Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/DB96D28E044511F0B15D9244762E951A.roa
File: DB96D28E044511F0B15D9244762E951A.roa (raw, json)
Hash identifier: i+EO9un0S5Mao/hCZ7gU7BvNM5zD9ye2X0RQkXQ9bls=
Subject key identifier: DD:C2:B0:11:8E:01:2C:5E:3C:06:84:7B:10:B9:36:1E:55:47:3E:57
Certificate issuer: /CN=F368B07FAF/serialNumber=78825B2BC908A40FEF62B26482D61A98575FCBD3
Certificate serial: 0AEA
Authority key identifier: 78:82:5B:2B:C9:08:A4:0F:EF:62:B2:64:82:D6:1A:98:57:5F:CB:D3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/eIJbK8kIpA_vYrJkgtYamFdfy9M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/DB96D28E044511F0B15D9244762E951A.roa
Signing time: Tue 18 Mar 2025 22:10:53 +0000
ROA not before: Wed 19 Mar 2025 22:10:49 +0000
ROA not after: Mon 01 Mar 2027 22:10:49 +0000
asID: 37314
IP address blocks: 41.79.20.0/22 maxlen: 22
41.79.20.0/24 maxlen: 24
41.79.21.0/24 maxlen: 24
41.79.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/eIJbK8kIpA_vYrJkgtYamFdfy9M.crl
rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/eIJbK8kIpA_vYrJkgtYamFdfy9M.mft
rsync://rpki.afrinic.net/repository/afrinic/eIJbK8kIpA_vYrJkgtYamFdfy9M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2794 (0xaea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368B07FAF
Validity
Not Before: Mar 19 22:10:49 2025 GMT
Not After : Mar 1 22:10:49 2027 GMT
Subject: CN=67d9ef6d-ec2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f2:bb:6e:cf:82:24:1c:fc:b9:f4:b4:31:8f:
ff:83:a6:91:5e:c5:d1:78:f9:1d:f0:35:fe:42:b6:
eb:c1:5f:55:2e:b5:45:be:5d:cb:53:2d:b0:f2:f6:
64:78:95:e5:17:2e:fd:96:43:99:c2:0f:84:07:ad:
79:91:6a:a4:03:01:c1:5c:8d:d1:78:4e:08:d7:c3:
72:50:12:ca:69:3e:36:92:f3:e5:ac:ed:fc:a4:a3:
28:93:4f:d9:fb:04:4a:ea:48:32:76:45:23:14:61:
3c:b0:2c:84:1b:5d:dd:c7:54:66:c3:8e:41:41:1d:
98:84:3b:4f:58:99:84:bd:fb:af:ec:79:c8:b3:f5:
7c:a7:9a:c7:7f:51:ae:d7:86:76:2b:11:e8:61:33:
f8:a7:ca:b4:f9:20:d5:18:32:b2:2c:94:d7:24:a0:
7d:52:55:2d:1d:a3:b0:5e:80:37:74:a6:10:89:f4:
c2:ef:d5:82:3b:81:47:1c:35:77:87:8e:b7:80:96:
35:ae:e1:c1:62:b3:c9:41:57:cd:17:90:7a:21:ae:
bf:87:91:db:90:bd:1f:65:a5:dc:e5:7f:3a:41:73:
9f:31:38:dd:fe:43:5e:fe:85:9b:bb:64:fc:9a:9d:
38:29:f9:a8:b3:0d:9e:fc:c0:46:57:f2:79:5b:f9:
51:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C2:B0:11:8E:01:2C:5E:3C:06:84:7B:10:B9:36:1E:55:47:3E:57
X509v3 Authority Key Identifier:
keyid:78:82:5B:2B:C9:08:A4:0F:EF:62:B2:64:82:D6:1A:98:57:5F:CB:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/eIJbK8kIpA_vYrJkgtYamFdfy9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/eIJbK8kIpA_vYrJkgtYamFdfy9M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368B07F/9A1299DEB9C411E78B59C061F8AEA228/DB96D28E044511F0B15D9244762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.79.20.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:d0:b0:2a:5d:66:66:44:b2:78:2f:9a:27:c8:fb:4c:b6:6e:
23:2d:e0:bd:8a:ba:00:0d:0c:d4:e7:15:d2:8f:9c:89:f3:3b:
99:32:ec:73:93:75:1e:0c:c5:d6:37:c7:ab:ff:bf:f0:bb:fa:
ea:6a:64:21:96:a0:54:88:e1:cc:34:03:d5:64:c2:b8:26:89:
b1:ea:6a:99:e5:23:8e:7e:26:da:06:f8:e4:9e:5b:f2:47:95:
6c:c6:a9:1e:61:35:54:f2:1f:92:90:c6:4f:2d:b6:d4:b4:f5:
da:17:d3:dd:9e:52:a1:e3:f5:1b:9a:4c:25:75:85:b7:d0:73:
12:7c:40:0c:1c:dc:0d:79:09:bb:a0:d2:65:cb:7a:90:07:f2:
2e:06:60:fd:ee:69:5f:b3:dc:bd:91:45:84:24:69:7c:1d:21:
3f:5b:9e:2f:56:e9:b5:d0:fd:4c:ca:d0:c4:92:5a:80:5b:eb:
f6:8a:52:5b:c2:8f:d6:c4:d7:de:ce:ec:6b:77:fc:ed:6a:d2:
21:4e:d6:d2:72:50:d3:84:37:8e:25:8e:7c:06:b5:70:a1:88:
15:bf:bb:de:d4:a4:6b:21:59:ae:a8:1d:73:3c:db:7d:7d:46:
e4:f1:ac:3e:87:77:f4:26:a7:45:36:ef:2e:f9:bc:b9:87:5d:
51:21:65:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:46 2025 by rpki-client