Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09309656F81811EFAA61D697762E951A.roa
File: 09309656F81811EFAA61D697762E951A.roa (raw, json)
Hash identifier: p35sk3UzEYW6kYLhJCYpIF/qwl98g1qKILscuTioyuY=
Subject key identifier: 29:52:F9:34:1D:50:3E:73:D2:7B:DB:0D:2E:45:28:FD:FA:A4:C0:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016FFC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09309656F81811EFAA61D697762E951A.roa
Signing time: Mon 03 Mar 2025 10:12:39 +0000
ROA not before: Mon 03 Mar 2025 10:12:35 +0000
ROA not after: Wed 30 Apr 2025 10:12:35 +0000
asID: 63139
IP address blocks: 154.94.124.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94204 (0x16ffc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 3 10:12:35 2025 GMT
Not After : Apr 30 10:12:35 2025 GMT
Subject: CN=67c58097-7633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:21:33:b9:3d:46:89:2f:82:9b:14:50:ee:c9:
d0:5a:94:cc:fd:fe:2b:32:01:ab:41:83:a5:32:3c:
92:94:d7:74:ec:b4:ea:15:f6:c0:25:8b:63:30:fd:
df:b6:24:79:43:7d:a8:53:e6:1d:c0:64:42:43:a8:
af:b2:01:4c:b3:3c:14:37:f1:8b:9e:58:e9:fd:fa:
a7:fa:23:d0:9d:32:11:e6:7f:77:a5:d1:cf:32:e2:
f1:a6:05:cb:73:23:68:4e:96:31:82:7f:21:bd:b8:
07:ec:96:f0:4b:3a:47:94:da:5b:04:6f:59:5e:89:
a1:2c:37:28:c7:9e:2e:64:b8:9c:44:7e:cc:a1:4f:
e7:1f:fd:ad:b2:88:a0:70:91:91:6f:07:00:e1:39:
f1:e4:a1:4e:36:41:cb:c2:ab:12:74:0b:56:14:86:
cd:b4:9a:6f:95:af:1a:fc:e5:51:6a:bc:86:d0:86:
6d:68:89:c8:c2:c8:30:22:11:ec:de:15:51:4e:c5:
ba:9b:02:60:ba:e9:d3:c9:92:27:66:98:a5:7e:8f:
56:a1:e2:20:29:ff:76:0c:f7:79:7a:f7:cf:eb:d5:
7e:8e:40:b1:a6:00:de:c7:a8:39:96:5d:c3:23:fc:
e8:d7:09:ee:54:00:a0:ed:21:05:ad:d5:b1:f9:18:
97:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:52:F9:34:1D:50:3E:73:D2:7B:DB:0D:2E:45:28:FD:FA:A4:C0:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09309656F81811EFAA61D697762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.124.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:b2:48:4f:09:b9:3e:2c:c6:2e:b5:34:8c:fd:cb:c2:68:48:
53:a7:b8:eb:35:57:56:15:9d:7f:5b:1e:06:fe:5f:c3:9b:b7:
8c:fa:87:98:01:e1:3e:5f:0e:90:5b:59:59:c5:b5:8a:6e:1e:
aa:ac:80:be:15:04:69:c0:bf:dc:c1:b6:22:20:01:14:c7:37:
57:24:36:db:af:1d:6a:6d:8c:3e:48:8e:bf:37:09:1b:21:6f:
b8:00:d3:37:78:aa:6d:6f:df:bc:34:a8:25:40:25:ab:74:0d:
1a:bd:5a:e7:cb:b6:bd:93:8f:76:b0:28:b3:ec:65:75:6a:6c:
ca:9c:51:4b:39:4c:3c:8a:ab:52:a4:ad:41:36:e7:79:6f:09:
ee:00:da:35:95:8d:15:f9:49:0e:03:21:fa:29:7a:63:37:71:
f7:a5:15:b1:c6:ba:d1:ad:aa:68:5e:fa:cf:e4:0c:5b:0e:e2:
39:62:27:7e:da:5f:36:00:8e:1f:24:22:47:d7:ea:56:ca:87:
ac:8c:0e:99:e8:8f:6a:5b:80:89:77:d6:43:44:f2:38:4f:07:
ad:40:54:53:c6:d5:60:56:59:f4:91:3e:29:30:93:31:52:8c:
e2:9a:35:49:8b:2c:ca:90:30:7f:e1:0e:ac:96:6a:1b:1b:09:
b0:66:01:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:51 2025 by rpki-client