Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8164D7E1F4B11F0A8656DD8DAE4EC9C.roa
File: A8164D7E1F4B11F0A8656DD8DAE4EC9C.roa (raw, json)
Hash identifier: FQ8vyQxMUEL//tzBq04+ZxG/BULf5gnsrFmZ5DzOy3M=
Subject key identifier: AF:B8:1E:7C:54:C3:19:23:70:5C:E2:D6:0F:12:69:7D:36:F4:5A:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017A66
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8164D7E1F4B11F0A8656DD8DAE4EC9C.roa
Signing time: Tue 22 Apr 2025 07:30:25 +0000
ROA not before: Tue 22 Apr 2025 07:30:20 +0000
ROA not after: Thu 01 May 2025 07:30:20 +0000
asID: 5065
IP address blocks: 154.206.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96870 (0x17a66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 22 07:30:20 2025 GMT
Not After : May 1 07:30:20 2025 GMT
Subject: CN=68074591-ec8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a7:5a:5f:05:af:fa:19:28:84:9d:3a:72:43:
c7:9c:5b:1f:05:a7:8f:b2:38:42:a2:70:14:c6:52:
dc:55:68:5f:28:18:b6:94:cf:9f:94:11:c6:9f:d0:
25:c6:e0:91:b5:f4:7e:56:6c:99:7c:89:51:2a:b7:
e0:ca:2a:28:85:81:dd:c6:12:02:c7:50:1e:06:f5:
c7:5c:28:bb:91:07:cc:bb:83:09:35:9c:3f:7a:4c:
22:25:f9:6e:b1:bb:73:69:69:1c:62:ff:6d:d9:97:
b7:f1:67:30:0b:be:d5:34:d6:29:13:b3:cc:71:7b:
e2:23:e0:a3:8f:6b:b9:8f:7e:c8:63:5b:c7:c3:93:
57:32:57:af:b9:be:10:13:9e:16:38:4e:ab:dc:8f:
4e:f7:74:43:64:c8:79:aa:b1:b0:fe:f7:0e:fc:05:
d2:11:09:ab:8b:f7:87:8f:e2:c5:5e:e0:ed:fe:83:
a8:71:3f:69:96:96:32:75:0c:19:eb:06:8f:a3:ef:
f4:d4:a5:02:ad:65:5a:3a:18:6e:9a:e4:8a:fc:91:
a9:e8:d0:a4:3c:cb:de:ec:20:81:06:f3:07:2e:e8:
8b:9d:db:ec:51:22:27:26:b9:f6:fa:bc:6b:e7:8e:
f3:bb:48:3c:12:55:e5:0e:91:f2:0a:fd:76:9d:74:
e3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B8:1E:7C:54:C3:19:23:70:5C:E2:D6:0F:12:69:7D:36:F4:5A:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8164D7E1F4B11F0A8656DD8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.52.0/22
Signature Algorithm: sha256WithRSAEncryption
34:96:ff:70:d6:92:81:b7:29:5a:59:23:06:e6:e0:19:e2:55:
65:e2:cb:e0:3c:ce:9b:ed:7b:e7:cc:fd:17:41:f3:31:7f:09:
d6:ff:4f:02:64:04:6b:91:46:0b:e1:f7:a9:61:2f:28:b3:00:
42:f2:b0:c8:0d:03:9b:35:73:00:4c:13:c7:8c:f4:16:28:52:
db:e8:ba:59:9e:4d:79:61:8e:3f:a7:73:bf:13:b4:22:90:5d:
b7:23:16:8b:83:cb:a0:05:ee:bc:d6:7a:7f:7a:11:a6:65:f0:
8a:31:a3:36:69:39:4b:2a:60:79:ee:34:0e:3b:9f:8a:91:4c:
e5:0e:c5:4b:43:ee:0c:29:50:1c:ed:4e:a4:51:28:2f:59:85:
cd:b4:68:21:ab:a1:6b:d1:c3:5c:9b:53:6a:65:72:3b:ee:46:
88:0c:4a:a2:7c:80:88:7f:5e:54:c0:7c:fa:1d:24:54:77:60:
95:c2:b6:ad:7e:ea:77:28:e6:3d:23:9b:b0:7c:87:03:39:74:
36:9d:56:be:6b:22:08:68:53:e4:65:ce:13:66:74:c0:fb:64:
90:3e:18:48:27:eb:12:50:63:b4:95:86:2f:ea:17:85:d1:c9:
46:ac:19:07:ee:3e:ff:97:62:4a:f4:f1:06:33:58:a7:b7:f5:
10:eb:59:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:04:17 2025 by rpki-client on console.sobornost.net