![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73A3EB01FE411EFA334B03D7DDC24C2.roa
File: D73A3EB01FE411EFA334B03D7DDC24C2.roa (raw, json)
Hash identifier: 2PzYmKoZbZFZk1YR0O5stmr4KSiEpFVSu7my4rEj6Yk=
Subject key identifier: 65:1F:09:62:30:34:6B:AA:5B:AB:40:B6:A7:EF:57:70:3F:9A:B3:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BC9D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73A3EB01FE411EFA334B03D7DDC24C2.roa
Signing time: Sat 01 Jun 2024 07:02:00 +0000
ROA not before: Sat 01 Jun 2024 07:01:56 +0000
ROA not after: Thu 04 Jul 2024 07:01:56 +0000
asID: 136950
IP address blocks: 154.213.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 28 Jun 2024 06:02:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48285 (0xbc9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 1 07:01:56 2024 GMT
Not After : Jul 4 07:01:56 2024 GMT
Subject: CN=665ac767-de55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:17:95:79:73:dc:fe:bb:34:b5:a0:fe:4c:4a:
ea:d7:62:50:0b:db:7d:0e:82:a6:dc:a3:99:03:45:
73:79:82:36:c4:92:89:fb:53:33:0d:b9:19:2d:c1:
d4:0e:f7:ee:25:e4:b7:e7:51:2c:b8:7b:a4:8a:24:
a3:4b:11:bb:49:63:ce:aa:88:b2:5c:12:ed:f8:b1:
8f:ce:cb:37:2e:65:02:47:5b:ee:dd:86:9f:02:e1:
77:ac:42:81:8f:9f:6b:26:97:55:c4:da:b6:a1:9c:
1c:3a:4e:66:03:19:4f:d5:9d:fb:00:16:ca:ff:91:
72:1c:b9:8a:30:7d:61:f5:53:b2:6e:79:2d:03:e2:
03:d1:55:e6:b1:77:3f:1e:04:92:21:5f:13:d3:ee:
f1:3e:42:ea:cc:55:99:49:f5:9b:74:96:50:29:37:
fe:14:a3:0a:6c:96:02:d5:38:59:49:49:08:fd:8d:
00:da:17:b0:b0:e4:94:19:a0:08:67:2e:2e:4e:b5:
b4:d1:db:85:f6:ec:54:a3:3c:3f:ca:ce:15:ed:f9:
d1:83:08:a7:97:f0:4b:1b:27:b5:78:eb:2d:d1:1c:
8e:32:a8:84:a5:ec:cb:54:02:19:ee:55:08:a5:99:
a1:99:f5:73:00:b5:ca:66:47:c2:6b:ea:a7:68:b9:
e3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:1F:09:62:30:34:6B:AA:5B:AB:40:B6:A7:EF:57:70:3F:9A:B3:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73A3EB01FE411EFA334B03D7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.17.0/24
Signature Algorithm: sha256WithRSAEncryption
81:ce:68:66:cb:e4:1f:13:4d:b2:96:dc:59:ec:34:cc:21:9e:
c7:6e:68:8a:39:d1:fc:f0:bd:5b:84:1c:11:c0:b3:ca:46:ff:
f7:39:20:88:75:ae:a1:21:bf:7b:bc:af:30:a9:4d:73:0e:8a:
10:32:e5:de:93:9f:cb:2e:8e:df:91:71:bd:91:09:f6:e4:32:
85:e3:d3:28:63:7f:b1:f7:c2:c0:c6:46:d3:21:f5:9f:5a:ed:
0f:3b:61:16:00:ef:19:fa:34:9a:9c:96:cb:a9:02:9e:6b:b4:
d1:a1:9d:7a:36:fc:c6:78:e2:51:69:7d:61:ea:4c:4a:34:58:
6b:36:11:4d:60:5c:1c:c6:b7:43:58:25:b4:b2:83:e1:c6:70:
e8:80:2f:bc:21:46:04:1e:4a:0f:55:eb:df:87:c5:40:47:37:
87:b2:7c:f8:d3:4e:09:3a:70:2e:a6:da:52:eb:2e:21:80:f0:
3e:b2:05:e5:e2:f0:2e:7a:50:cf:13:2a:ae:45:c3:67:ed:33:
97:e2:8f:4f:49:a9:a5:7d:ba:b7:01:7f:c7:64:bf:72:b1:b0:
0b:20:5b:71:62:2e:cb:e4:24:71:1d:27:cb:1e:61:aa:6c:65:
4d:39:73:6a:80:db:01:ee:17:a0:3e:af:60:84:06:41:22:6b:
d1:0e:ec:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 09:29:18 2024 by rpki-client on console-fra.rpki-client.org