Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D3C723E37DC11F0B0988885DAE4EC9C.roa
File: 5D3C723E37DC11F0B0988885DAE4EC9C.roa (raw, json)
Hash identifier: YHs1U8+foFtj+W7Ept2JUOrs3lCyQ7EqINf47JjpJsY=
Subject key identifier: 96:A7:60:F7:60:6B:56:7E:C8:80:84:49:E1:D4:78:D2:3C:81:AD:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018211
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D3C723E37DC11F0B0988885DAE4EC9C.roa
Signing time: Fri 23 May 2025 13:46:45 +0000
ROA not before: Fri 23 May 2025 13:46:39 +0000
ROA not after: Sat 28 Jun 2025 13:46:39 +0000
asID: 25160
IP address blocks: 154.81.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98833 (0x18211)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 13:46:39 2025 GMT
Not After : Jun 28 13:46:39 2025 GMT
Subject: CN=68307c45-ec0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f1:7d:bf:6f:a0:66:d0:17:85:22:88:7f:3b:
70:35:65:58:17:f5:2e:ee:33:4f:a6:15:d3:27:91:
8a:fc:da:81:14:9c:c4:0f:5a:b8:5f:b4:d3:d0:2a:
be:98:d5:4c:69:34:b1:fa:c7:ea:b9:0e:04:a8:aa:
6d:6e:c0:b4:0e:d5:ab:89:3a:b2:97:2f:f1:03:00:
a6:60:5a:c0:6e:e2:23:32:6d:6e:3b:d2:30:14:93:
79:96:bb:b5:db:6a:7e:5c:74:81:d9:f6:1c:3b:81:
b4:67:21:e3:a0:2e:34:d8:ea:bd:61:cc:a7:4c:a0:
97:e4:c5:39:df:86:bd:aa:e2:5f:68:93:ad:66:e0:
d1:a3:ac:8e:e9:94:51:6f:82:94:46:be:9a:bc:7f:
c2:55:32:ea:f9:7a:d2:c6:88:6a:ae:a1:9a:5a:c5:
41:1a:0b:6d:57:94:12:05:73:cb:33:8c:63:d8:ec:
61:9e:8f:b9:06:09:ed:98:52:a8:33:07:7e:ac:87:
b1:88:83:bf:4a:fc:8f:9d:a4:2f:b8:ba:a1:24:e8:
90:f0:75:1d:de:be:ed:af:ea:a5:df:7c:9b:a4:8b:
7f:4e:50:23:28:08:a8:fb:49:a4:ad:8d:30:99:7e:
67:93:e3:62:cc:04:86:b5:f5:37:3e:10:9e:d4:6e:
0d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:A7:60:F7:60:6B:56:7E:C8:80:84:49:E1:D4:78:D2:3C:81:AD:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D3C723E37DC11F0B0988885DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.50.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:4a:82:2a:99:11:04:70:34:ea:34:d2:0e:85:95:2e:14:6f:
36:7f:31:5b:b2:ef:bf:9a:d8:cb:4e:c7:63:27:58:d1:11:b3:
34:34:88:93:69:26:da:60:4a:12:49:f3:4a:24:7f:63:a0:65:
51:b3:08:8e:79:20:77:6c:dd:4f:6b:ca:d1:76:57:14:48:a3:
fc:bc:d6:47:1d:18:ca:c4:72:d2:a7:9e:19:4e:7d:8f:00:c4:
56:19:4c:35:16:77:68:fe:7d:be:f9:1b:11:38:9f:10:c6:3e:
7e:4b:81:d6:36:bc:f5:97:86:ef:7e:e2:6a:cc:73:d0:cc:cd:
8a:9e:5f:cf:2d:9f:90:8e:c9:09:6b:f6:ab:32:15:81:93:ed:
26:9f:8f:b4:c1:07:0d:ac:3f:81:e9:28:6b:ee:a7:f2:bf:39:
a1:c5:25:03:28:94:21:a7:bf:d3:c8:7f:b2:2b:67:5f:b6:54:
3c:a3:1e:a4:cb:64:9d:a0:12:df:41:e7:45:66:9a:d7:55:10:
e9:bd:e0:fe:23:08:cd:2a:98:87:6a:56:af:d0:c3:40:31:74:
44:20:64:f1:80:89:56:23:f3:c8:91:cf:e6:97:e2:94:2a:2e:
83:3f:5d:28:d9:a6:46:8a:8b:f4:8d:04:1a:72:3b:85:3d:07:
84:39:95:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 05:17:17 2025 by rpki-client