Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FA755D6107711F0A8F574BA762E951A.roa
File: 3FA755D6107711F0A8F574BA762E951A.roa (raw, json)
Hash identifier: bDtAsExJvAw8uKfnegjbKJt6TeKG0kRYeFh8/iH2OTs=
Subject key identifier: 5D:BB:7F:F3:D6:FA:ED:14:E9:9C:2B:F0:2A:20:B5:A2:15:B3:05:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017769
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FA755D6107711F0A8F574BA762E951A.roa
Signing time: Thu 03 Apr 2025 10:34:40 +0000
ROA not before: Thu 03 Apr 2025 10:34:36 +0000
ROA not after: Tue 03 Jun 2025 10:34:36 +0000
asID: 142403
IP address blocks: 154.83.12.0/24 maxlen: 24
154.83.13.0/24 maxlen: 24
154.83.14.0/24 maxlen: 24
154.83.15.0/24 maxlen: 24
154.83.16.0/24 maxlen: 24
154.83.17.0/24 maxlen: 24
154.92.14.0/24 maxlen: 24
154.92.15.0/24 maxlen: 24
154.92.16.0/24 maxlen: 24
154.92.17.0/24 maxlen: 24
154.92.18.0/24 maxlen: 24
154.92.19.0/24 maxlen: 24
154.94.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96105 (0x17769)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 3 10:34:36 2025 GMT
Not After : Jun 3 10:34:36 2025 GMT
Subject: CN=67ee6440-0a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b4:e4:d8:ca:1f:54:c0:13:89:37:55:55:27:
c6:00:87:a4:b4:c7:cd:e8:ab:e7:df:7f:5f:d3:1c:
00:65:75:b7:4d:be:98:74:c4:6c:bf:35:40:65:c6:
42:c0:83:15:7d:10:44:0e:c2:bf:f5:33:65:a5:48:
42:40:d0:19:be:f5:2b:2e:7b:1d:53:b3:d0:72:09:
bd:2b:dd:4f:83:97:99:2b:0a:06:e3:76:d9:34:5c:
47:8e:a8:ec:59:55:14:37:2d:10:4e:c7:de:4b:fa:
5e:6c:e9:19:ad:7a:00:4c:57:2c:e5:de:c3:54:3a:
bf:5a:25:2f:67:5b:58:d8:11:f9:4c:32:44:03:e1:
70:2f:4a:6c:43:9b:7b:50:86:55:3a:9f:71:47:e7:
68:5a:cc:27:2a:23:b0:3d:57:4d:13:73:f3:3d:aa:
4e:2d:c6:70:17:d6:27:ae:b4:fc:89:51:4d:8c:e4:
1e:a6:17:e3:a9:23:f7:70:54:ee:99:49:51:13:b2:
2b:89:73:15:eb:19:48:2a:15:7e:85:9f:35:28:7e:
7e:d2:e4:16:0d:b4:80:e6:37:93:26:de:f4:d5:0f:
59:9d:60:35:85:6e:0c:d6:70:ba:fd:cf:e1:4c:ad:
54:dc:34:f3:1f:49:cc:fb:07:a1:7a:e5:75:4a:65:
14:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BB:7F:F3:D6:FA:ED:14:E9:9C:2B:F0:2A:20:B5:A2:15:B3:05:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FA755D6107711F0A8F574BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.12.0-154.83.17.255
154.92.14.0-154.92.19.255
154.94.5.0/24
Signature Algorithm: sha256WithRSAEncryption
51:1a:86:47:5a:99:46:4e:a6:70:e5:16:c5:17:7d:ee:6f:cb:
51:8e:a3:b7:ac:21:d7:93:ce:ba:70:06:19:71:3a:e2:ce:c7:
19:b0:48:47:6c:57:42:14:f7:5f:d6:d2:48:12:77:4b:f5:c1:
59:57:f9:65:0b:dd:82:01:0f:48:b1:43:b3:1c:f5:5c:26:7e:
5d:ac:b6:dc:7c:80:d1:5d:72:c1:00:35:b5:1f:ff:bb:b0:d8:
e0:20:5f:47:b7:ac:34:9e:9f:5d:87:23:c1:86:84:8b:5b:f4:
db:c4:5b:20:8a:d8:4f:04:75:86:ce:b6:07:03:46:a3:a7:4d:
89:03:cd:1f:9d:c5:0f:35:4d:8b:c2:97:e1:21:68:65:8c:4e:
92:4b:a6:26:b9:77:8d:77:35:0f:f5:a7:f8:2a:37:a3:c4:8a:
5d:56:19:80:2f:b9:de:38:e1:ed:ba:ef:48:1a:60:a4:2d:b1:
46:57:87:59:dc:87:d3:2f:1c:be:92:3d:bc:ea:5b:0a:c7:ce:
69:01:2c:78:c4:d6:7f:9a:d5:69:dd:57:b0:4b:40:ff:37:22:
e1:4f:54:9b:88:45:5f:7e:1a:97:0c:74:b8:0a:c4:a4:b7:a7:
98:a7:29:55:74:6d:1e:1b:87:e0:65:39:62:6c:d8:72:b6:d4:
a2:c3:f5:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:50:33 2025 by rpki-client