Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/392106C415EC11F0B599D4D06DB8BCC6.roa
File: 392106C415EC11F0B599D4D06DB8BCC6.roa (raw, json)
Hash identifier: nzKZmShMYSpyzsKcGtjfu1xi+1d5NhY4/S2HdIZ+RHs=
Subject key identifier: 4B:1B:7E:7E:E5:3F:16:4A:67:D5:4B:B6:2D:F5:C7:7E:5B:47:F5:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0178BB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/392106C415EC11F0B599D4D06DB8BCC6.roa
Signing time: Thu 10 Apr 2025 09:14:36 +0000
ROA not before: Thu 10 Apr 2025 09:14:33 +0000
ROA not after: Fri 16 May 2025 09:14:33 +0000
asID: 54600
IP address blocks: 154.202.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96443 (0x178bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 09:14:33 2025 GMT
Not After : May 16 09:14:33 2025 GMT
Subject: CN=67f78bfc-98c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:96:50:10:00:57:0a:8d:c9:39:ed:61:b4:06:
80:ca:c2:c6:19:d2:00:c7:04:a6:45:13:ae:89:62:
5c:b1:a5:f3:7b:50:e7:d9:5e:1e:4c:da:ea:02:0b:
4a:9f:3e:2a:97:8a:57:eb:74:25:e4:2c:58:fc:b5:
31:f1:ba:e7:c3:30:47:c5:5c:6b:72:09:38:fb:b3:
b2:e0:3f:05:24:f9:d0:e7:e8:58:ea:d2:f8:34:aa:
75:00:35:f6:05:ed:bf:e2:1f:16:a8:87:c1:85:cd:
40:cb:c9:d3:22:05:bc:d6:9f:4a:6d:e5:54:1c:cf:
9d:0a:54:ca:ee:89:ee:67:46:92:9f:b5:1a:38:25:
0d:d8:38:20:f0:39:0c:89:4a:f5:ad:b4:36:08:3f:
9e:a1:68:c7:82:cd:a3:71:58:28:43:8b:e4:9d:ac:
4c:ec:cb:e5:36:87:42:a5:f7:81:49:be:1b:a0:92:
f4:61:c0:d5:d4:d8:64:2b:68:2d:4c:e2:77:7f:a8:
6f:b3:74:a2:4c:3f:c7:1c:07:ee:ad:7c:33:67:50:
7d:0b:3c:fe:57:c1:52:e5:ce:84:b8:5f:b8:47:f6:
ce:a4:d8:c1:c1:3d:2d:fb:64:96:c2:82:3b:20:1f:
d3:02:96:94:9e:27:ea:14:e8:c3:4e:78:2d:58:7c:
53:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:1B:7E:7E:E5:3F:16:4A:67:D5:4B:B6:2D:F5:C7:7E:5B:47:F5:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/392106C415EC11F0B599D4D06DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.160.0/19
Signature Algorithm: sha256WithRSAEncryption
ad:7c:0c:be:06:49:16:fe:c6:95:d0:72:76:5a:8c:32:05:6a:
62:9b:60:8c:3c:4a:8c:43:74:68:ef:86:9c:ab:ef:9f:97:72:
0a:83:2e:ce:75:4a:8e:bf:d9:e9:8f:ef:f3:c3:de:9c:be:dd:
3e:bf:62:bc:02:95:8f:52:9d:27:ca:46:18:c1:8d:d4:8e:b1:
54:54:70:14:29:93:94:71:ca:b6:9d:fa:4b:c6:cb:b2:2c:d4:
17:61:d3:71:63:93:69:5a:78:e8:45:49:44:b4:82:b2:fa:27:
2c:20:db:1c:bd:fa:f2:0f:29:1f:69:6d:61:cb:d6:0c:b0:62:
5d:86:b7:3c:5f:80:6a:3b:73:dd:0c:9d:ce:3d:db:11:42:1d:
58:7e:46:b5:4c:7a:08:b2:f7:0d:4b:46:ae:bd:b3:57:52:ff:
4f:45:03:96:49:a6:0e:43:93:21:a5:1f:4e:54:55:75:68:87:
65:e5:9d:77:65:dc:17:28:52:b4:c0:3d:ff:b3:74:2b:fc:b2:
ee:fb:1a:3b:6c:bf:e6:f8:78:b7:c8:42:62:8d:ab:f6:28:3e:
99:aa:e9:e3:52:5d:6f:54:0a:e9:a1:b4:c3:d9:e9:55:37:a6:
4d:bf:a3:ac:ee:33:b8:76:0b:4b:b6:9c:8e:b6:16:7c:96:35:
15:aa:35:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:41:47 2025 by rpki-client