Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07936946C35611EF888C49BE762E951A.roa
File: 07936946C35611EF888C49BE762E951A.roa (raw, json)
Hash identifier: UpfFVUmvZbGBZgdNsF2XIlxL5hnM159Xm1eJsCfsKDQ=
Subject key identifier: C0:18:CC:B7:93:05:FC:89:11:AE:63:C6:7F:BF:86:23:1A:2A:09:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0125DF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07936946C35611EF888C49BE762E951A.roa
Signing time: Thu 26 Dec 2024 06:52:53 +0000
ROA not before: Thu 26 Dec 2024 06:52:50 +0000
ROA not after: Sun 12 Dec 2027 06:52:50 +0000
asID: 17561
IP address blocks: 154.88.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75231 (0x125df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 06:52:50 2024 GMT
Not After : Dec 12 06:52:50 2027 GMT
Subject: CN=676cfd45-7bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fa:d9:e2:cf:0c:b3:76:23:6e:8d:30:2a:13:
f7:39:29:9b:c1:70:9a:3d:4c:76:72:f9:57:04:dd:
68:11:50:0b:6a:eb:eb:7a:c1:92:7e:11:4d:1f:9c:
c9:50:27:77:6d:f2:08:5f:64:20:9e:47:a9:0c:da:
30:d3:55:6f:ad:80:d0:15:92:6b:04:1f:8e:f3:fb:
3c:c4:2b:5e:c6:0d:e6:d6:37:2b:2d:62:5f:d0:ac:
14:63:05:38:8c:82:20:68:79:f0:fc:89:ce:b3:8f:
b8:80:c1:13:d9:b2:87:ca:8c:f6:fc:3b:cf:6d:f3:
55:6e:41:ac:09:ad:f2:47:01:d8:54:bc:03:ee:81:
3d:a9:6c:2d:6c:79:fe:3e:44:3e:21:1c:fb:92:fb:
fc:b7:83:a9:c9:25:65:08:9d:de:7a:28:6b:5c:93:
e3:79:c8:4a:19:08:5a:b6:d5:de:aa:61:41:56:38:
d7:7e:6f:90:5a:32:28:70:8f:38:09:7b:4f:9f:ed:
ac:bc:cd:51:97:0e:a8:8e:c0:91:2a:44:c5:98:27:
14:33:1a:4b:bc:f8:91:2b:57:52:d5:3b:f6:01:39:
05:8c:0b:3e:94:a8:9f:6c:b3:d3:7a:68:14:ff:91:
c0:2d:97:1b:ac:95:d5:cf:b4:72:7e:20:3c:9b:04:
80:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:18:CC:B7:93:05:FC:89:11:AE:63:C6:7F:BF:86:23:1A:2A:09:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/07936946C35611EF888C49BE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.51.0/24
Signature Algorithm: sha256WithRSAEncryption
16:65:b4:c6:86:98:86:c5:fc:d8:d0:64:20:04:4b:33:cd:1b:
6b:eb:03:a8:60:19:83:88:25:25:b0:09:5a:2f:0e:11:94:cd:
e4:c5:33:ce:4d:7f:77:be:7b:3c:f6:c7:45:4d:d2:20:78:fa:
41:6a:d1:4e:97:16:76:2a:40:93:3c:be:0d:9c:db:47:b8:5c:
61:9b:34:27:0a:e5:c0:37:ce:0b:b4:37:79:41:d3:ec:95:91:
b8:2f:fe:19:59:53:f4:27:5e:db:a8:a8:79:ca:a2:5b:44:33:
08:7a:ce:e7:fc:58:87:7e:95:23:c7:47:cc:34:cb:28:0c:f7:
0d:ed:c2:a8:62:8e:ed:96:88:5e:5b:cc:98:03:f2:67:d0:8d:
21:d1:26:17:68:83:a4:87:2a:dc:0a:12:46:ca:89:85:da:04:
3b:19:f7:fd:b3:44:7f:d9:e4:8a:05:8d:d6:8a:16:29:fb:c7:
ed:bc:84:7e:28:72:e0:5a:2a:0f:a2:aa:ef:8b:86:42:f3:95:
9a:ab:04:1c:7d:8f:01:6d:13:cd:a6:ec:39:f0:bd:ca:03:da:
71:1f:53:a5:64:e6:2c:f9:bd:18:a0:15:36:fb:4c:d7:7f:56:
b9:10:31:d1:58:fd:04:9b:ed:81:72:fc:9b:c4:ed:b5:ce:55:
ce:fc:7c:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:52 2025 by rpki-client