Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/084780C4C63611EFA3E1C377762E951A.roa
File: 084780C4C63611EFA3E1C377762E951A.roa (raw, json)
Hash identifier: 4iWSjsO5pQ12aHN778vdwx7gPDWyPwG2xHJtwkfJwc8=
Subject key identifier: C6:8B:9B:19:3F:BD:B3:83:E2:1C:C0:EB:8A:29:2B:04:2E:4D:45:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01301B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/084780C4C63611EFA3E1C377762E951A.roa
Signing time: Sun 29 Dec 2024 22:41:24 +0000
ROA not before: Sun 29 Dec 2024 22:41:20 +0000
ROA not after: Sun 12 Dec 2027 22:41:20 +0000
asID: 17561
IP address blocks: 154.217.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77851 (0x1301b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 22:41:20 2024 GMT
Not After : Dec 12 22:41:20 2027 GMT
Subject: CN=6771d014-002f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1f:3d:e9:d6:d7:0e:87:3f:a6:bf:1d:d2:aa:
fd:0c:f4:d8:93:20:c6:3c:20:b2:10:e6:40:70:b2:
85:fd:d7:f5:5f:2a:54:2d:cb:15:db:ba:8c:c6:cf:
d1:d7:52:a2:5f:ad:56:c3:aa:82:ae:10:02:a8:a6:
6f:3f:2e:dc:04:d7:94:3b:2b:24:73:b2:39:db:c3:
5c:13:66:18:b0:cc:f2:4b:9b:5f:3e:a5:8e:08:92:
19:e3:50:cb:38:19:e6:4e:23:2b:62:b5:e9:42:ae:
da:fc:f3:99:dc:d9:86:fc:57:b4:13:ad:c3:5a:35:
96:ba:9b:d1:6d:fa:36:56:9e:25:91:39:4f:90:a3:
c0:4a:54:3d:2a:dc:3a:e1:c1:93:cb:ec:ad:4e:44:
f6:98:0e:a0:35:bb:bf:08:8b:48:11:36:6d:f7:ab:
c1:55:f8:af:9e:4e:70:1e:cb:c1:fc:e7:a5:ed:13:
e1:9b:79:76:95:2f:e5:f2:d1:14:f8:8e:29:21:ec:
f5:bb:83:22:71:2f:93:0e:29:af:bc:ad:71:23:47:
25:7d:21:8a:12:59:50:a7:6d:75:6f:f0:0a:88:28:
7f:53:a2:98:8d:9a:8e:c6:4b:40:c7:40:e8:ff:12:
78:90:fc:d1:13:c9:e5:30:c5:5c:c1:2c:bf:00:27:
1f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:8B:9B:19:3F:BD:B3:83:E2:1C:C0:EB:8A:29:2B:04:2E:4D:45:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/084780C4C63611EFA3E1C377762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.241.0/24
Signature Algorithm: sha256WithRSAEncryption
42:ab:0a:8b:05:a9:32:78:91:2a:cf:cd:e1:c4:30:95:a6:7d:
b0:3c:e3:7c:3a:6c:52:dc:55:9e:fe:69:7c:e6:01:cb:f8:bb:
39:57:ac:06:3d:2b:8c:a0:79:94:ae:7d:d9:65:5d:7c:23:c2:
66:4a:ea:45:0d:a8:8b:6e:3e:8e:83:a0:8e:25:78:bd:16:fb:
ce:cf:fe:61:5e:9e:1e:d1:c0:85:cc:ad:66:a4:ab:ff:00:a1:
5f:ed:26:93:9e:cb:e4:78:01:be:8e:8e:51:0a:4d:19:9b:f1:
34:47:d5:60:33:15:7a:3e:df:4f:f4:73:2d:b4:a2:a0:c3:a6:
a3:47:55:b0:67:d9:08:b2:7f:72:76:10:4a:44:32:44:bb:1a:
fb:15:e2:d9:87:4b:29:c3:c7:2e:74:eb:a2:c4:94:6c:7c:f1:
55:b7:b7:dc:5c:2f:7a:0b:57:53:a0:09:f1:7d:86:8d:7e:c9:
ee:64:bc:1b:93:7d:8e:94:fe:16:8a:a6:da:a4:4a:e7:34:96:
54:83:39:81:df:ba:6b:49:ad:3c:3a:c9:68:a8:de:47:5c:ee:
ae:86:a3:6a:a9:42:fd:fd:d8:b1:57:60:b2:43:b2:5f:54:13:
12:a5:eb:10:f5:ac:88:c6:9d:14:9e:23:2f:f5:5a:90:91:43:
63:ed:cb:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:54 2025 by rpki-client