Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A3305B613EA11F09540389C762E951A.roa
File: 3A3305B613EA11F09540389C762E951A.roa (raw, json)
Hash identifier: xf5DTMuMN3CafO3/ekgobnX3FRc6tTw3zDKacqJp2Us=
Subject key identifier: A8:1F:7D:7E:9C:03:F1:FD:B7:57:3C:19:D1:71:86:D0:1A:D4:DF:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017835
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A3305B613EA11F09540389C762E951A.roa
Signing time: Mon 07 Apr 2025 19:55:17 +0000
ROA not before: Mon 07 Apr 2025 19:55:13 +0000
ROA not after: Tue 10 Jun 2025 19:55:13 +0000
asID: 203020
IP address blocks: 154.217.72.0/24 maxlen: 24
154.217.73.0/24 maxlen: 24
154.217.74.0/24 maxlen: 24
154.217.75.0/24 maxlen: 24
154.217.76.0/24 maxlen: 24
154.217.77.0/24 maxlen: 24
154.217.78.0/24 maxlen: 24
154.217.80.0/24 maxlen: 24
154.217.81.0/24 maxlen: 24
154.217.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96309 (0x17835)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 19:55:13 2025 GMT
Not After : Jun 10 19:55:13 2025 GMT
Subject: CN=67f42da5-702c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:38:db:25:6e:28:7f:80:80:b1:fb:ed:ff:
fc:6c:3b:86:62:08:55:83:06:b7:33:00:56:09:00:
7a:fa:8e:eb:64:c3:40:72:80:4d:fa:f2:8a:78:bd:
91:48:33:b1:99:28:35:10:cb:a6:2c:43:ee:41:f8:
81:15:ca:28:b7:3f:a9:7e:02:da:9a:a6:7e:49:94:
90:13:2b:31:cb:88:2c:e2:dd:91:70:6f:b6:cc:53:
0b:2e:49:fb:5a:ce:70:47:ac:32:2a:b9:bd:d8:0c:
d4:62:fd:30:b8:49:ca:d3:e6:1f:8b:82:a4:c0:69:
a4:26:b3:dc:f1:6d:4e:3c:76:5f:8f:c7:f9:af:de:
32:22:35:34:1f:76:2e:3a:79:82:f5:7a:84:fb:54:
a2:0f:6e:04:df:46:c4:3d:c5:4d:0f:73:13:5d:e7:
e4:c3:4a:9e:8a:7f:bb:70:6d:66:23:4f:d1:7d:e7:
8d:8e:ad:6f:62:6d:ba:32:d2:e9:61:47:95:ba:d3:
a3:22:28:f6:12:42:32:9f:fe:c1:26:09:21:09:dd:
64:d6:e6:5f:07:5c:7e:31:79:cb:04:31:28:7a:5d:
15:b7:fb:52:da:4b:43:f1:c0:62:c0:12:b8:e8:bf:
f3:8d:fb:6b:e4:7c:f8:14:b8:09:74:91:32:5c:12:
c7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:1F:7D:7E:9C:03:F1:FD:B7:57:3C:19:D1:71:86:D0:1A:D4:DF:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3A3305B613EA11F09540389C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.72.0-154.217.78.255
154.217.80.0-154.217.82.255
Signature Algorithm: sha256WithRSAEncryption
02:31:17:c9:ae:84:80:32:81:44:6b:04:68:7e:05:69:32:94:
54:d2:6d:5e:2d:7f:92:79:71:10:44:39:a5:be:38:5a:68:de:
1f:20:5c:af:6f:0d:dc:06:3f:01:57:0e:5c:a5:7d:be:f8:17:
f4:e9:5a:87:91:09:a3:fd:13:07:24:a9:f5:88:25:9a:cf:a4:
3f:49:d3:04:62:a0:de:19:9a:f4:11:27:e4:57:a6:41:6d:d4:
89:21:3d:d6:ba:08:1f:b5:4a:e0:5d:fc:1d:f9:69:a2:6b:82:
e4:ba:10:b1:bc:81:49:c9:49:b7:4c:4f:8b:e3:8b:0c:4f:2d:
a2:57:a6:65:4e:0e:cc:27:a9:a3:be:ad:3a:30:68:fa:e3:8c:
05:fb:85:f1:6c:00:a8:b5:88:80:bb:e4:98:49:bc:b9:c8:ea:
be:f8:9c:a6:ab:4f:fb:ea:38:0c:78:3e:5e:35:b3:ed:07:cf:
43:7c:01:15:1b:37:43:b0:7e:a3:95:b1:ea:dc:77:c7:d0:28:
f3:3c:58:51:f6:3b:a9:fb:1b:ee:c2:4a:8b:e6:37:bc:65:61:
df:48:04:25:1c:43:dd:6c:40:91:3e:6d:c8:99:3c:8b:ea:88:
b4:f1:9a:ba:da:f8:77:24:d3:f4:4a:ed:1a:5e:9c:e2:13:bc:
53:7f:4f:bf
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:02:13 2025 by rpki-client