Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FFE814A13E311F0A0745468762E951A.roa
File: 1FFE814A13E311F0A0745468762E951A.roa (raw, json)
Hash identifier: oPrFJc3j75ENpQ+pM6oPmcKCIQR8JMHgajTtfMtruHA=
Subject key identifier: 80:46:1E:BF:73:68:06:39:F5:85:F0:DF:98:8F:BA:8E:18:A3:A8:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017825
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FFE814A13E311F0A0745468762E951A.roa
Signing time: Mon 07 Apr 2025 19:04:27 +0000
ROA not before: Mon 07 Apr 2025 19:04:22 +0000
ROA not after: Tue 10 Jun 2025 19:04:22 +0000
asID: 203020
IP address blocks: 154.217.3.0/24 maxlen: 24
154.217.4.0/24 maxlen: 24
154.217.39.0/24 maxlen: 24
154.217.40.0/24 maxlen: 24
154.217.41.0/24 maxlen: 24
154.217.42.0/24 maxlen: 24
154.217.43.0/24 maxlen: 24
154.217.44.0/24 maxlen: 24
154.217.45.0/24 maxlen: 24
154.217.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96293 (0x17825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 19:04:22 2025 GMT
Not After : Jun 10 19:04:22 2025 GMT
Subject: CN=67f421ba-9bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:38:68:d3:96:fe:59:98:70:9b:1f:d3:5c:76:
c7:2d:0a:32:ce:db:15:9e:33:e4:ca:79:9f:46:2e:
04:24:5f:9e:75:29:54:20:78:54:6b:e0:e3:a4:33:
21:1a:af:f2:87:cc:c1:f2:51:a0:f9:c7:15:f7:31:
5b:c3:42:ac:f0:b9:14:d0:52:27:f4:3d:30:1d:98:
df:e5:47:c6:7e:02:d3:e6:40:0e:cb:40:de:41:2e:
07:43:89:a1:a7:d2:d9:b9:0c:46:30:2b:fb:c2:58:
fd:5b:ac:f5:75:74:3a:47:10:18:3f:6c:a6:b3:96:
c2:59:46:4c:98:51:3b:25:41:07:59:b4:05:0f:34:
55:96:44:a2:53:45:99:76:c6:ef:1f:13:40:05:94:
db:27:84:d6:c5:d3:52:8f:78:23:c9:98:85:84:64:
37:e1:75:3f:99:06:53:f3:e1:6d:a0:a4:ac:fe:3d:
da:6a:30:1a:f6:53:58:d5:c4:d7:46:61:45:c9:74:
bd:66:39:6e:44:4f:9e:d9:dd:88:89:82:4a:8b:7f:
16:e1:fd:c6:2b:19:ad:65:e2:9d:fe:3e:34:8c:47:
3a:8b:2b:9f:5a:47:bb:39:22:55:8a:21:bd:c4:1d:
aa:c0:63:04:42:58:46:ac:d3:60:5b:af:20:02:e6:
58:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:46:1E:BF:73:68:06:39:F5:85:F0:DF:98:8F:BA:8E:18:A3:A8:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FFE814A13E311F0A0745468762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.3.0-154.217.4.255
154.217.39.0-154.217.46.255
Signature Algorithm: sha256WithRSAEncryption
05:69:99:e5:91:2f:a5:49:96:42:01:69:e2:fd:24:a0:b0:d5:
1d:85:fe:36:0c:c5:f9:46:05:0d:2d:ae:64:8d:72:6f:b0:e5:
6b:6c:e6:fd:75:34:98:57:5b:14:1c:a2:6e:fc:ea:a8:4f:01:
29:b3:f5:6c:7d:e3:00:f7:5c:52:b7:31:c9:54:a7:e9:a8:b2:
30:da:25:f7:06:78:7e:22:c8:75:63:7f:ee:e9:bb:59:97:c4:
e7:3a:94:18:d7:4f:75:a9:7a:78:e9:00:7f:96:ed:7f:a5:0a:
38:ba:8f:f6:9a:e2:00:99:99:3b:70:41:58:8d:7e:bc:7c:f9:
0a:17:3d:b8:0b:f5:9c:b0:6c:66:8b:d6:78:ee:57:18:97:6b:
d6:91:37:20:34:1e:40:12:bc:57:a6:2d:e0:e1:9e:9e:ec:fc:
6b:ae:38:5a:83:c0:1f:5c:2a:1d:ca:2f:40:44:5a:7d:7b:30:
64:2e:d4:29:09:1b:2a:d6:c0:ee:7a:17:54:39:e3:e4:65:f8:
9f:fd:a2:ce:76:dc:e5:35:46:28:82:f4:85:7a:b7:b2:9e:66:
92:0b:e9:e0:41:72:a8:fa:ee:61:25:68:3d:2a:c7:98:69:04:
d8:4b:73:33:e7:97:7a:c7:27:9a:73:ad:28:eb:96:2e:2e:a8:
3b:37:ef:cc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:57:02 2025 by rpki-client