Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF430CE204C911F093786285762E951A.roa
File: EF430CE204C911F093786285762E951A.roa (raw, json)
Hash identifier: hQyNcblDLyobw7X5FRIFjzIsv9x2Yo2W3lOM91sF9a8=
Subject key identifier: 6F:7A:41:E4:89:CA:8E:6E:83:54:3E:11:AA:C4:B3:A8:FC:48:3E:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017526
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF430CE204C911F093786285762E951A.roa
Signing time: Wed 19 Mar 2025 13:56:20 +0000
ROA not before: Wed 19 Mar 2025 13:56:15 +0000
ROA not after: Wed 30 Apr 2025 13:56:15 +0000
asID: 62240
IP address blocks: 154.194.88.0/24 maxlen: 24
154.194.90.0/24 maxlen: 24
154.194.91.0/24 maxlen: 24
154.195.126.0/24 maxlen: 24
154.196.16.0/24 maxlen: 24
154.196.17.0/24 maxlen: 24
154.196.19.0/24 maxlen: 24
154.196.20.0/24 maxlen: 24
154.196.21.0/24 maxlen: 24
154.196.23.0/24 maxlen: 24
154.196.24.0/24 maxlen: 24
154.196.25.0/24 maxlen: 24
154.196.26.0/24 maxlen: 24
154.196.27.0/24 maxlen: 24
154.196.28.0/24 maxlen: 24
154.196.51.0/24 maxlen: 24
154.196.52.0/24 maxlen: 24
154.196.53.0/24 maxlen: 24
154.196.54.0/24 maxlen: 24
154.196.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Apr 2025 00:06:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95526 (0x17526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 19 13:56:15 2025 GMT
Not After : Apr 30 13:56:15 2025 GMT
Subject: CN=67dacd04-6e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0d:a6:18:c6:1d:ba:21:22:8d:3d:ba:01:11:
5a:94:86:7b:ec:dd:b1:6a:9c:a6:e6:96:ad:eb:de:
07:fa:7c:af:f6:20:d3:0b:7c:10:d5:95:45:16:04:
a3:85:35:29:b3:94:82:90:e0:48:62:6a:a9:6b:1b:
17:bf:9a:37:39:f8:39:9e:cc:6e:a0:b0:38:d7:c8:
b9:29:7a:00:52:10:7b:e2:16:f8:96:58:66:b4:24:
14:f7:44:a5:c3:ab:75:96:6c:07:39:fe:02:77:8c:
13:70:22:49:9f:e3:92:6d:a4:06:5c:a4:79:ce:40:
38:43:46:49:ad:2a:32:59:27:e6:f5:27:ea:b3:55:
d2:24:b2:32:24:75:52:23:74:3b:5d:cb:1e:a4:a0:
71:9a:a3:48:20:d9:b7:ac:4a:ab:54:5d:00:8a:31:
b7:28:fd:0f:87:56:ac:95:7c:aa:70:9e:1a:c7:17:
7e:38:10:cc:39:78:50:ba:2c:6d:b4:89:eb:06:14:
d4:f1:08:c2:ba:bb:f3:39:67:aa:83:81:28:b5:58:
0a:dc:84:6d:3c:f0:86:f8:95:4c:e5:b4:6a:9f:78:
81:bd:7f:6d:a5:40:d9:b1:3b:5f:4c:42:80:6f:95:
b9:be:b5:64:99:6a:f0:54:ce:03:5d:d6:a2:40:92:
5a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:7A:41:E4:89:CA:8E:6E:83:54:3E:11:AA:C4:B3:A8:FC:48:3E:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF430CE204C911F093786285762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.88.0/24
154.194.90.0/23
154.195.126.0/24
154.196.16.0/23
154.196.19.0-154.196.21.255
154.196.23.0-154.196.28.255
154.196.51.0-154.196.55.255
Signature Algorithm: sha256WithRSAEncryption
d1:7e:ce:b4:98:2f:d6:65:bc:1b:bc:96:cc:73:40:79:99:e3:
fc:a0:64:77:8a:d5:12:d9:87:20:74:9c:c1:02:a4:fa:c1:9a:
06:ee:4d:6a:74:77:a6:d2:ad:e9:ba:d5:2b:34:66:e8:73:d9:
aa:c1:9c:ef:1e:25:98:29:3d:ef:ba:db:63:c9:34:ba:84:bb:
bf:fb:99:93:ea:cb:a7:96:3b:d6:38:ca:65:d1:74:7c:17:1d:
8b:bb:b3:5e:be:84:48:f0:fe:c9:40:52:f8:52:47:df:09:65:
d0:8f:66:51:3a:a3:34:91:f7:b2:23:60:06:74:37:4b:36:59:
a0:a1:c4:d7:7a:43:01:bc:85:f1:24:93:20:53:26:cd:4b:21:
f4:89:56:7e:71:4a:76:9c:3f:da:f3:bb:5a:2b:47:7c:22:88:
42:28:ab:bf:b6:73:0f:19:9d:ed:e1:f2:78:1c:6e:29:7b:8d:
ff:ef:f5:1b:6e:fe:29:61:08:19:b3:e8:cc:d6:30:1f:74:01:
d6:a4:de:76:1b:49:00:f8:37:8c:c5:86:b0:5a:5a:0e:bc:3c:
50:91:84:d2:98:db:f2:07:3f:85:06:59:fd:a3:36:c3:b4:27:
03:5c:06:14:d9:0d:84:8f:05:d1:f8:74:29:59:59:82:07:76:
3a:e8:d1:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 22:27:59 2025 by rpki-client