Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC71C5741DE711F088052F87DAE4EC9C.roa
File: BC71C5741DE711F088052F87DAE4EC9C.roa (raw, json)
Hash identifier: XnkLYxUGJPPYWgioaGWTlNZ80bJ7Q8YhplC3sIxwbTI=
Subject key identifier: 88:94:B2:F3:E3:0C:7F:6D:4D:95:79:48:B6:9B:94:D8:A4:B1:DF:1F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017A28
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC71C5741DE711F088052F87DAE4EC9C.roa
Signing time: Sun 20 Apr 2025 13:02:39 +0000
ROA not before: Sun 20 Apr 2025 13:02:34 +0000
ROA not after: Sun 27 Apr 2025 13:02:34 +0000
asID: 5065
IP address blocks: 154.206.33.0/24 maxlen: 24
154.206.34.0/24 maxlen: 24
154.206.35.0/24 maxlen: 24
154.206.36.0/24 maxlen: 24
154.206.37.0/24 maxlen: 24
154.206.41.0/24 maxlen: 24
154.206.42.0/24 maxlen: 24
154.206.43.0/24 maxlen: 24
154.206.44.0/24 maxlen: 24
154.206.45.0/24 maxlen: 24
154.206.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 13:02:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96808 (0x17a28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 20 13:02:34 2025 GMT
Not After : Apr 27 13:02:34 2025 GMT
Subject: CN=6804f06f-0ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:82:8b:16:53:82:49:3c:01:8f:42:7a:15:4b:
53:34:01:21:32:80:27:53:60:21:ec:20:39:68:a6:
8b:57:d4:7a:39:6a:c4:ec:d2:f6:ea:fc:c6:4e:14:
73:f5:aa:d6:19:10:96:50:8d:82:7a:12:d6:c2:61:
42:87:c4:b2:f4:8a:65:b5:f7:65:0d:44:5b:36:15:
b0:89:b3:c2:31:3f:ff:5f:7f:60:76:1c:ae:33:23:
ff:6a:4e:6f:55:2f:8d:54:4d:2f:70:3b:3c:29:60:
b7:10:d0:83:da:e2:b6:ad:0f:73:44:be:7f:ef:48:
c1:f4:b0:cd:8e:4f:0f:5a:dd:49:2a:b0:6d:7a:e4:
95:c1:96:bf:a9:8b:56:32:c3:41:bd:5e:6d:b6:ca:
96:ac:95:0c:53:4b:44:cd:ff:7e:de:49:48:69:18:
cd:c7:d3:1c:8a:05:8c:d5:41:86:98:f7:6e:fe:99:
53:99:eb:c3:53:6c:b7:a4:0e:fb:7f:16:5b:fa:4d:
ff:de:48:e6:6f:fb:c4:9e:49:85:3a:da:71:fb:9a:
5f:b2:d5:b3:66:02:03:8d:bb:06:51:16:c2:b3:3d:
c3:cb:5e:b4:eb:e2:62:e9:ea:1e:95:9a:f4:23:b9:
6f:0b:5d:fa:0d:43:91:d7:01:91:d9:7d:30:d3:50:
8d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:94:B2:F3:E3:0C:7F:6D:4D:95:79:48:B6:9B:94:D8:A4:B1:DF:1F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC71C5741DE711F088052F87DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.33.0-154.206.37.255
154.206.41.0-154.206.45.255
154.206.52.0/24
Signature Algorithm: sha256WithRSAEncryption
43:ca:79:0c:34:83:ac:73:f9:e4:54:e7:3f:26:36:a0:f4:1d:
8c:f8:3c:e9:5c:13:be:53:89:0a:f0:84:f8:29:1a:cc:e3:68:
da:dd:9e:08:bb:bd:1e:a8:03:81:a0:73:93:24:20:57:b2:5d:
66:5a:91:72:e2:48:2e:7e:3e:c3:80:f4:d2:81:ee:8a:02:18:
08:ba:ac:16:6b:98:65:55:00:49:19:35:d3:11:9d:17:20:fd:
02:2e:18:7b:a8:61:68:f7:6a:fb:8a:29:0e:f3:10:7f:78:31:
2e:9b:75:1d:cd:1f:b7:0d:03:2e:85:b9:8a:68:1f:90:4f:e5:
29:3d:ea:21:ad:8f:97:15:44:ac:0f:42:ea:af:f1:b8:26:ce:
62:a3:8e:fc:43:1b:71:12:e6:08:36:93:e1:38:22:9e:d0:e0:
90:a6:de:b5:99:9e:e4:af:8e:75:6a:da:56:91:2a:4f:ac:d4:
b0:c9:1f:24:77:54:44:3b:aa:ba:d8:9a:db:dc:af:20:63:ec:
66:9b:a8:76:4b:4e:43:85:04:21:5c:d5:8e:1e:42:c3:b8:ef:
bd:c4:bd:2e:f0:ee:d8:7c:a3:b0:76:c6:5b:3e:ff:af:ac:dc:
06:4f:9d:45:b2:93:b4:73:ea:db:93:e3:ed:9e:be:83:2f:c6:
84:e7:d1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:09:15 2025 by rpki-client