Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/767E76B2405F11F0B14520EADAE4EC9C.roa
File: 767E76B2405F11F0B14520EADAE4EC9C.roa (raw, json)
Hash identifier: Psp54N8Zwbl9ziN2Vbyl63/0vnVM4zrW11s0ypx3pl8=
Subject key identifier: 51:FC:AC:14:EA:40:55:2C:39:8F:59:DB:96:57:29:13:10:EF:7A:4B
Certificate issuer: /CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Certificate serial: 01D0
Authority key identifier: A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/767E76B2405F11F0B14520EADAE4EC9C.roa
Signing time: Tue 03 Jun 2025 09:45:21 +0000
ROA not before: Tue 03 Jun 2025 09:45:15 +0000
ROA not after: Fri 29 Jun 2029 09:45:15 +0000
asID: 37577
IP address blocks: 102.178.0.0/22 maxlen: 22
102.178.4.0/22 maxlen: 22
102.178.8.0/22 maxlen: 22
102.178.12.0/22 maxlen: 22
102.178.16.0/22 maxlen: 22
102.178.20.0/22 maxlen: 22
102.178.24.0/22 maxlen: 22
102.178.28.0/22 maxlen: 22
102.178.32.0/22 maxlen: 22
102.178.36.0/22 maxlen: 22
102.178.40.0/22 maxlen: 22
102.178.44.0/22 maxlen: 22
102.178.48.0/22 maxlen: 22
102.178.52.0/22 maxlen: 22
102.178.56.0/22 maxlen: 22
102.178.60.0/22 maxlen: 22
102.178.64.0/22 maxlen: 22
102.178.68.0/22 maxlen: 22
102.178.72.0/22 maxlen: 22
102.178.76.0/22 maxlen: 22
102.178.80.0/22 maxlen: 22
102.178.84.0/22 maxlen: 22
102.178.88.0/22 maxlen: 22
102.178.92.0/22 maxlen: 22
102.178.96.0/22 maxlen: 22
102.178.100.0/22 maxlen: 22
102.178.104.0/22 maxlen: 22
102.178.108.0/22 maxlen: 22
102.178.112.0/22 maxlen: 22
102.178.116.0/22 maxlen: 22
102.178.120.0/22 maxlen: 22
102.178.124.0/22 maxlen: 22
102.178.128.0/22 maxlen: 22
102.178.132.0/22 maxlen: 22
102.178.136.0/22 maxlen: 22
102.178.140.0/22 maxlen: 22
102.178.144.0/22 maxlen: 22
102.178.148.0/22 maxlen: 22
102.178.152.0/22 maxlen: 22
102.178.156.0/22 maxlen: 22
102.178.160.0/22 maxlen: 22
102.178.164.0/22 maxlen: 22
102.178.168.0/22 maxlen: 22
102.178.172.0/22 maxlen: 22
102.178.176.0/22 maxlen: 22
102.178.180.0/22 maxlen: 22
102.178.184.0/22 maxlen: 22
102.178.188.0/22 maxlen: 22
102.178.192.0/22 maxlen: 22
102.178.196.0/22 maxlen: 22
102.178.200.0/22 maxlen: 22
102.178.204.0/22 maxlen: 22
102.178.208.0/22 maxlen: 22
102.178.212.0/22 maxlen: 22
102.178.216.0/22 maxlen: 22
102.178.220.0/22 maxlen: 22
102.178.224.0/22 maxlen: 22
102.178.228.0/22 maxlen: 22
102.178.232.0/22 maxlen: 22
102.178.236.0/22 maxlen: 22
102.178.240.0/22 maxlen: 22
102.178.244.0/22 maxlen: 22
102.178.248.0/22 maxlen: 22
102.178.252.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.mft
rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 16 Jun 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 464 (0x1d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CB1BEAF, serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Validity
Not Before: Jun 3 09:45:15 2025 GMT
Not After : Jun 29 09:45:15 2029 GMT
Subject: CN=683ec430-149f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:96:a4:c6:75:1c:41:3f:06:e9:c4:51:c8:2a:
24:63:06:99:9a:bd:db:c1:e3:71:e2:82:18:e0:f5:
07:ec:2a:2f:ac:c7:c6:8f:0e:9f:bd:07:e7:e7:4f:
66:49:49:49:01:b2:d6:a8:e2:57:9e:99:fc:53:0d:
d6:db:9f:e2:d7:af:81:01:3c:c3:e9:ff:01:75:56:
d4:df:1d:05:0d:54:76:69:95:6a:c6:fc:d7:74:eb:
15:59:a3:84:12:f8:aa:74:05:1d:2d:30:f9:a3:2c:
36:05:c7:19:d0:a0:40:2f:b5:3f:bc:49:b8:bd:4e:
20:59:22:9b:08:6c:d7:7a:0b:96:92:50:dc:83:b8:
d6:4d:51:a6:bb:8e:cf:fb:42:a9:59:c2:a8:47:f6:
56:bd:c2:c7:9d:ae:1a:f4:e4:32:ab:be:5b:66:9d:
55:e1:78:52:db:be:73:29:1d:f0:52:d3:19:ec:7a:
3c:db:cf:8a:03:37:d9:e1:f7:5e:cb:a6:15:b8:ec:
0f:ad:33:f9:6b:80:3f:8e:0e:ba:44:bf:30:ec:24:
6c:91:ac:57:ed:72:e6:fa:85:09:fd:69:e6:0f:c4:
80:5c:85:ea:a1:ad:10:0e:9d:19:d3:1c:0d:7a:5a:
11:f5:e8:c3:9a:bd:cc:aa:f5:3e:71:95:76:b5:41:
f7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:FC:AC:14:EA:40:55:2C:39:8F:59:DB:96:57:29:13:10:EF:7A:4B
X509v3 Authority Key Identifier:
keyid:A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/767E76B2405F11F0B14520EADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.178.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8e:1a:67:a7:3a:df:f1:6b:f4:32:65:3e:86:36:a3:64:f2:52:
e2:23:25:3c:57:8f:e5:25:2e:1e:99:25:5a:e5:6e:16:a2:9b:
48:11:d1:22:5c:ab:22:9f:c6:9d:dc:f5:ea:86:07:6a:ba:c2:
bd:c3:2c:3f:4e:f9:2b:9e:4e:26:e9:2e:34:a6:b1:96:ee:92:
d9:c8:a7:89:0e:39:71:6a:dc:af:43:92:fd:29:72:b8:6a:0c:
a4:44:51:23:29:46:25:ee:23:06:44:15:70:dd:1c:f4:22:3e:
75:7a:fe:48:51:bf:a6:af:0f:bd:95:45:cb:49:a2:73:cc:f5:
74:6b:d1:48:83:39:aa:f0:31:52:c4:c6:52:5a:f5:9e:05:88:
91:e6:68:10:c1:62:10:43:b4:00:8d:24:3a:46:7e:08:63:4e:
60:f0:a9:af:f3:33:8d:6f:2f:8f:db:26:fe:6a:fc:56:5b:67:
3f:92:1c:7e:4d:ae:8f:8f:76:c8:2c:9b:8d:fe:e1:18:09:d4:
38:ad:0e:b0:dc:85:af:44:e3:7d:15:79:3d:59:e1:2a:89:5e:
68:2f:a2:8e:0e:bc:34:9e:3a:2d:cb:09:6c:a2:29:f7:65:de:
74:a0:52:b4:03:9c:4e:10:36:66:88:42:b8:d7:78:6b:5d:e5:
3b:84:89:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 14:01:56 2025 by rpki-client