Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB211ACF99511EF992224B1762E951A.roa
File: 0FB211ACF99511EF992224B1762E951A.roa (raw, json)
Hash identifier: CGD0iOUq8XWGelxi7mwMs5jP4lz3lJvdHBJj1eBNH1g=
Subject key identifier: 25:EE:A9:98:DC:AB:DE:04:BF:98:B5:E4:E6:2D:59:07:2A:70:4F:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01723A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB211ACF99511EF992224B1762E951A.roa
Signing time: Wed 05 Mar 2025 07:40:08 +0000
ROA not before: Wed 05 Mar 2025 07:40:04 +0000
ROA not after: Sat 12 Apr 2025 07:40:04 +0000
asID: 272854
IP address blocks: 154.194.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94778 (0x1723a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 5 07:40:04 2025 GMT
Not After : Apr 12 07:40:04 2025 GMT
Subject: CN=67c7ffd8-add6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:eb:6a:87:b6:8d:56:d6:9d:a7:79:9e:48:2b:
81:d8:cc:95:df:c6:40:da:79:bc:73:b4:27:dd:cb:
78:02:e6:cb:11:fa:e7:36:04:d3:9c:d7:2f:0c:18:
ce:05:02:43:8e:7f:84:24:21:25:f4:86:b4:b0:ba:
af:b0:22:ac:ce:d4:fe:3a:12:96:1e:9c:8f:e7:8e:
c1:94:6c:59:ea:14:18:ca:7c:b9:21:1d:2f:fa:0d:
f1:a5:31:17:ab:cc:2e:d9:f1:8a:b0:ea:6e:b2:92:
04:b4:d8:8b:a0:96:3e:5f:eb:37:7f:d2:83:78:59:
4d:c2:b6:3b:04:a3:5c:0c:50:af:13:b2:3b:ac:38:
3e:18:8c:e0:be:99:98:98:a4:f4:f3:ea:5b:88:04:
19:14:af:6d:4a:e0:26:cf:5f:30:12:e8:e6:f6:32:
0f:ab:4d:5c:7a:16:ff:35:6e:82:68:30:ba:73:3b:
6e:2f:fd:9a:a5:08:85:10:35:13:73:23:69:67:5e:
0a:50:60:4c:c5:7b:38:5e:c9:cc:7d:e2:e1:75:55:
31:49:77:e8:a7:61:1e:65:81:ce:69:ed:66:46:3e:
be:08:25:5d:58:de:e2:fb:9a:6d:ec:59:54:f9:e7:
29:d6:d7:53:fd:49:7a:2c:3e:41:08:b0:d8:f4:68:
50:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:EE:A9:98:DC:AB:DE:04:BF:98:B5:E4:E6:2D:59:07:2A:70:4F:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB211ACF99511EF992224B1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.54.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:f2:d5:7f:fc:21:4a:9b:e8:57:22:de:42:36:7a:4a:04:ae:
fc:17:6d:f7:80:ea:81:c2:ad:84:7a:f3:82:e8:db:a5:5a:df:
38:bd:42:9b:6b:4c:2d:4b:1d:61:7b:28:99:b6:92:84:3a:ca:
96:51:3a:7d:c0:34:25:9a:3a:65:e3:89:26:1f:a2:56:5f:f6:
71:e3:e4:46:12:e9:5f:5d:60:70:61:c1:66:58:f4:a7:3d:8a:
c6:c0:35:1c:35:dd:3f:9b:ec:38:d7:4e:52:2d:b6:10:dd:84:
99:89:37:7c:e5:d5:a7:d7:19:3f:20:31:46:9a:06:f6:ab:79:
56:95:f2:76:97:d3:c8:c8:11:e9:6b:d7:f7:6b:ba:2f:ca:b1:
74:63:29:db:6d:14:7d:63:92:c6:7a:5a:48:26:ed:a0:65:9b:
7d:0a:42:29:e3:b2:5e:29:37:b3:62:00:95:63:f5:e0:4a:86:
d1:95:c8:15:a4:f8:23:b3:8c:69:5f:14:69:f6:ec:3f:70:31:
37:13:42:2f:cb:81:6c:71:0f:b9:ff:11:9c:b2:4d:d8:98:67:
83:34:fd:db:c7:1a:7c:44:1e:62:1a:20:96:63:e6:12:43:bd:
10:bd:e3:3b:a5:2e:ae:e2:91:dc:f2:96:55:02:22:ff:de:fb:
61:96:16:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:05 2025 by rpki-client