Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/163A021AC3CF11EFBBE79BB7762E951A.roa
File: 163A021AC3CF11EFBBE79BB7762E951A.roa (raw, json)
Hash identifier: 4/PIV6c9ZlRnvuuHLPJGc9lUH0Jgb/J+CPOmFbymSjk=
Subject key identifier: 1F:21:C5:58:8F:C7:72:31:A0:7E:F5:5A:0B:01:19:12:DF:16:09:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01282C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/163A021AC3CF11EFBBE79BB7762E951A.roa
Signing time: Thu 26 Dec 2024 21:19:27 +0000
ROA not before: Thu 26 Dec 2024 21:19:23 +0000
ROA not after: Sun 12 Dec 2027 21:19:23 +0000
asID: 17561
IP address blocks: 154.83.172.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75820 (0x1282c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 21:19:23 2024 GMT
Not After : Dec 12 21:19:23 2027 GMT
Subject: CN=676dc85f-6312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ce:85:f5:2a:db:73:85:ea:d5:b0:79:d6:f7:
59:b4:22:8b:7d:6b:29:da:d9:57:4c:2c:26:b6:7a:
26:f4:2f:26:7b:c1:83:71:99:cf:aa:89:ad:5a:0b:
d4:21:19:38:32:a4:71:08:87:85:bf:bb:b5:f1:84:
b0:e9:df:ef:74:87:bc:e9:11:68:da:56:43:da:ab:
27:31:15:e9:3b:8b:e1:0c:4e:72:1f:c3:46:c0:12:
3e:3a:1e:05:5d:0e:03:52:a7:1d:27:21:49:71:20:
ad:ee:3d:34:4a:55:77:7c:4a:7c:8c:24:a5:ff:5b:
d9:7d:55:9e:d4:53:d7:42:21:55:76:a9:31:1b:2a:
d1:a5:95:f7:87:c5:f4:2b:aa:14:08:a8:e3:fd:f3:
d7:53:da:ff:82:47:bb:31:84:98:e2:ae:98:ed:a6:
aa:7f:12:f8:33:46:0f:8f:fa:3a:7a:09:a8:02:04:
a3:24:20:1a:db:69:31:19:6d:bc:1f:95:ea:ff:63:
7d:ea:fc:f7:20:99:d1:dd:65:55:d3:fe:01:43:e4:
41:25:dc:28:ea:16:bf:33:7d:73:78:f2:00:e5:92:
7e:d4:fe:28:3b:95:e2:6f:09:26:f1:15:59:b3:76:
dc:e3:b6:c5:e5:95:67:c7:7c:8f:92:e8:ae:e3:df:
0d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:21:C5:58:8F:C7:72:31:A0:7E:F5:5A:0B:01:19:12:DF:16:09:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/163A021AC3CF11EFBBE79BB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.172.0/24
Signature Algorithm: sha256WithRSAEncryption
26:35:dc:8e:50:c6:58:c2:63:6d:c1:66:d8:b1:b2:57:65:c3:
3e:73:f9:d5:07:ef:08:aa:46:66:fd:e2:b2:23:b7:46:48:ae:
2f:7e:ba:85:41:cd:01:98:4b:9d:67:b2:a1:0f:98:b8:b3:2a:
9e:b5:b9:5f:74:1e:f8:b3:d0:ec:54:42:7e:c3:73:f0:74:5f:
dc:7f:06:e4:b3:ee:de:f2:2d:49:ef:92:ed:b1:0f:2f:29:8c:
e0:e5:94:57:0c:46:fb:c9:c5:ef:41:40:85:76:90:44:50:a1:
ff:12:fd:a4:ee:69:35:b0:64:78:0c:d0:dd:67:ec:79:44:4a:
f4:6b:85:fa:fa:01:e6:87:0a:cd:14:25:40:e0:19:46:ed:fd:
dc:ad:38:62:b0:06:71:9f:5c:12:51:8e:73:06:f5:2b:f2:05:
0f:72:01:89:fb:d8:c3:4a:b8:9a:78:47:31:b0:b6:03:2f:b2:
9f:c1:3f:cf:df:7d:69:be:f6:1f:25:34:bf:18:44:dd:03:f2:
2c:e0:71:78:93:92:dc:15:62:d0:c2:3b:b3:9a:35:d3:dc:df:
ff:68:dc:df:c0:10:04:77:d4:41:30:4f:65:b8:4a:d0:d4:77:
c9:18:1e:28:ad:49:4b:24:ef:90:c9:e3:d8:3b:e7:e9:3a:f3:
69:2e:18:c3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASgsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MjExOTIzWhcNMjcxMjEyMjExOTIzWjAYMRYw
FAYDVQQDEw02NzZkYzg1Zi02MzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAn86F9Srbc4Xq1bB51vdZtCKLfWsp2tlXTCwmtnom9C8me8GDcZnPqomt
WgvUIRk4MqRxCIeFv7u18YSw6d/vdIe86RFo2lZD2qsnMRXpO4vhDE5yH8NGwBI+
Oh4FXQ4DUqcdJyFJcSCt7j00SlV3fEp8jCSl/1vZfVWe1FPXQiFVdqkxGyrRpZX3
h8X0K6oUCKjj/fPXU9r/gke7MYSY4q6Y7aaqfxL4M0YPj/o6egmoAgSjJCAa22kx
GW28H5Xq/2N96vz3IJnR3WVV0/4BQ+RBJdwo6ha/M31zePIA5ZJ+1P4oO5Xibwkm
8RVZs3bc47bF5ZVnx3yPkuiu498NTwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFB8h
xViPx3IxoH71WgsBGRLfFgkyMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xNjNBMDIxQUMzQ0YxMUVGQkJFNzlCQjc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlOsMA0GCSqGSIb3DQEB
CwUAA4IBAQAmNdyOUMZYwmNtwWbYsbJXZcM+c/nVB+8IqkZm/eKyI7dGSK4vfrqF
Qc0BmEudZ7KhD5i4syqetblfdB74s9DsVEJ+w3PwdF/cfwbks+7e8i1J75LtsQ8v
KYzg5ZRXDEb7ycXvQUCFdpBEUKH/Ev2k7mk1sGR4DNDdZ+x5REr0a4X6+gHmhwrN
FCVA4BlG7f3crThisAZxn1wSUY5zBvUr8gUPcgGJ+9jDSriaeEcxsLYDL7KfwT/P
331pvvYfJTS/GETdA/Is4HF4k5LcFWLQwjuzmjXT3N//aNzfwBAEd9RBME9luErQ
1HfJGB4orUlLJO+QyePYO+fpOvNpLhjD
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:08:40 2025 by rpki-client