Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F78263CEF45411EFBB0D485A762E951A.roa
File: F78263CEF45411EFBB0D485A762E951A.roa (raw, json)
Hash identifier: +vdqOjDjSaE7X44sYC8mG+qo5/8WVhffYn7INkWr5iQ=
Subject key identifier: 1B:E3:48:1A:B1:63:C5:93:5E:49:28:1E:36:36:E4:03:12:0F:2C:7A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0164C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F78263CEF45411EFBB0D485A762E951A.roa
Signing time: Wed 26 Feb 2025 15:18:44 +0000
ROA not before: Wed 26 Feb 2025 15:18:40 +0000
ROA not after: Thu 19 Feb 2026 15:18:40 +0000
asID: 984
IP address blocks: 154.210.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91328 (0x164c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 15:18:40 2025 GMT
Not After : Feb 19 15:18:40 2026 GMT
Subject: CN=67bf30d4-87a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:6a:77:43:7a:78:e0:0b:a5:f4:3c:45:c3:b9:
5c:48:12:ff:64:d2:ef:c8:92:21:c3:b8:38:bd:d7:
c5:39:30:e4:29:4f:ca:73:f2:ef:e0:43:73:2e:c1:
bd:4c:81:d5:2b:2a:97:97:1c:6e:1f:12:ac:b1:5e:
18:f6:f0:0f:3a:56:9b:23:64:7e:31:ab:63:46:35:
6b:6b:4c:27:59:0f:8d:28:4f:a0:72:07:66:7b:b0:
bf:a5:2d:a7:85:58:80:38:1f:90:dc:ff:4e:09:63:
6f:f3:14:1d:70:37:8e:0b:c6:12:58:29:70:ee:7e:
2f:d1:b6:9e:d3:98:f9:51:34:1f:76:15:38:dd:17:
b4:c7:4a:14:60:82:21:dd:97:da:0c:90:8f:c4:f9:
be:a8:5f:ac:49:f3:f8:e2:f1:f1:ad:42:4d:44:44:
c1:63:31:4d:56:b2:bb:d0:e5:ba:e9:e3:75:ca:74:
78:79:6c:ff:cb:22:c7:79:45:c4:56:42:c8:3d:59:
3b:1f:4e:74:c7:be:cc:f2:2e:87:df:1d:43:1b:e3:
f9:73:94:d7:0c:f4:46:33:3a:aa:2a:b2:99:e8:d1:
38:2a:c5:9c:f2:19:ad:cc:cb:63:ee:5d:15:d4:b1:
c0:aa:91:2c:43:00:4f:95:2a:37:73:96:fa:c7:53:
6a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E3:48:1A:B1:63:C5:93:5E:49:28:1E:36:36:E4:03:12:0F:2C:7A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F78263CEF45411EFBB0D485A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.88.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:49:13:c1:28:ec:ec:05:d3:60:72:6e:c7:b2:1c:8d:de:e1:
da:29:ab:f3:d8:9a:aa:10:5a:69:62:5f:f6:28:f7:e1:fc:11:
17:70:a7:0c:78:e6:a4:81:29:db:0e:ab:fc:79:7c:fc:b8:fb:
07:70:ee:64:b3:01:c8:98:cd:b7:12:87:9e:0c:dd:95:ab:4a:
d5:62:6f:68:32:13:59:c1:6f:c5:ae:b3:63:3f:79:34:32:1d:
33:49:75:4a:bf:ab:98:94:a2:bd:3d:79:80:70:f7:d4:84:57:
a7:4c:74:a3:fb:9e:04:79:ff:3a:07:45:64:fe:43:11:aa:fe:
4a:9a:d4:21:b2:17:d4:8a:33:8a:70:bc:62:14:1d:11:23:c9:
c2:7a:cd:30:f9:ee:a9:38:da:ba:76:38:75:2c:3f:68:5d:1c:
8d:b8:07:08:c6:7b:9a:42:b1:18:1e:6a:0d:42:72:a0:ce:aa:
e8:ea:31:5c:47:03:4e:8a:a1:92:de:93:98:65:a2:ac:71:13:
e2:93:a5:15:d6:7a:b7:1b:3e:19:09:59:6f:e9:14:cf:fc:2b:
5a:0c:18:0c:88:cb:62:32:19:85:70:04:2d:32:98:5f:49:c4:
db:19:30:5c:a5:e2:ae:e6:37:e7:37:b1:98:0f:7a:a7:03:c8:
bf:1a:b8:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:48 2025 by rpki-client