Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F742AF94413511F08067A9DADAE4EC9C.roa
File: F742AF94413511F08067A9DADAE4EC9C.roa (raw, json)
Hash identifier: 2tBaHqPmVv+EI38fBaHRtYLDwzu6sNDIGijVtm6vnOM=
Subject key identifier: 59:40:0B:E6:E7:6C:7F:F4:09:A2:2C:77:2C:00:FE:F8:DC:76:99:2C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0184CE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F742AF94413511F08067A9DADAE4EC9C.roa
Signing time: Wed 04 Jun 2025 11:20:49 +0000
ROA not before: Wed 04 Jun 2025 11:20:44 +0000
ROA not after: Wed 09 Jul 2025 11:20:44 +0000
asID: 200373
IP address blocks: 154.193.152.0/22 maxlen: 24
154.193.158.0/23 maxlen: 24
154.199.14.0/23 maxlen: 24
154.199.68.0/23 maxlen: 24
154.213.160.0/21 maxlen: 24
154.222.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99534 (0x184ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 4 11:20:44 2025 GMT
Not After : Jul 9 11:20:44 2025 GMT
Subject: CN=68402c11-1481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:65:af:89:6d:41:4e:ce:6b:ae:5d:22:bb:b8:
39:c2:9f:34:34:4d:ca:af:5a:bd:45:f6:80:df:69:
fd:0d:9a:e0:fb:d1:65:60:e4:d0:a6:ec:9b:58:5f:
08:ad:ac:d2:b5:eb:d3:7a:5f:df:4e:cf:7f:ce:e7:
be:70:50:7c:e9:cb:e9:b8:d6:ae:f4:51:81:50:01:
89:a8:cd:04:f4:cc:a4:e8:7b:3e:bd:fb:97:98:29:
35:98:1e:83:44:f1:86:6e:57:b5:29:99:49:86:4b:
9f:42:8d:a3:64:a9:73:93:a4:d3:56:3d:20:14:ea:
e7:1b:cd:fc:80:89:5c:19:e3:a6:59:f7:af:e0:8a:
f1:dd:8a:cb:8b:81:50:1e:7b:c5:36:b5:16:54:2d:
cd:1b:dc:57:38:13:2e:4b:70:3d:5f:76:1d:06:c8:
23:68:14:0c:0b:1e:a6:74:94:a4:2a:d4:6b:07:e5:
39:80:99:44:db:32:20:cb:72:b9:41:39:d4:61:fb:
44:23:76:48:b9:e1:e3:4a:23:8c:3d:46:66:65:84:
95:85:4a:ff:c0:46:86:ff:55:ef:8d:fb:89:7a:fd:
ed:2e:7f:54:83:fc:a1:e2:6d:77:66:82:9b:9a:90:
d7:3a:3c:35:03:8c:ca:2b:bd:10:5d:20:06:79:bd:
29:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:40:0B:E6:E7:6C:7F:F4:09:A2:2C:77:2C:00:FE:F8:DC:76:99:2C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F742AF94413511F08067A9DADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.152.0/22
154.193.158.0/23
154.199.14.0/23
154.199.68.0/23
154.213.160.0/21
154.222.132.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:e4:ab:4c:b0:c9:98:69:40:e9:a9:cc:90:bc:f5:2c:d1:e0:
1e:97:23:e7:76:00:89:27:14:8d:3d:3f:0a:66:76:6c:f9:61:
1c:bb:02:91:f8:9d:12:39:69:54:22:00:9e:a5:20:32:2a:41:
a0:1b:a5:a4:74:8d:ff:62:07:f2:65:b6:87:67:53:58:06:60:
08:43:09:82:5b:d9:01:34:ac:d3:c1:cc:3c:26:26:5e:23:43:
7f:97:36:17:b6:fd:1a:74:52:bb:d0:d7:04:a2:1b:53:e9:65:
d5:ab:d3:43:67:97:30:2d:67:bd:79:1a:26:a9:0f:79:71:98:
42:e8:73:03:03:38:48:ff:73:36:06:ae:7d:8e:6a:de:ff:11:
e3:a2:60:8d:3e:e3:14:52:07:a2:3b:2d:3d:83:00:6b:d3:87:
a7:dd:6b:e3:be:79:ed:c1:8d:5d:e5:45:d7:78:50:d5:22:52:
71:77:e2:9f:5b:18:45:42:81:2c:58:3e:31:1c:f4:cb:37:e0:
ff:92:ae:fb:7e:96:56:4c:8a:4c:f1:48:6a:3e:8f:65:a8:4f:
44:7c:94:3a:74:89:2e:ee:d8:a0:c3:62:86:8d:72:b3:8f:15:
bb:bf:32:4e:8c:10:78:aa:f5:3d:4c:a6:02:a9:48:8f:6c:fd:
98:e1:75:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 14:10:46 2025 by rpki-client