Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01CD5E80C3D411EFBF857857762E951A.roa
File: 01CD5E80C3D411EFBF857857762E951A.roa (raw, json)
Hash identifier: iQLPfVgqPiG7mAjhNwl5LOKcwEOyGG+S+lLkBAUF8hs=
Subject key identifier: F7:B3:E8:C4:D3:ED:0D:C4:D3:B6:57:DE:4E:31:B6:87:D6:53:75:92
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01285E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01CD5E80C3D411EFBF857857762E951A.roa
Signing time: Thu 26 Dec 2024 21:54:40 +0000
ROA not before: Thu 26 Dec 2024 21:54:37 +0000
ROA not after: Sun 12 Dec 2027 21:54:37 +0000
asID: 17561
IP address blocks: 154.83.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75870 (0x1285e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 21:54:37 2024 GMT
Not After : Dec 12 21:54:37 2027 GMT
Subject: CN=676dd0a0-2ae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3e:da:c0:23:2b:b3:3f:1d:ec:c7:7e:e7:27:
bd:ac:31:69:7b:26:04:17:65:a6:3d:77:d7:00:e3:
cd:5f:11:80:c6:15:f0:cc:3b:e1:ae:15:d0:24:a7:
6b:b2:fd:68:e4:57:08:03:9a:ae:eb:ce:e3:d4:8c:
29:5d:9f:c5:9b:d6:bb:14:94:93:59:78:be:fb:10:
8b:80:51:78:bb:0e:99:88:a2:23:d0:76:7c:4a:34:
17:2c:8e:11:f6:1b:ee:5a:b9:b9:df:9e:77:33:d4:
79:8d:08:7c:8c:82:a8:3d:5d:fe:aa:33:74:4d:86:
56:04:07:81:3c:0c:5a:f6:fd:23:2b:eb:2b:f8:5f:
30:07:aa:bf:3c:c5:9c:d7:a6:6c:d4:80:48:0e:c5:
a2:b8:a8:07:ef:bc:a3:d6:1b:6d:b8:34:5e:98:7c:
ff:d4:70:e1:3c:92:00:fd:6d:16:69:cb:4e:36:a6:
5f:9d:5f:5b:1d:04:d6:a2:cb:85:1f:fd:d4:8e:f4:
9c:49:be:b5:41:6c:f5:3d:80:b4:85:46:db:db:7c:
1d:cc:86:69:5a:09:4d:79:73:70:4f:0c:11:ff:f6:
db:ae:14:f3:9e:e0:02:9e:49:50:36:99:14:fb:b0:
5a:a1:ad:51:03:7c:79:c8:07:73:29:d5:a1:cb:ed:
52:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B3:E8:C4:D3:ED:0D:C4:D3:B6:57:DE:4E:31:B6:87:D6:53:75:92
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/01CD5E80C3D411EFBF857857762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.241.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:db:bd:5f:0f:d3:3a:eb:93:16:a0:6e:80:3d:8f:b0:61:54:
18:e1:4c:0e:46:8e:9e:2c:6d:d4:05:56:95:74:ed:46:92:cb:
20:90:b2:a6:eb:e8:1e:c9:a4:f7:f6:6e:3b:94:79:02:4e:c5:
74:79:a1:62:29:29:c7:a6:7b:c8:7e:3f:c0:fd:58:d2:e1:fd:
41:33:11:d1:52:3e:0d:c9:4c:70:68:50:22:49:bb:33:c7:b6:
e0:a2:a7:49:38:cb:e3:a5:da:2f:8a:29:a7:45:43:50:b3:71:
7f:f0:79:19:61:19:0d:fe:c3:bb:48:19:9e:f8:cd:5b:bc:3a:
0c:56:30:8c:37:e2:08:2d:c4:97:50:be:e5:cd:0a:42:df:0b:
7e:49:9f:7b:f2:b1:d3:32:f1:e5:a8:dd:3b:8c:7d:6c:38:e2:
c6:a9:0f:81:82:2e:0a:4c:ee:dc:c6:df:e9:2e:56:58:e1:c0:
27:f0:12:c2:f9:3c:cb:93:46:04:5b:a5:80:34:cb:41:df:ec:
f3:40:ac:e9:8d:69:d1:82:15:12:1c:ea:e9:2a:fd:76:ec:25:
e1:4d:b6:0f:0b:5b:2e:1f:0e:6d:78:56:fe:94:5e:fb:24:7d:
82:27:99:a3:66:5a:b6:e3:c0:19:7e:79:1e:bb:92:4d:c6:32:
e9:22:2d:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:32:32 2025 by rpki-client