Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0806C13A03FB11F099D2857A762E951A.roa
File: 0806C13A03FB11F099D2857A762E951A.roa (raw, json)
Hash identifier: WihzBrWMyQB5ukk8x1bIQXRY3kRroLFEoOnXT/rZPmk=
Subject key identifier: B1:F3:A6:0C:6B:7E:0C:A1:FE:7A:77:74:0B:C9:97:B2:CF:16:25:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017494
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0806C13A03FB11F099D2857A762E951A.roa
Signing time: Tue 18 Mar 2025 13:15:15 +0000
ROA not before: Tue 18 Mar 2025 13:15:12 +0000
ROA not after: Mon 28 Apr 2025 13:15:12 +0000
asID: 211826
IP address blocks: 154.194.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95380 (0x17494)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 18 13:15:12 2025 GMT
Not After : Apr 28 13:15:12 2025 GMT
Subject: CN=67d971e3-66c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:dc:24:df:6e:a1:fc:8e:40:0b:38:74:06:4a:
a7:78:24:a6:93:a8:27:63:92:62:04:af:19:03:9d:
ff:69:c8:cd:d5:0b:ab:68:7b:9d:de:6f:84:ba:00:
7c:2a:46:8b:22:14:2d:a1:18:a6:87:6c:95:36:50:
06:7d:00:dc:d9:d7:39:e3:99:28:d4:86:0e:d5:b9:
b8:84:c7:75:74:86:0d:0d:54:4b:14:5e:e4:1a:83:
ec:61:56:35:e8:b4:b2:62:07:96:33:13:7a:fc:db:
a8:ae:16:47:23:73:d6:39:dc:1e:9f:e9:2f:62:0c:
d3:11:15:60:47:b7:64:ef:de:0b:ce:ac:07:98:ab:
66:7c:8a:ee:42:c5:f4:50:bd:bf:95:de:65:0c:fc:
0e:c3:dc:6a:e6:7a:33:3b:11:c9:2b:b6:ea:37:c2:
62:b0:89:50:12:48:69:09:3e:ca:c1:1c:8b:16:2f:
24:8f:20:40:6f:0b:ee:7f:be:0e:4a:ab:3c:fb:4a:
92:ae:28:96:e3:98:8d:5c:d0:7b:bc:88:a0:cf:c3:
7c:bf:be:63:36:b1:29:57:98:38:a1:e0:d8:f7:1f:
f7:49:51:b1:01:87:11:d7:b7:52:03:77:5a:66:e1:
dd:c0:44:84:fe:c5:d4:de:a1:69:fe:37:5f:2a:6a:
30:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:F3:A6:0C:6B:7E:0C:A1:FE:7A:77:74:0B:C9:97:B2:CF:16:25:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0806C13A03FB11F099D2857A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.55.0/24
Signature Algorithm: sha256WithRSAEncryption
55:01:49:73:0e:22:2a:1f:4a:d6:82:25:b9:ff:0d:c5:78:09:
0a:16:44:b3:0d:f1:8d:81:03:b2:f6:08:b2:81:f6:e5:cb:2a:
6b:70:d7:0c:e5:de:64:fa:e2:f5:2c:b7:b1:09:e3:f8:c9:92:
71:9f:07:a6:31:15:8c:dd:27:4f:f6:91:f5:e0:3e:09:3c:39:
2e:06:48:91:fe:9e:73:ab:d0:91:d0:61:96:a5:3b:18:c3:f4:
0a:b3:b9:53:ae:3f:7c:18:40:f5:cf:aa:7a:b2:b7:ad:ed:03:
34:68:2d:e3:f4:ce:09:79:3a:ae:89:f0:dd:a1:f6:10:b5:db:
f0:60:03:67:a9:24:88:a0:18:a8:68:bf:38:aa:8b:6d:91:20:
58:91:45:67:8a:24:d0:e5:10:19:87:30:0b:73:10:42:78:3c:
21:41:79:f6:d4:ce:b4:9f:71:fe:fc:f6:00:cf:b8:f6:fe:0c:
1c:47:ab:ea:b0:28:07:3a:9d:66:63:03:28:17:a6:4c:77:e7:
c8:c0:58:d7:bd:11:d2:74:33:79:0f:b4:51:91:80:69:a1:12:
72:a2:8a:d8:46:0a:a6:41:38:40:30:7b:07:d8:34:66:d4:39:
9d:dd:01:ee:45:41:90:4a:fb:20:e0:9f:39:6e:db:5f:67:e0:
c1:f8:90:8d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXSUMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzE4MTMxNTEyWhcNMjUwNDI4MTMxNTEyWjAYMRYw
FAYDVQQDEw02N2Q5NzFlMy02NmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxNwk326h/I5ACzh0BkqneCSmk6gnY5JiBK8ZA53/acjN1QuraHud3m+E
ugB8KkaLIhQtoRimh2yVNlAGfQDc2dc545ko1IYO1bm4hMd1dIYNDVRLFF7kGoPs
YVY16LSyYgeWMxN6/NuorhZHI3PWOdwen+kvYgzTERVgR7dk794LzqwHmKtmfIru
QsX0UL2/ld5lDPwOw9xq5nozOxHJK7bqN8JisIlQEkhpCT7KwRyLFi8kjyBAbwvu
f74OSqs8+0qSriiW45iNXNB7vIigz8N8v75jNrEpV5g4oeDY9x/3SVGxAYcR17dS
A3daZuHdwESE/sXU3qFp/jdfKmowAwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLHz
pgxrfgyh/np3dAvJl7LPFiXIMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wODA2QzEzQTAzRkIxMUYwOTlEMjg1N0E3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsI3MA0GCSqGSIb3DQEB
CwUAA4IBAQBVAUlzDiIqH0rWgiW5/w3FeAkKFkSzDfGNgQOy9giygfblyyprcNcM
5d5k+uL1LLexCeP4yZJxnwemMRWM3SdP9pH14D4JPDkuBkiR/p5zq9CR0GGWpTsY
w/QKs7lTrj98GED1z6p6sret7QM0aC3j9M4JeTquifDdofYQtdvwYANnqSSIoBio
aL84qottkSBYkUVniiTQ5RAZhzALcxBCeDwhQXn21M60n3H+/PYAz7j2/gwcR6vq
sCgHOp1mYwMoF6ZMd+fIwFjXvRHSdDN5D7RRkYBpoRJyoorYRgqmQThAMHsH2DRm
1Dmd3QHuRUGQSvsg4J85bttfZ+DB+JCN
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:36:04 2025 by rpki-client