Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E79FF5BC151411F0AB35A8B36DB8BCC6.roa
File: E79FF5BC151411F0AB35A8B36DB8BCC6.roa (raw, json)
Hash identifier: iGAr6QOSBKLRdwTm3xKTuPx7t1ONFyNkX1OpRVqHR4Q=
Subject key identifier: 56:A3:1B:75:3B:B8:22:5F:E5:A8:96:DB:42:FF:EB:CD:EB:5E:BF:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01786C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E79FF5BC151411F0AB35A8B36DB8BCC6.roa
Signing time: Wed 09 Apr 2025 07:33:18 +0000
ROA not before: Wed 09 Apr 2025 07:33:14 +0000
ROA not after: Thu 08 May 2025 07:33:14 +0000
asID: 45194
IP address blocks: 154.84.192.0/24 maxlen: 24
154.84.193.0/24 maxlen: 24
154.84.194.0/24 maxlen: 24
154.84.195.0/24 maxlen: 24
154.84.196.0/24 maxlen: 24
154.84.197.0/24 maxlen: 24
154.84.198.0/24 maxlen: 24
154.84.199.0/24 maxlen: 24
154.84.200.0/24 maxlen: 24
154.84.201.0/24 maxlen: 24
154.84.202.0/24 maxlen: 24
154.84.203.0/24 maxlen: 24
154.84.204.0/24 maxlen: 24
154.84.205.0/24 maxlen: 24
154.84.206.0/24 maxlen: 24
154.84.208.0/24 maxlen: 24
154.84.211.0/24 maxlen: 24
154.84.242.0/24 maxlen: 24
154.84.247.0/24 maxlen: 24
154.84.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96364 (0x1786c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 9 07:33:14 2025 GMT
Not After : May 8 07:33:14 2025 GMT
Subject: CN=67f622be-9f7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:91:86:4a:b0:86:97:c4:87:18:e2:65:f7:f1:
cf:98:f1:a3:57:48:c2:c3:10:de:9e:a1:0c:9e:36:
ef:c8:52:04:d6:60:86:a2:ac:c6:3b:45:36:9d:68:
60:f8:a2:ee:9c:1d:0e:57:a2:31:f4:3e:be:f4:09:
02:76:3b:cd:86:aa:6a:fd:81:dd:41:51:9d:0a:85:
7c:71:7a:b2:3b:87:8a:95:36:00:5b:bf:36:4d:46:
3a:c5:7a:dd:58:69:c5:c3:3b:43:82:bb:dd:fb:c5:
06:a6:d1:b4:8c:13:38:4b:6b:a0:8b:a1:30:cc:f8:
58:0c:f9:73:2d:ec:3f:ef:69:bb:33:f4:35:c4:47:
41:a0:04:27:09:9b:1a:fe:a2:65:7b:af:9c:1f:7a:
d7:c5:21:20:3e:85:b5:67:c7:bc:6b:38:23:cf:78:
d7:e2:e0:e5:a3:79:cb:cb:fc:66:bf:3d:14:1d:5d:
d5:13:04:e3:34:89:4d:8c:67:9f:66:bc:00:82:89:
f9:ba:5a:dc:51:f1:ca:75:11:6d:07:e9:29:74:56:
33:23:27:e0:87:67:a2:89:e9:6c:b6:08:5e:ed:b2:
b5:63:8f:92:ab:44:02:05:50:c1:88:cb:38:a9:09:
d3:57:e6:e6:e8:06:37:51:54:81:c9:f4:ed:d8:d4:
38:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:A3:1B:75:3B:B8:22:5F:E5:A8:96:DB:42:FF:EB:CD:EB:5E:BF:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E79FF5BC151411F0AB35A8B36DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.192.0-154.84.206.255
154.84.208.0/24
154.84.211.0/24
154.84.242.0/24
154.84.247.0-154.84.248.255
Signature Algorithm: sha256WithRSAEncryption
cd:12:74:91:4d:00:25:a9:6e:c1:9e:25:4f:1c:25:c5:41:25:
2e:38:4c:b2:ff:4d:9e:cb:25:53:0d:3a:fd:92:0e:ff:b7:6e:
80:fe:f7:f2:fd:be:6f:ca:21:1f:49:be:84:6b:d8:05:bb:6e:
eb:f2:5c:5b:2b:20:49:45:e9:44:c9:08:13:52:78:ad:b1:e7:
af:34:41:e7:ae:4a:0e:6c:d3:fb:56:f4:02:87:48:b8:6a:ff:
55:9d:51:58:0a:aa:26:39:48:cd:50:ff:52:50:e4:4b:46:62:
ff:09:30:29:3f:d1:01:d7:4d:b2:3e:46:2d:f1:78:c6:54:28:
fd:67:be:1a:ed:b0:82:6e:2c:e1:77:ec:e9:00:a6:e5:f2:4f:
3d:76:e8:71:1b:a4:bc:b5:f4:69:75:ab:83:0f:33:4b:a8:ea:
52:4c:d6:ef:2e:99:77:e8:cd:af:ac:c7:df:1f:10:4c:10:a4:
a5:e2:20:79:a1:1f:14:7e:8f:a8:5f:2f:89:0b:96:4c:f5:f3:
2c:2b:3e:8c:5f:58:10:d8:f1:f9:55:31:49:b6:5f:7a:24:e5:
de:34:e6:d4:3b:53:d4:22:da:5f:cf:61:8f:cd:e7:f2:0d:f9:
46:35:11:7e:a3:80:a2:8f:14:d4:aa:bd:81:b9:32:a9:a6:dd:
ef:d5:ab:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:14:59 2025 by rpki-client