![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E9F458C1FE311EF84B595307DDC24C2.roa
File: 5E9F458C1FE311EF84B595307DDC24C2.roa (raw, json)
Hash identifier: gFxyfyIiX8P2Q3PrLz/dr5EAadiXj7SCvf2zuda/8Ho=
Subject key identifier: 1B:73:4C:18:0C:7D:D6:B0:F7:FB:F2:52:0C:C2:E4:56:22:CE:66:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BC85
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E9F458C1FE311EF84B595307DDC24C2.roa
Signing time: Sat 01 Jun 2024 06:51:28 +0000
ROA not before: Sat 01 Jun 2024 06:51:24 +0000
ROA not after: Thu 04 Jul 2024 06:51:24 +0000
asID: 136950
IP address blocks: 154.213.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48261 (0xbc85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 1 06:51:24 2024 GMT
Not After : Jul 4 06:51:24 2024 GMT
Subject: CN=665ac4f0-e453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:27:4f:35:76:46:ac:48:74:c9:07:26:b3:1b:
52:69:83:d4:98:95:ef:20:93:1f:4c:3e:33:8f:45:
78:d3:c7:9a:a3:96:08:7a:62:19:3b:8c:8a:d4:13:
83:d2:d1:46:bd:bc:40:39:be:36:50:3d:b8:76:de:
8b:47:44:f1:fd:f6:92:17:01:87:41:55:a6:70:22:
68:19:c3:d1:01:f8:d7:de:d0:3b:0e:e1:14:60:ad:
d6:d1:70:c2:3a:1a:a5:33:99:8e:12:b3:35:ad:d5:
cb:c9:1d:95:b9:c9:30:13:8c:8c:37:e1:5f:31:6c:
d5:60:9e:ec:5a:0c:22:32:03:a4:b9:88:89:c1:e6:
35:35:89:83:61:fe:62:9d:11:25:96:63:ce:bc:b0:
43:06:0f:67:9d:e2:5d:96:ea:e8:8e:e5:93:82:18:
94:90:32:e2:6a:10:f1:26:a0:07:3b:bc:8b:10:c2:
e3:14:f3:60:fb:e6:58:c4:d0:a6:73:cb:70:7b:8d:
83:70:58:7f:97:84:52:ee:ff:4f:be:19:87:d9:1e:
54:e6:35:16:ce:53:2e:9e:7b:2d:95:fc:16:4b:bf:
57:0a:ff:f4:12:ae:fe:ff:cd:3c:be:72:0d:9a:76:
74:f3:77:64:0f:76:e4:87:07:7f:8b:9b:e7:1a:3c:
dc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:73:4C:18:0C:7D:D6:B0:F7:FB:F2:52:0C:C2:E4:56:22:CE:66:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E9F458C1FE311EF84B595307DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.29.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:ed:db:bf:eb:bf:8b:04:b6:6f:16:45:a2:56:8b:f8:c2:8f:
63:f6:a1:91:70:6b:1c:2d:c1:0f:9f:d8:9c:f3:fc:d4:a2:d8:
62:64:ad:20:9c:0f:29:03:32:00:85:05:ff:47:53:9a:94:2c:
b7:35:27:24:6c:a5:ef:0a:b0:95:0a:01:5e:8d:37:0e:13:4d:
c9:28:83:e2:d9:c2:f9:de:ac:4f:b7:c6:40:17:dc:65:ce:5d:
93:72:7b:8d:4c:9c:6f:40:35:96:63:7f:1d:0b:df:09:96:87:
95:a8:08:ba:44:ea:7c:1b:1d:4b:40:24:80:4e:cc:d8:fb:4b:
78:97:f4:61:d6:da:95:f3:6c:32:a2:91:7b:bf:14:f6:96:80:
5c:a7:1e:5d:42:02:83:0e:e3:9a:d8:b4:de:c6:a7:08:36:d6:
2d:62:3d:d8:97:df:90:af:bb:89:97:57:a7:15:2d:97:bc:50:
8d:90:43:5d:b4:22:55:2b:b9:7d:f2:f3:63:39:7d:39:eb:eb:
fe:ba:07:74:e7:e0:17:d2:52:3c:ce:e0:46:8c:e9:b9:3f:55:
4b:3e:21:24:8a:cd:a1:d3:e3:e6:bf:c8:fb:79:46:8c:25:e2:
03:4f:90:5b:14:6c:7e:d4:8f:26:7e:e3:3d:c6:7e:20:19:61:
14:55:03:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 09:29:08 2024 by rpki-client on console-fra.rpki-client.org