Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA74F01013E511F0AEDA737B762E951A.roa
File: EA74F01013E511F0AEDA737B762E951A.roa (raw, json)
Hash identifier: CN/TpQ7nzeesTbEjJqtqUJvpX0DueigVgLetaXyR548=
Subject key identifier: F1:E6:8C:52:0E:4A:03:F7:AC:F7:45:88:39:B7:60:A0:11:26:AD:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01782B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA74F01013E511F0AEDA737B762E951A.roa
Signing time: Mon 07 Apr 2025 19:24:25 +0000
ROA not before: Mon 07 Apr 2025 19:24:21 +0000
ROA not after: Tue 10 Jun 2025 19:24:21 +0000
asID: 203020
IP address blocks: 154.217.5.0/24 maxlen: 24
154.217.6.0/24 maxlen: 24
154.217.7.0/24 maxlen: 24
154.217.8.0/24 maxlen: 24
154.217.9.0/24 maxlen: 24
154.217.10.0/24 maxlen: 24
154.217.11.0/24 maxlen: 24
154.217.12.0/24 maxlen: 24
154.217.62.0/24 maxlen: 24
154.217.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96299 (0x1782b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 7 19:24:21 2025 GMT
Not After : Jun 10 19:24:21 2025 GMT
Subject: CN=67f42669-d3eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:68:7c:3f:93:a2:c1:a6:cb:4f:0c:5e:a9:01:
c2:77:c5:93:81:69:a4:ff:88:4b:d0:78:0f:33:98:
39:f0:33:69:25:86:ef:9d:9c:d4:7c:d4:18:7d:1b:
f2:c1:f0:e4:83:b0:9f:eb:7f:ff:6c:65:c8:ad:21:
e7:26:b3:86:1a:0e:9e:2a:42:54:d5:55:28:03:35:
64:bb:43:d7:14:02:1c:0d:e8:fa:f1:91:9d:dd:6c:
98:eb:e8:e5:d6:5e:37:80:99:de:6a:d9:26:bc:49:
ea:13:7d:5b:c0:b5:66:52:88:ef:78:6b:db:6e:73:
6c:bf:2f:88:87:1a:54:9f:a9:25:6f:a3:e8:13:13:
c3:f8:28:b9:8b:86:9f:4b:4c:19:7c:af:4c:7d:df:
fb:da:d5:21:f0:00:05:8f:6c:24:a7:50:d3:65:e3:
a3:97:1f:a1:4b:db:96:93:19:7c:e8:da:cb:41:21:
9a:2a:5e:a8:89:7c:ab:e0:78:30:09:a1:16:a3:2e:
5f:58:91:5a:ca:6e:66:df:88:ec:f9:e9:ff:77:ee:
e4:d9:0e:df:e9:c2:f5:ee:b1:54:91:0a:f6:83:66:
e5:00:3c:96:ea:cb:93:00:d0:6a:7b:a4:3c:d7:ee:
c9:f5:41:c8:b7:e0:78:24:da:8a:76:e7:7e:2b:30:
84:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E6:8C:52:0E:4A:03:F7:AC:F7:45:88:39:B7:60:A0:11:26:AD:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA74F01013E511F0AEDA737B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.5.0-154.217.12.255
154.217.62.0/23
Signature Algorithm: sha256WithRSAEncryption
12:28:c1:e7:16:0b:a4:28:3a:df:6b:8b:b2:bd:49:d6:90:da:
57:41:a5:df:9f:57:ac:b5:7d:1b:0c:19:2a:c0:45:48:99:80:
de:0c:91:74:96:8d:6e:65:45:44:2f:45:64:49:69:95:bf:0a:
6f:f2:f7:a6:56:3c:dc:76:2f:52:16:0b:ee:0d:fc:a8:a4:fb:
a8:7c:62:40:b6:1b:4a:78:0f:8f:27:95:32:00:e7:ad:c2:c2:
13:56:70:dc:89:fd:f9:cf:4c:e1:b2:0e:2d:f0:b3:4e:02:a8:
51:d3:9d:46:4d:02:77:6f:5b:a1:bf:83:2c:64:34:ea:20:5c:
56:b9:c9:4d:5b:23:9d:d4:71:73:b5:48:65:5f:cd:7d:1e:65:
fe:b4:08:ae:1b:08:30:0f:35:63:19:ce:a3:a2:52:20:9c:d8:
66:85:ef:11:27:a0:65:b3:1a:7e:81:de:b4:4e:3d:32:57:0b:
1e:47:11:66:01:a7:9b:31:4b:7e:8d:ea:eb:3f:13:c1:06:63:
62:ac:b3:b2:fa:c3:33:da:c7:7a:e6:19:07:a4:f6:33:5d:3a:
fa:54:3e:c9:13:40:34:56:8b:b8:9a:f5:6b:c6:ef:d8:00:7b:
88:00:23:12:bc:48:45:51:e1:4a:0d:3d:46:85:87:8e:b0:5b:
7c:3a:91:a9
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAXgrMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDA3MTkyNDIxWhcNMjUwNjEwMTkyNDIxWjAYMRYw
FAYDVQQDEw02N2Y0MjY2OS1kM2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5mh8P5OiwabLTwxeqQHCd8WTgWmk/4hL0HgPM5g58DNpJYbvnZzUfNQY
fRvywfDkg7Cf63//bGXIrSHnJrOGGg6eKkJU1VUoAzVku0PXFAIcDej68ZGd3WyY
6+jl1l43gJneatkmvEnqE31bwLVmUojveGvbbnNsvy+IhxpUn6klb6PoExPD+Ci5
i4afS0wZfK9Mfd/72tUh8AAFj2wkp1DTZeOjlx+hS9uWkxl86NrLQSGaKl6oiXyr
4HgwCaEWoy5fWJFaym5m34js+en/d+7k2Q7f6cL17rFUkQr2g2blADyW6suTANBq
e6Q81+7J9UHIt+B4JNqKdud+KzCE6wIDAQABo4ICszCCAq8wHQYDVR0OBBYEFPHm
jFIOSgP3rPdFiDm3YKARJq1vMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQTc0RjAxMDEzRTUxMUYwQUVEQTczN0I3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBACa2QUDBACa2QwDBAGa
2T4wDQYJKoZIhvcNAQELBQADggEBABIowecWC6QoOt9ri7K9SdaQ2ldBpd+fV6y1
fRsMGSrARUiZgN4MkXSWjW5lRUQvRWRJaZW/Cm/y96ZWPNx2L1IWC+4N/Kik+6h8
YkC2G0p4D48nlTIA563CwhNWcNyJ/fnPTOGyDi3ws04CqFHTnUZNAndvW6G/gyxk
NOogXFa5yU1bI53UcXO1SGVfzX0eZf60CK4bCDAPNWMZzqOiUiCc2GaF7xEnoGWz
Gn6B3rROPTJXCx5HEWYBp5sxS36N6us/E8EGY2Kss7L6wzPax3rmGQek9jNdOvpU
PskTQDRWi7ia9WvG79gAe4gAIxK8SEVR4UoNPUaFh46wW3w6kak=
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:51:49 2025 by rpki-client