a9:38:b0:fc:4d:12:86:95:25:db:3a:cd:1e:
a5:d8:83:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:34:10 2025 by rpki-client