Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05285E14F39911EF92BB3246762E951A.roa
File: 05285E14F39911EF92BB3246762E951A.roa (raw, json)
Hash identifier: TM2Z+2miymwK0z+gC+HLVQl7f3pJYCriFYlVNJJU+GI=
Subject key identifier: 27:0B:87:AC:7A:0F:92:6D:69:D3:1E:D6:88:C6:F8:91:30:D5:86:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015F92
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05285E14F39911EF92BB3246762E951A.roa
Signing time: Tue 25 Feb 2025 16:53:21 +0000
ROA not before: Tue 25 Feb 2025 16:53:18 +0000
ROA not after: Wed 09 Apr 2025 16:53:18 +0000
asID: 138915
IP address blocks: 154.95.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90002 (0x15f92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 25 16:53:18 2025 GMT
Not After : Apr 9 16:53:18 2025 GMT
Subject: CN=67bdf581-5c7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:87:56:09:6f:91:30:d4:79:43:c6:0a:9a:8a:
e1:74:c8:6c:5f:42:b5:b8:1f:a3:bc:be:04:9d:92:
d3:35:71:4f:11:13:57:00:6d:6b:a6:4e:28:8c:47:
c7:75:31:7e:49:e6:af:e4:48:4e:71:db:37:65:17:
1f:f4:56:81:5b:23:d8:d6:57:6c:c3:b3:c5:a9:eb:
7d:19:b3:40:9e:2a:72:e7:29:b9:d2:56:bb:43:95:
51:60:20:97:8d:f2:8b:e5:54:21:76:6a:4e:dd:3d:
90:8d:65:0b:76:6a:26:d7:e0:50:b8:b9:e8:cb:85:
e6:3c:44:67:06:fc:67:af:7c:3a:47:47:b9:d7:90:
d4:d7:31:7f:8c:9f:cb:96:1f:81:a0:02:50:d4:16:
08:04:34:ca:c9:3a:12:e1:fe:b5:ac:a6:d7:c2:69:
36:23:ea:0a:4e:2d:85:c1:0e:58:6f:e0:d9:f6:1a:
6b:92:a2:dd:14:88:0f:e1:49:0c:6f:d4:c3:63:7e:
68:4f:4b:f2:11:c5:f1:27:63:13:26:e0:eb:3e:a9:
24:ad:99:30:ec:6d:fc:27:3b:c3:15:a9:34:6c:fc:
72:fc:e6:79:34:38:d4:e4:02:67:f2:e4:ea:59:85:
53:51:0b:65:c3:ae:75:6d:5d:87:ad:f1:44:31:04:
d3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:0B:87:AC:7A:0F:92:6D:69:D3:1E:D6:88:C6:F8:91:30:D5:86:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05285E14F39911EF92BB3246762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.96.0/19
Signature Algorithm: sha256WithRSAEncryption
39:12:93:24:7f:e4:9e:57:6b:5a:3e:e1:d9:9e:a3:17:df:57:
90:4d:76:43:eb:b4:2d:9a:af:a1:5b:28:50:2b:8b:e3:f5:36:
c2:07:77:4f:6a:c5:20:2b:80:bf:4f:99:da:92:6a:cc:34:44:
f8:fd:23:6c:7c:6a:4e:30:c7:29:d1:1f:23:36:2d:fe:1d:2f:
94:4a:3a:91:6b:da:52:16:0a:4c:c4:05:1e:09:84:bf:1a:b4:
88:9a:c4:1c:e1:78:0e:69:b4:ec:f5:1a:2d:31:71:b2:be:e1:
77:28:ee:fc:8f:a8:e8:da:84:ea:dc:22:31:51:2c:cb:62:c5:
89:7f:e0:6e:63:85:27:ba:f1:c7:a6:bc:ca:5f:2e:60:d5:02:
ca:cf:d6:ba:93:59:b2:15:3c:8e:83:91:15:c6:3a:1e:65:cd:
aa:10:f6:b0:62:7d:5a:c1:18:46:30:22:7b:52:e5:e3:59:60:
de:6e:80:dd:60:4a:e0:08:3e:c0:f9:5f:ad:3f:17:7e:cb:f9:
35:26:d4:57:41:32:78:0f:20:cd:25:87:b3:b0:98:66:7f:93:
76:ed:f5:96:31:59:e6:32:99:11:af:44:b4:29:f6:1f:75:86:
75:a3:1f:88:86:47:76:af:1e:d6:0f:8d:db:53:64:95:bd:a8:
10:ca:4e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:54:56 2025 by rpki-client