Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C83A83980CDD11F0AF90E15E762E951A.roa
File: C83A83980CDD11F0AF90E15E762E951A.roa (raw, json)
Hash identifier: Rri3h4hqq/CKOuruxNfpE3risFwc/jUOMFPkTEd3eiU=
Subject key identifier: 67:92:AE:5D:B9:B5:ED:58:A1:88:B3:C2:E0:8D:9F:93:EE:F8:80:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0176F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C83A83980CDD11F0AF90E15E762E951A.roa
Signing time: Sat 29 Mar 2025 20:38:34 +0000
ROA not before: Sat 29 Mar 2025 20:38:29 +0000
ROA not after: Wed 28 May 2025 20:38:29 +0000
asID: 52263
IP address blocks: 154.194.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95992 (0x176f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 20:38:29 2025 GMT
Not After : May 28 20:38:29 2025 GMT
Subject: CN=67e85a49-5b28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e3:e5:cb:44:92:77:3b:4a:94:d1:97:a5:13:
f3:c9:a1:3e:d8:4e:dd:14:b8:25:70:5b:eb:d2:72:
86:26:70:d9:8c:42:2c:43:2c:39:8b:30:15:f0:bb:
3f:34:b0:68:9c:fd:48:84:71:40:49:b8:45:c4:71:
d2:69:9e:eb:73:2c:e8:76:ea:94:dc:80:2b:e6:6d:
db:af:03:6a:ac:dc:4a:a3:ad:4f:ff:2f:9d:a7:a3:
7f:ca:64:f6:a4:e8:9c:7f:04:72:1f:fb:70:c5:d1:
13:e4:5d:b9:d9:04:42:9e:29:40:8b:d0:32:e1:97:
a3:65:75:8c:70:3d:16:4e:52:71:89:fc:36:0c:d4:
21:f2:25:87:e0:e6:e6:2c:c6:b8:3f:be:47:25:ce:
4f:46:ab:ca:41:79:1e:fd:95:8c:95:51:ae:de:69:
56:2b:2d:48:7e:03:5f:70:eb:68:62:7c:d2:6f:38:
b3:aa:ef:d3:48:f4:b7:0d:40:90:5f:2d:58:24:50:
a0:bf:2a:2c:92:8c:42:96:27:d8:bf:49:20:71:9f:
cc:51:cb:a3:60:c6:86:c2:e1:59:de:63:61:05:cf:
cd:94:2e:62:0a:15:02:8b:86:3c:7a:0f:d5:49:b8:
73:5f:39:ba:65:0f:33:31:19:b0:6a:d2:80:35:8e:
c5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:92:AE:5D:B9:B5:ED:58:A1:88:B3:C2:E0:8D:9F:93:EE:F8:80:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C83A83980CDD11F0AF90E15E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.69.0/24
Signature Algorithm: sha256WithRSAEncryption
01:93:87:12:a8:07:3c:ae:6c:e3:f6:f7:dc:07:5d:58:d6:99:
b6:ff:9c:c4:31:9b:d9:2a:fa:8f:e7:33:de:98:84:40:94:ed:
54:83:b0:b4:4e:71:41:0e:8b:78:b0:4a:b2:f5:f0:a7:da:3c:
b3:cf:73:eb:8d:40:fd:a5:6d:4b:3f:c1:1a:e5:56:d3:c3:d9:
31:58:67:91:0b:84:73:64:3e:cd:f6:8f:a7:1a:c7:4e:76:ed:
00:c9:90:e8:b3:93:d4:63:2d:1c:f9:87:c6:ac:2b:1b:07:e7:
8e:2c:38:4d:0c:62:da:41:67:ae:73:28:cd:8d:7b:18:c7:24:
d6:b5:38:fe:a8:c5:ae:2f:b6:24:c5:92:03:64:16:c9:a1:fb:
ff:d7:e4:fb:5b:2e:e0:83:f5:81:a9:74:e7:16:02:58:64:98:
eb:7f:2c:f9:ff:19:8e:61:1e:47:97:0c:c5:f8:b7:04:26:bd:
c4:72:66:5a:59:93:5c:99:24:46:a5:08:b2:4a:0f:46:be:48:
f4:28:ec:a2:30:1c:5f:4a:d7:e6:2a:a8:d6:64:fb:51:f2:ae:
9a:1d:82:86:f8:c5:bc:cd:58:41:4d:18:6f:1e:e6:51:f1:64:
66:be:d0:71:59:c9:24:ff:0f:9d:fb:b5:6e:d4:3c:b9:f2:0f:
be:11:89:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:57:29 2025 by rpki-client on console.sobornost.net