Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4CC0F81C150E11F0A6A518096EB8BCC6.roa
File: 4CC0F81C150E11F0A6A518096EB8BCC6.roa (raw, json)
Hash identifier: gSVFWWuSsAFvduBdoZUBTdGbaNHO3L0n3dDV7PRxNR4=
Subject key identifier: 7F:1E:04:83:0D:75:ED:74:16:E1:CE:4F:36:D1:BB:29:19:EA:F2:F3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017864
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4CC0F81C150E11F0A6A518096EB8BCC6.roa
Signing time: Wed 09 Apr 2025 06:46:01 +0000
ROA not before: Wed 09 Apr 2025 06:45:57 +0000
ROA not after: Tue 13 May 2025 06:45:57 +0000
asID: 57043
IP address blocks: 154.84.174.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96356 (0x17864)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 06:45:57 2025 GMT
Not After : May 13 06:45:57 2025 GMT
Subject: CN=67f617a9-029f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:79:b1:03:74:77:5c:9b:9e:3d:79:13:2c:a8:
d3:03:22:3b:26:d0:e0:6c:be:7c:05:97:90:8b:1e:
bd:b0:9c:11:ac:9c:43:ad:79:b2:07:7f:78:a5:09:
6b:5b:cc:7a:61:4d:3e:a4:11:19:b8:6b:f2:ca:78:
4f:d5:58:59:f6:6e:16:dc:f5:09:cf:80:c5:85:9a:
cc:fa:73:bd:4d:28:cd:55:7a:45:36:f7:92:9c:e1:
32:b0:60:01:e3:20:ae:9d:3a:d3:cd:16:67:ae:61:
6f:69:ef:c9:d4:ac:63:62:f0:3e:06:95:34:93:60:
6f:13:22:b3:03:e4:cc:07:48:40:8a:c0:70:76:f8:
d2:14:7c:c2:7e:89:48:26:25:13:46:7a:e5:d2:33:
18:c4:85:01:e0:51:a2:6a:00:3c:4f:98:bf:42:f0:
c2:78:a0:50:7f:e8:cd:c0:1a:47:71:5a:77:68:5f:
0a:5a:12:89:aa:53:2b:45:85:9f:b7:92:48:4e:37:
55:f9:b4:1c:61:dd:92:49:33:a5:d3:6e:87:62:59:
54:ec:ff:51:35:93:de:57:a1:88:07:16:56:95:aa:
3a:81:4f:64:c5:2a:bb:1f:68:aa:3b:db:f9:f8:ea:
3c:72:c4:de:b3:42:9e:75:4d:6f:f3:4f:1b:39:2e:
4c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:1E:04:83:0D:75:ED:74:16:E1:CE:4F:36:D1:BB:29:19:EA:F2:F3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4CC0F81C150E11F0A6A518096EB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.174.0/23
Signature Algorithm: sha256WithRSAEncryption
30:22:60:79:7c:09:10:22:65:2f:dd:49:42:16:3e:4d:c7:36:
0e:d1:b8:9f:8b:57:db:d6:e6:2f:a8:be:f8:48:8a:23:69:2d:
3b:04:81:fa:ed:8b:12:a6:ff:63:3f:c9:1f:62:d5:9b:0e:fc:
01:4d:eb:03:55:94:69:ee:1d:e1:b6:7f:1c:39:4b:74:13:9d:
d0:cd:0b:b6:35:59:2f:80:3d:62:e8:74:1c:b8:e5:23:6a:42:
13:eb:f8:c8:a9:fa:c6:c4:d6:3f:85:14:f2:87:5d:33:13:99:
ee:e4:8b:82:8f:d0:d8:d2:b9:4d:05:ee:29:7d:78:f4:95:d1:
6e:62:29:4f:05:b7:f6:38:45:d5:a5:4e:5d:16:f4:f6:25:91:
fa:1d:b6:40:ff:a1:35:2c:56:d8:99:01:65:e5:7a:53:ff:70:
e1:43:91:62:31:8a:61:47:b8:87:a1:ed:7e:bc:7e:ed:68:bc:
05:68:18:a1:c9:08:03:04:04:86:9e:ac:8d:f6:80:02:4e:0f:
5b:6d:61:e2:22:d0:8a:ed:24:ce:5d:65:4c:80:de:12:12:66:
ff:79:d9:2f:b7:31:84:6e:16:81:63:34:e1:ea:64:88:10:f2:
d0:5e:39:3a:b1:95:3c:26:be:bd:7d:9e:fa:66:be:05:d0:46:
51:53:fa:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:55:30 2025 by rpki-client