Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/7C0BFD26F4F511EFB3E4B9B5762E951A.roa
File: 7C0BFD26F4F511EFB3E4B9B5762E951A.roa (raw, json)
Hash identifier: 5wXs7RMJiyud6JyXFkR1o4z/jMZs+dRUug3mlkais2g=
Subject key identifier: 12:1D:1C:78:C9:B4:51:5A:FB:10:55:0C:DC:57:C5:B6:37:9B:05:93
Certificate issuer: /CN=F361D299AF/serialNumber=2B2442848174AA8894469A779B9FD7DA4958C669
Certificate serial: 0DE8
Authority key identifier: 2B:24:42:84:81:74:AA:88:94:46:9A:77:9B:9F:D7:DA:49:58:C6:69
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KyRChIF0qoiURpp3m5_X2klYxmk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/7C0BFD26F4F511EFB3E4B9B5762E951A.roa
Signing time: Thu 27 Feb 2025 10:27:46 +0000
ROA not before: Thu 27 Feb 2025 10:27:40 +0000
ROA not after: Thu 27 Feb 2031 10:27:40 +0000
asID: 37199
IP address blocks: 197.155.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/KyRChIF0qoiURpp3m5_X2klYxmk.crl
rsync://rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/KyRChIF0qoiURpp3m5_X2klYxmk.mft
rsync://rpki.afrinic.net/repository/afrinic/KyRChIF0qoiURpp3m5_X2klYxmk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3560 (0xde8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361D299AF
Validity
Not Before: Feb 27 10:27:40 2025 GMT
Not After : Feb 27 10:27:40 2031 GMT
Subject: CN=67c03e22-b6b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:10:c7:58:ae:11:c5:51:48:40:04:e6:e4:29:
84:b3:18:97:07:6c:55:b4:b2:4f:d2:cf:7a:16:60:
d3:07:91:91:9d:c1:76:a0:c7:17:72:4a:e2:8e:8a:
5e:c4:8b:3c:5f:d4:c7:d9:b7:f2:76:e2:92:4b:b0:
a9:7e:55:98:63:6f:17:34:df:7d:27:1d:84:49:d4:
de:14:3b:72:65:20:80:d6:52:81:47:1d:31:65:db:
c1:d9:98:93:b5:79:e6:b0:ba:36:76:a6:17:be:10:
82:3b:fa:9c:c2:81:9d:26:9d:d3:42:e7:12:f0:30:
80:3e:09:a6:ac:6f:73:94:4b:78:fc:ca:54:fa:a3:
42:52:8c:50:fe:4f:80:d1:f2:53:0f:dd:7b:6b:d0:
0b:96:95:d3:a8:5b:e9:cf:9f:4c:17:08:39:de:3c:
69:4c:90:a0:24:e9:ad:c9:ba:61:c8:44:ea:17:b6:
d5:47:79:86:81:f6:55:31:16:e3:26:46:e8:68:00:
ff:65:0a:fb:ac:60:e3:4f:dd:81:04:0d:36:64:2d:
17:19:d1:d4:45:51:7c:1a:57:ec:0a:ca:71:f4:9a:
0f:a2:7c:22:bf:ed:04:9f:31:52:0c:00:40:96:5a:
4e:34:2b:57:98:7e:68:94:99:61:a1:b6:f4:3e:13:
1e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:1D:1C:78:C9:B4:51:5A:FB:10:55:0C:DC:57:C5:B6:37:9B:05:93
X509v3 Authority Key Identifier:
keyid:2B:24:42:84:81:74:AA:88:94:46:9A:77:9B:9F:D7:DA:49:58:C6:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/KyRChIF0qoiURpp3m5_X2klYxmk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KyRChIF0qoiURpp3m5_X2klYxmk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361D299/48F008D856D511E5845EF85CF8AEA228/7C0BFD26F4F511EFB3E4B9B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.155.0.0/19
Signature Algorithm: sha256WithRSAEncryption
38:d9:e5:f1:0a:e4:b5:b2:72:3d:71:10:bd:42:61:90:93:ae:
f8:b0:e1:39:68:2d:f9:5b:b5:d7:6e:2a:3f:d4:69:5f:b9:51:
e6:bd:ef:da:e7:64:d0:23:98:5e:e7:26:17:ef:38:9e:2b:c1:
fe:f7:6f:5d:d1:98:30:c9:cb:99:ec:95:26:28:75:50:5b:aa:
10:db:74:85:07:43:58:75:3b:65:b6:43:d8:b0:48:d1:3a:09:
76:5e:a0:47:5b:8d:f8:5c:09:4a:19:c1:4b:ed:24:d7:e7:1f:
75:7c:f1:50:76:dc:d6:e2:2e:81:ff:d8:e6:c4:36:3c:76:d6:
43:95:35:1f:f7:ea:07:ec:ac:5a:cb:9b:03:67:17:11:5c:e1:
c9:3d:e7:ab:94:11:13:5b:09:ea:7c:13:d6:db:a8:4a:bd:cf:
c0:aa:e5:46:b3:0b:b5:c8:da:88:c6:48:09:0d:5a:8e:1e:47:
17:3f:46:d2:4d:4c:1a:46:b3:e2:13:6b:05:2a:c0:67:b2:f9:
04:5e:de:d9:5f:52:7b:42:ca:0f:14:54:af:6a:70:c8:2f:74:
85:3c:32:a3:db:e2:c5:46:92:91:0d:4b:ce:b6:b5:c1:3c:0a:
45:e7:0f:14:7e:9a:2a:62:2d:36:15:60:8f:9f:1f:90:36:25:
d7:80:d8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:00 2025 by rpki-client