Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/482F386624C911F087638498DAE4EC9C.roa
File: 482F386624C911F087638498DAE4EC9C.roa (raw, json)
Hash identifier: LebABDJugoMLmY85W6IO4nMr8oOUKtFUf/Qn4WKdCfo=
Subject key identifier: ED:AB:73:39:23:25:DC:6A:ED:E3:EB:E3:A8:58:07:CB:A0:8C:B1:FD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017CB4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/482F386624C911F087638498DAE4EC9C.roa
Signing time: Tue 29 Apr 2025 07:12:17 +0000
ROA not before: Tue 29 Apr 2025 07:12:12 +0000
ROA not after: Wed 06 May 2026 07:12:12 +0000
asID: 216038
IP address blocks: 154.86.26.0/23 maxlen: 24
154.86.30.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 01 May 2025 07:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97460 (0x17cb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 07:12:12 2025 GMT
Not After : May 6 07:12:12 2026 GMT
Subject: CN=68107bd1-ec55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:68:d7:f4:96:c7:6b:61:dc:0b:0a:23:9d:c0:
10:23:cd:79:fb:8d:46:3d:47:27:e0:bc:98:ff:aa:
62:88:01:34:3f:44:56:51:cb:5a:74:46:9e:e0:f2:
de:9d:00:f3:cc:da:7a:19:3d:ac:98:38:9b:e4:af:
44:91:39:6c:a1:8b:09:76:02:46:8f:83:9b:60:a9:
07:67:cd:1d:0f:eb:9c:c0:c8:54:84:3a:b1:e3:08:
cb:07:fe:d2:53:63:84:98:ef:4f:11:18:58:de:d3:
79:c0:35:52:d1:73:99:4f:df:59:fb:7a:08:e4:ac:
35:e8:a2:0b:d7:18:50:95:c5:0c:a4:c4:a7:bb:33:
80:76:5d:d3:c7:ad:cd:6b:f3:e9:37:48:59:d3:28:
b8:eb:f2:60:73:3f:b3:8c:14:a9:00:34:52:a6:d3:
73:6a:ac:20:31:3a:dc:60:04:6e:09:a9:24:81:36:
d8:3e:26:de:7d:7f:c0:bb:72:c4:4a:17:e7:44:fd:
43:0a:b5:f0:e4:c3:c3:b4:5f:6f:4e:c8:3a:c2:ce:
e1:79:c5:d2:0d:69:2a:4f:01:34:44:b8:00:a0:e1:
90:d0:62:be:0b:52:0a:1d:d4:e9:98:b1:a4:68:5c:
4f:ff:68:1f:6c:bb:8d:50:ff:58:d1:5c:9c:99:30:
68:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:AB:73:39:23:25:DC:6A:ED:E3:EB:E3:A8:58:07:CB:A0:8C:B1:FD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/482F386624C911F087638498DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.26.0/23
154.86.30.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:51:1d:ca:a1:98:7b:23:af:32:e4:7e:78:fb:e6:19:45:a3:
04:f9:70:9c:e8:46:78:9c:11:bd:36:38:d7:70:72:23:f4:54:
dd:92:e7:c4:6c:4a:ea:68:cb:f3:3e:62:32:e3:6b:1b:d3:82:
b6:fb:ba:22:a6:e3:52:96:57:91:fb:5c:12:8b:20:a0:9f:da:
96:29:60:83:59:8f:a0:07:42:a5:4c:fb:85:f3:25:22:2c:04:
8d:8f:6a:c2:ef:5a:90:09:26:9b:d9:e3:a9:3e:9f:df:0b:0d:
3c:1a:b6:32:d4:93:94:50:be:23:9c:76:e6:8d:db:eb:36:17:
dd:56:8c:bc:4f:46:21:81:94:6c:64:8c:f2:d9:1a:ce:ff:94:
d4:09:d1:fe:bd:92:8f:3f:f1:3e:24:15:dc:02:e3:f1:9a:35:
0d:5f:e4:83:ec:0a:b2:d1:b6:dd:18:3d:5c:78:71:68:88:e9:
67:3a:e9:5f:8f:88:99:1f:2c:c1:d6:cf:91:28:9e:59:40:22:
49:a8:c2:4f:f5:70:52:5e:8a:92:45:28:da:33:58:e5:46:1c:
f4:a8:f7:8b:f7:1a:cd:f7:69:03:80:cc:dc:98:24:b3:5e:a4:
fa:50:9a:9a:62:77:c0:ab:5b:06:ba:74:f5:e4:1e:de:d2:c3:
3a:a9:8e:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 18:01:40 2025 by rpki-client