Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD7E80461C5111F0B06425EADAE4EC9C.roa
File: DD7E80461C5111F0B06425EADAE4EC9C.roa (raw, json)
Hash identifier: DuEwUXgPmDZ/xdqWZBj8KxMe/2jnAssW/r8gSeG2LzM=
Subject key identifier: 3F:3A:44:66:07:68:A5:D6:D1:B4:8B:9A:03:7F:22:AE:E0:90:C3:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01797B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD7E80461C5111F0B06425EADAE4EC9C.roa
Signing time: Fri 18 Apr 2025 12:37:19 +0000
ROA not before: Fri 18 Apr 2025 12:37:14 +0000
ROA not after: Sun 25 May 2025 12:37:14 +0000
asID: 272854
IP address blocks: 154.194.13.0/24 maxlen: 24
154.194.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96635 (0x1797b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 12:37:14 2025 GMT
Not After : May 25 12:37:14 2025 GMT
Subject: CN=6802477e-dd0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6a:3e:55:b1:5b:d8:e7:5c:12:24:31:5e:23:
ca:70:c6:2b:ab:3c:3c:3a:f1:96:3e:5b:2b:65:05:
fe:fe:90:ae:09:25:ff:68:ca:b9:8c:38:91:45:2e:
87:94:4b:f9:25:d3:11:4d:3f:66:43:04:3d:bd:77:
cd:b2:65:6a:dc:2f:a4:4e:eb:a6:63:03:0a:95:9a:
fc:c7:c9:2f:15:4a:77:73:96:f4:a7:d5:f6:aa:94:
6b:14:58:09:ef:46:fa:d0:35:1e:b5:36:2b:88:fd:
49:21:76:0d:15:fe:9a:bf:0a:c1:5d:2b:ea:8c:01:
7e:5c:e3:81:90:04:0c:58:ce:4b:6b:8a:5c:e5:75:
c2:9b:33:63:f0:e9:b5:d8:46:34:6c:bd:f9:ad:48:
ca:4d:3a:72:bc:60:f8:81:ce:4a:05:c8:66:c1:1b:
2a:af:58:f6:18:b7:29:a2:29:69:29:9f:5e:ee:74:
cd:c7:d5:9e:d1:d5:b7:93:48:9e:96:d9:88:c3:5b:
24:6e:e6:2c:3c:8e:15:ca:9f:40:92:e4:a2:8f:6d:
46:e7:69:61:99:f8:4c:cd:fc:33:18:8d:47:2c:e0:
5d:54:cc:6e:bb:f1:81:80:47:03:4c:a9:85:97:db:
98:05:3c:cd:9b:45:8b:20:95:97:b1:6e:ed:03:24:
af:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:3A:44:66:07:68:A5:D6:D1:B4:8B:9A:03:7F:22:AE:E0:90:C3:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DD7E80461C5111F0B06425EADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.13.0-154.194.14.255
Signature Algorithm: sha256WithRSAEncryption
25:1d:19:c8:77:9f:42:cf:04:f7:5b:98:12:33:f3:0c:8b:b1:
c4:24:9a:3d:f9:1a:b3:3c:10:f8:d1:cf:3e:0a:54:3f:70:62:
18:64:0c:c9:4d:56:58:4a:5f:70:1f:21:32:b9:de:92:09:7e:
fe:3f:2e:c8:d3:f6:f2:1f:69:76:11:b3:33:56:fa:97:63:d7:
25:40:8d:3b:9c:23:26:cc:e4:24:09:62:44:26:72:d2:64:72:
3a:80:c4:d4:86:99:16:65:62:a5:ff:f6:da:c0:4f:fb:59:b7:
da:9b:f2:e3:21:73:cc:6b:65:55:5a:92:6b:bb:05:1f:bc:63:
21:fe:72:43:1f:06:00:0b:48:3d:1c:6a:83:10:a7:ad:77:6b:
bd:97:e6:62:9c:42:fa:ce:28:bd:28:d5:95:50:3c:7c:69:42:
d8:2e:1d:8b:f5:26:26:d6:fe:b3:46:af:31:7b:a2:90:dd:0b:
b6:4b:a3:f5:3e:03:d8:e3:95:5a:1b:e5:19:ba:35:21:f3:c5:
cd:5a:07:50:4b:ae:ce:08:82:07:29:a4:bc:6a:06:fc:eb:cf:
0d:ab:aa:fa:c6:74:52:69:9a:07:cd:96:e0:50:88:2b:5b:86:
03:52:15:de:b5:b6:a2:13:bd:95:6e:9f:e9:02:dc:3f:37:aa:
cf:13:e9:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:57:03 2025 by rpki-client