Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BD45E781F5F11F0849929D7DAE4EC9C.roa
File: 1BD45E781F5F11F0849929D7DAE4EC9C.roa (raw, json)
Hash identifier: dFKJURf0VOonF0uq0eNVlg47Cl9GZqIf9P43OuyvFGs=
Subject key identifier: C8:A9:63:27:7E:EE:1A:AD:B7:CA:B6:34:D8:02:68:E7:3A:F1:70:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017A8C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BD45E781F5F11F0849929D7DAE4EC9C.roa
Signing time: Tue 22 Apr 2025 09:49:40 +0000
ROA not before: Tue 22 Apr 2025 09:49:35 +0000
ROA not after: Wed 11 Jun 2025 09:49:35 +0000
asID: 57043
IP address blocks: 154.199.66.0/23 maxlen: 24
154.199.70.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96908 (0x17a8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 09:49:35 2025 GMT
Not After : Jun 11 09:49:35 2025 GMT
Subject: CN=68076634-68b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b2:7e:51:52:94:1d:5a:cd:67:75:e8:8a:36:
72:e1:0d:6a:60:1f:8e:11:4c:fb:74:d2:66:d3:3d:
32:47:c1:1d:1f:fa:96:6e:e9:a9:72:b6:ad:09:2f:
a4:0f:bc:1f:5c:3e:89:ac:0b:63:78:e2:c7:27:dd:
26:20:63:a0:b0:7a:70:06:6e:f5:c6:68:17:a5:38:
3c:d7:81:1a:4e:d7:13:69:77:f2:77:7d:89:9b:ba:
7b:1a:d8:0b:2d:0f:6e:11:87:6a:f8:b4:39:e7:2b:
4c:5e:14:59:e6:09:3b:f6:a8:bd:d8:42:0e:22:4c:
83:30:e9:aa:eb:dc:7b:55:ee:c9:a7:c7:5c:1c:a2:
da:d4:bf:04:d1:e5:5d:ea:06:af:84:0e:5b:8e:e1:
a8:50:9c:ab:0c:4e:b3:e2:eb:c1:2d:5c:77:42:af:
71:ec:d7:aa:68:4c:96:83:5f:34:bb:be:2c:28:52:
6f:9d:92:a7:9c:b0:dd:0e:48:05:5b:22:3e:21:ae:
af:b5:bd:e4:50:8c:e5:f0:00:d3:f6:00:cd:bf:d6:
7f:cb:e9:e6:4c:71:fb:09:8a:48:30:a8:18:f7:7c:
d9:fa:e6:db:ad:24:6a:d9:32:cf:52:87:1d:b7:4f:
c6:bf:bf:4d:4b:54:bd:d1:9c:d0:7a:0e:61:c9:1c:
6d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:A9:63:27:7E:EE:1A:AD:B7:CA:B6:34:D8:02:68:E7:3A:F1:70:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BD45E781F5F11F0849929D7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.66.0/23
154.199.70.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:f6:b5:c9:69:74:07:5c:0e:0c:33:40:39:3e:60:2a:13:d2:
25:bd:e2:79:0b:aa:f5:4f:60:cf:24:fb:8c:48:77:fa:96:fd:
97:7b:36:7f:df:da:cd:c0:dd:16:09:92:95:ce:02:48:dd:35:
c3:b4:49:f9:6d:da:75:89:72:5e:bd:d9:97:53:8f:23:84:c5:
72:a1:de:45:5c:8c:fe:13:1c:d1:82:00:3b:e0:48:c0:4d:f5:
6d:77:03:ad:9c:ba:6c:af:23:9e:f7:6f:dc:46:ad:00:d2:4c:
f2:bc:c5:a8:43:d8:e2:3f:5b:95:5a:12:75:b5:c4:e1:55:7c:
7d:d3:e6:3c:9f:71:53:0d:93:c7:da:cd:84:d0:d4:dd:fc:e6:
06:ef:e9:6d:c3:33:bc:bb:59:99:e5:4e:1e:28:38:12:57:3b:
dc:9b:dd:97:19:a2:66:bd:8f:aa:c9:78:64:3e:6e:bf:a7:7b:
17:e4:a6:af:70:6f:8d:0e:a9:f7:d2:e8:47:43:75:64:78:ce:
2d:0c:15:09:0b:c4:86:c6:ca:84:1d:e4:f4:d1:df:03:67:c5:
a2:56:94:49:e5:4c:86:ec:07:da:86:c8:9d:63:94:65:c3:3e:
fd:2c:62:80:68:f8:b4:d5:9f:93:82:b0:67:e5:da:9c:92:2d:
1d:a4:c7:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:03:25 2025 by rpki-client on console.sobornost.net