Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D21A070114411F0AE228297762E951A.roa
File: 6D21A070114411F0AE228297762E951A.roa (raw, json)
Hash identifier: JXBx9XjlDJwTF9NnYFpA0DiAmVxFzqL+/N0jm7RQc/g=
Subject key identifier: 55:8F:30:F8:ED:36:07:6A:7D:F1:80:18:29:B9:16:B5:14:EA:D3:BE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0177BE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D21A070114411F0AE228297762E951A.roa
Signing time: Fri 04 Apr 2025 11:03:24 +0000
ROA not before: Fri 04 Apr 2025 11:03:19 +0000
ROA not after: Thu 08 May 2025 11:03:19 +0000
asID: 44559
IP address blocks: 154.219.76.0/24 maxlen: 24
154.219.77.0/24 maxlen: 24
154.219.78.0/24 maxlen: 24
154.219.79.0/24 maxlen: 24
154.219.80.0/24 maxlen: 24
154.219.81.0/24 maxlen: 24
154.219.82.0/24 maxlen: 24
154.219.83.0/24 maxlen: 24
154.219.84.0/24 maxlen: 24
154.219.85.0/24 maxlen: 24
154.219.86.0/24 maxlen: 24
154.219.87.0/24 maxlen: 24
154.219.88.0/24 maxlen: 24
154.219.89.0/24 maxlen: 24
154.219.90.0/24 maxlen: 24
154.219.91.0/24 maxlen: 24
154.219.92.0/24 maxlen: 24
154.219.93.0/24 maxlen: 24
154.219.94.0/24 maxlen: 24
154.219.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 04 May 2025 00:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96190 (0x177be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 4 11:03:19 2025 GMT
Not After : May 8 11:03:19 2025 GMT
Subject: CN=67efbc7b-9f93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ab:c9:84:7e:8d:0a:6c:1e:f0:8a:ee:6b:ba:
b3:6f:4f:33:d9:70:7a:e2:49:6a:98:02:32:8a:42:
41:34:d8:3c:aa:78:a1:96:3e:9a:36:b8:3c:a6:f9:
cb:38:ca:77:b8:48:3e:9f:52:ae:de:b2:c6:35:63:
2b:60:9b:c3:31:d1:b0:b4:ec:42:44:20:40:d5:65:
84:8a:e0:3d:ee:37:b2:f0:87:69:88:26:19:67:43:
03:12:ab:59:eb:80:bb:fc:f0:59:ef:ce:f7:81:36:
94:c0:84:f7:65:d2:2e:ee:72:bf:b3:7b:b9:6e:8d:
87:8d:da:65:b9:0c:e3:f7:15:f0:17:1b:9b:3c:de:
21:17:55:92:e5:d5:ea:14:37:e2:6e:74:81:7f:7f:
0a:20:8f:50:c6:2e:88:49:a1:6b:2c:ae:7a:11:e9:
c0:3e:5c:29:b2:4e:5a:75:13:d4:32:6d:a1:97:3f:
91:af:9c:41:17:7e:a8:d2:df:ae:8f:cd:e4:54:1e:
1c:9e:0f:8e:27:7a:93:50:8f:f6:4b:52:de:cf:a3:
e4:d3:c8:ec:c6:98:4c:34:ba:a5:40:09:8e:38:a4:
67:54:de:11:85:32:a3:91:d0:37:92:28:09:e3:55:
c8:25:90:f0:49:c5:81:63:93:a2:47:63:22:41:ff:
9a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8F:30:F8:ED:36:07:6A:7D:F1:80:18:29:B9:16:B5:14:EA:D3:BE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D21A070114411F0AE228297762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.76.0-154.219.95.255
Signature Algorithm: sha256WithRSAEncryption
69:4f:29:c8:d3:8d:65:00:f0:bf:73:49:e2:80:2d:38:d7:70:
e3:80:30:5a:b6:07:a3:98:15:57:37:8f:fa:ce:b4:a6:2e:59:
54:2e:15:3c:69:33:38:c9:16:15:e0:f5:17:4a:45:f7:a6:26:
ee:6a:1b:77:67:97:11:7a:17:30:9c:e5:6e:e2:bc:a4:f2:a7:
23:3f:84:04:52:95:9e:45:2d:8c:90:d4:10:21:a8:67:3c:99:
04:6d:b0:db:25:7b:ab:0a:a5:60:90:8e:51:e2:61:12:4f:d4:
cd:75:83:cc:fe:4a:b0:7e:fe:db:6c:32:e0:75:2b:eb:69:ee:
3d:dd:b6:b2:69:a5:04:9f:4c:36:67:80:a5:f6:56:ea:f6:b3:
d3:71:54:bf:32:72:53:04:80:23:5a:81:37:7f:6b:d3:1d:f4:
1d:32:ce:6d:98:07:e8:ee:b3:a6:d4:4c:06:2c:66:30:37:d2:
ed:44:ed:6d:e8:de:4a:31:3c:4b:0a:c6:bf:b7:59:1c:d0:05:
73:31:9c:b7:cd:b0:59:db:13:23:ef:a2:d8:b1:32:f1:f7:94:
13:c6:54:50:8d:7b:90:87:c7:cb:4b:03:fd:98:14:ac:db:a4:
9b:29:4c:75:92:1f:59:8d:d0:8c:6e:69:0b:e0:95:e6:b9:c4:
b8:89:73:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 02:52:46 2025 by rpki-client