Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0691EA5CC52E11EF800C7D73762E951A.roa
File: 0691EA5CC52E11EF800C7D73762E951A.roa (raw, json)
Hash identifier: gQZNY25W1GPoak/X7LZyv0ICMtT510fapjuqVpRCNdU=
Subject key identifier: 91:16:ED:3E:BC:57:96:54:BB:24:B9:69:49:02:16:BC:90:2D:E6:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012BD1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0691EA5CC52E11EF800C7D73762E951A.roa
Signing time: Sat 28 Dec 2024 15:11:34 +0000
ROA not before: Sat 28 Dec 2024 15:11:31 +0000
ROA not after: Fri 12 Dec 2025 15:11:31 +0000
asID: 984
IP address blocks: 154.204.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76753 (0x12bd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 15:11:31 2024 GMT
Not After : Dec 12 15:11:31 2025 GMT
Subject: CN=67701526-6da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ea:11:46:9c:8e:11:c9:af:f7:52:e5:20:5b:
7e:20:ad:74:fa:0c:a4:8e:ba:25:1f:12:05:ed:e8:
52:4b:d1:a1:eb:11:a4:71:3f:98:a3:91:5a:35:82:
c0:68:b4:4d:d0:69:20:3d:e5:98:18:fa:b3:85:75:
f7:f7:67:9e:3f:fa:b4:ac:5e:37:6d:38:fb:6c:be:
73:66:bc:94:2f:e7:48:45:0b:ac:ae:f9:e0:29:fb:
e1:cb:34:3a:cb:c5:c1:ce:47:7e:89:58:6c:0f:c0:
91:c2:ac:55:71:e1:99:f7:bf:77:47:45:37:2f:5a:
eb:98:3c:4a:d9:f5:87:66:55:e3:29:f4:4a:af:49:
6f:3f:ea:67:8a:76:8b:03:2b:66:05:f0:4b:b2:b6:
b2:7f:da:2a:57:5d:c4:0f:47:23:7a:e5:52:3e:80:
3e:4f:cc:83:22:67:df:f7:eb:78:fe:2b:e4:02:b4:
e7:8c:0b:86:a3:57:8c:08:24:32:af:85:3a:f1:d9:
53:00:2d:c4:a2:69:bd:77:14:21:97:0f:fa:55:2f:
1e:67:ee:db:df:b6:bb:5c:34:49:4d:67:e3:bb:4d:
f7:5f:6d:db:af:ae:33:6f:79:7c:2a:d4:1a:8c:c3:
96:c4:aa:f2:84:ad:2e:d5:3e:9d:96:0a:20:29:de:
f3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:16:ED:3E:BC:57:96:54:BB:24:B9:69:49:02:16:BC:90:2D:E6:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0691EA5CC52E11EF800C7D73762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.81.0/24
Signature Algorithm: sha256WithRSAEncryption
57:de:66:43:ab:97:5e:91:77:38:2a:5e:8e:85:ec:42:92:87:
ef:f5:9c:4c:44:93:8b:14:2b:06:65:35:58:de:19:b1:78:d1:
a3:83:9f:77:d0:4e:58:eb:5f:b1:7d:81:f2:ad:db:d4:db:16:
95:07:6d:89:65:ae:af:c7:66:90:3a:45:63:03:f4:31:11:4c:
29:7c:30:eb:ec:5c:46:01:a7:1c:72:0e:67:e9:99:e9:c2:9a:
d6:5e:a4:e2:79:87:75:49:83:01:3d:59:8a:19:5b:73:c4:5e:
67:13:4f:27:21:b8:86:07:51:d1:de:94:1d:d4:bd:09:c2:50:
8b:d5:0f:5a:94:02:5f:4f:85:f8:c4:46:85:c4:a1:5e:57:6a:
11:61:be:6b:1c:b1:08:32:95:e0:06:71:f0:aa:54:dd:8f:b7:
5a:e1:a0:9f:2e:d0:21:0d:7c:e9:0e:79:b5:8c:14:4a:27:0b:
5e:e3:cb:48:7d:5b:64:1e:f5:b2:6d:ca:5f:da:c8:f5:18:15:
1d:7e:29:d5:21:1b:2f:22:7e:0d:06:16:d4:44:4d:c3:8f:9c:
bf:7c:88:ef:d5:bd:82:5f:4f:2d:3f:31:2b:12:c6:f2:e4:1e:
35:24:65:9d:f3:e7:b3:0b:7c:58:f5:6d:fb:6f:ca:b8:2a:e8:
83:48:7b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:50:57 2025 by rpki-client