Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAB5056A16A911F0AB9096C76DB8BCC6.roa
File: BAB5056A16A911F0AB9096C76DB8BCC6.roa (raw, json)
Hash identifier: RHVvG0blqsTnmWn7jexK5SNkJVo+lFnPknOBsNfr+nI=
Subject key identifier: A2:4D:6B:E7:4F:51:6B:BD:AC:94:2F:5D:DB:71:28:52:D2:7B:DB:23
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0178D3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAB5056A16A911F0AB9096C76DB8BCC6.roa
Signing time: Fri 11 Apr 2025 07:51:09 +0000
ROA not before: Fri 11 Apr 2025 07:51:05 +0000
ROA not after: Sun 22 Jun 2025 07:51:05 +0000
asID: 47890
IP address blocks: 154.214.196.0/24 maxlen: 24
154.214.198.0/24 maxlen: 24
154.214.205.0/24 maxlen: 24
154.214.213.0/24 maxlen: 24
154.214.215.0/24 maxlen: 24
154.214.224.0/22 maxlen: 24
154.214.230.0/23 maxlen: 24
154.214.238.0/23 maxlen: 24
154.214.240.0/22 maxlen: 24
154.214.248.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96467 (0x178d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 11 07:51:05 2025 GMT
Not After : Jun 22 07:51:05 2025 GMT
Subject: CN=67f8c9ed-e401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7f:3f:c8:2e:f5:32:67:59:13:3b:c8:1c:d7:
63:e6:b5:61:df:7e:cf:4b:f6:ba:af:37:6d:b2:4d:
e3:37:17:31:ad:1f:e1:ed:7b:f0:3b:08:ba:6c:7e:
15:39:48:e7:51:2d:f6:3d:ad:32:3d:0f:8a:ef:2a:
12:f3:cb:a5:fd:ad:c6:2f:8c:c5:e3:f4:07:a9:58:
0c:99:1e:6a:a7:f4:db:4a:83:e0:5d:b3:a1:ee:45:
2f:01:96:c2:93:61:27:1b:f1:43:2c:82:1a:19:ba:
da:cd:7b:4c:da:21:4b:f8:a5:b3:da:85:4a:43:46:
37:54:99:6f:94:ab:80:6c:eb:e8:dd:94:7d:c8:f4:
ae:0e:48:92:c3:63:9b:b6:e0:ba:7b:c8:44:1a:56:
b6:af:d6:4d:89:1e:6a:57:dc:72:13:4b:57:c5:d6:
7f:fe:4b:e2:fa:8f:69:c8:93:38:56:a5:55:c3:8e:
98:73:a6:61:4e:75:9e:08:ca:66:06:9f:c4:92:ef:
5e:89:8f:29:ca:bf:13:a7:be:1f:5d:44:c6:09:bc:
a5:35:b9:1c:8e:f1:4e:d8:71:d7:d0:fa:b8:e3:8d:
8d:b9:1c:cf:4f:cc:65:0a:76:e0:eb:cd:22:a8:06:
31:5b:41:ff:c2:dc:8e:57:2d:69:11:1f:42:1f:a6:
45:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:4D:6B:E7:4F:51:6B:BD:AC:94:2F:5D:DB:71:28:52:D2:7B:DB:23
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BAB5056A16A911F0AB9096C76DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.196.0/24
154.214.198.0/24
154.214.205.0/24
154.214.213.0/24
154.214.215.0/24
154.214.224.0/22
154.214.230.0/23
154.214.238.0-154.214.243.255
154.214.248.0/23
Signature Algorithm: sha256WithRSAEncryption
ce:e6:90:f0:df:9a:09:63:2d:a0:e6:74:5c:e2:03:5c:5e:10:
0a:9f:1a:20:5a:c3:a2:8b:69:f3:b3:a3:2f:1a:98:f5:5b:94:
06:eb:33:e8:84:5e:24:22:ba:cb:29:01:2a:e5:8d:8b:a9:e0:
3b:22:d3:66:2a:67:7e:d0:42:1a:81:cd:04:fa:ab:91:31:10:
a4:5b:5b:d2:7e:2d:8e:5c:e9:91:48:86:32:17:84:29:a6:5a:
47:a1:93:c4:e9:0b:bd:40:7c:78:96:05:a8:82:9f:3d:62:64:
29:21:db:f8:8b:92:f5:3b:66:8e:08:6d:8d:2b:d2:9b:d6:24:
fa:2c:59:c1:86:53:d6:f6:2f:19:30:54:75:ed:45:be:57:b5:
a4:1a:66:07:f5:9e:da:2c:92:a2:38:42:d2:1c:4f:4e:de:30:
7f:25:f7:ee:4d:4b:b4:da:31:25:69:39:66:9d:48:cb:f3:d3:
2f:04:a1:17:9c:77:16:cf:8e:d9:7e:a1:56:0f:22:a8:93:57:
23:52:a0:cc:3f:d1:b6:22:a6:42:44:69:e0:bf:59:40:df:88:
56:e4:8a:e1:78:09:83:1e:01:07:25:e5:d8:6d:79:f1:5f:62:
17:1b:c5:7c:06:36:71:f4:7a:b3:96:5b:9b:7d:ca:23:c2:1c:
cc:b8:72:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:57:25 2025 by rpki-client on console.sobornost.net