Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AEBD7C8F5A011EF80D74749762E951A.roa
File: 0AEBD7C8F5A011EF80D74749762E951A.roa (raw, json)
Hash identifier: s27ORVrwdzFzalyc91fbcyv/FprODy8E3wbQS9yI8qo=
Subject key identifier: 5C:92:0D:5E:6C:F9:0B:B7:33:07:59:A0:DB:96:39:DE:55:C0:A3:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0169E5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AEBD7C8F5A011EF80D74749762E951A.roa
Signing time: Fri 28 Feb 2025 06:48:40 +0000
ROA not before: Fri 28 Feb 2025 06:48:36 +0000
ROA not after: Fri 29 Aug 2025 06:48:36 +0000
asID: 45474
IP address blocks: 154.197.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92645 (0x169e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 28 06:48:36 2025 GMT
Not After : Aug 29 06:48:36 2025 GMT
Subject: CN=67c15c48-c3dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8e:b0:0c:7a:c7:83:51:cd:4f:01:34:72:ae:
aa:7e:47:41:b9:cb:49:41:76:db:09:f7:a2:fa:79:
3f:40:44:40:1f:74:35:f4:75:0f:0f:e2:2b:fa:7e:
d5:cf:98:39:e3:1e:12:dd:ac:da:dd:39:6c:b4:90:
5a:76:90:a6:1b:78:8c:8d:60:86:f0:07:29:00:62:
f0:8a:a7:ff:2b:6d:20:d2:1b:4a:85:15:23:b5:1e:
69:e5:9b:cd:f3:78:16:3d:51:d6:cd:13:85:84:47:
ce:31:50:d9:71:f1:8e:1a:91:be:06:36:55:9e:61:
6b:91:b4:ca:fb:84:83:d2:a7:ac:1f:bf:85:6d:d0:
0a:9d:dd:1d:2c:76:2e:15:b9:88:f3:c1:91:e0:27:
5f:92:ec:30:89:bb:0b:1b:df:3b:5e:26:c6:30:01:
66:23:0c:7f:9f:5d:aa:43:87:4d:b0:b0:53:c2:f2:
83:7d:1a:51:3b:c0:c1:4a:8a:17:eb:fa:02:34:38:
94:b8:0a:0f:7b:ef:35:df:4b:26:39:a2:6c:5d:1c:
86:e7:90:ef:89:22:58:7f:c2:89:90:2b:12:a4:8c:
9e:d1:f7:6a:cf:40:35:e7:37:99:39:55:63:79:18:
70:0b:c2:80:0c:b2:79:b8:74:25:af:6e:d0:3f:86:
62:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:92:0D:5E:6C:F9:0B:B7:33:07:59:A0:DB:96:39:DE:55:C0:A3:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AEBD7C8F5A011EF80D74749762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.51.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:19:1e:25:bf:e9:c1:c1:dc:f2:53:1e:01:5c:c9:38:2e:a1:
20:6a:33:fc:bc:a7:0b:76:8a:32:d2:d3:35:ff:be:a6:a7:d1:
c1:b8:ab:3e:57:8d:e7:62:10:a0:5b:af:a0:6e:28:34:b2:d0:
98:e6:92:6b:d2:ad:24:8f:7f:ad:24:1e:ed:b9:a0:89:12:60:
d7:69:87:45:89:80:d1:8c:51:bf:67:94:09:06:b2:f5:55:06:
e1:be:28:6f:55:8f:fa:c8:80:e9:bc:45:81:85:e2:06:45:48:
4e:05:3c:91:c8:68:a9:ce:c5:ab:b3:c5:9a:0b:c4:8d:90:0e:
0e:4e:6d:c8:29:ea:a5:1f:a3:99:5e:fb:05:2f:4f:ea:be:cb:
ac:c9:43:0e:93:28:67:22:15:b3:ad:30:8e:2e:75:04:ca:ea:
a7:ae:e3:94:65:2e:ac:0f:07:ea:e8:0b:fe:96:8d:d8:0d:62:
d2:e7:9a:48:fc:48:f1:92:dc:c6:f0:56:ee:36:78:35:db:d6:
83:55:54:b0:e8:84:4f:b8:27:34:6d:a8:26:80:c0:1a:1f:4f:
5b:03:0a:5a:8e:8d:4b:51:19:4f:76:4c:69:35:cd:ac:63:3f:
05:6d:cb:ce:45:14:ba:94:2b:2e:9f:dc:33:de:ac:0b:61:2f:
01:d2:35:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:54:09 2025 by rpki-client