Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/16B376FE04B111F094BC986A762E951A.roa
File: 16B376FE04B111F094BC986A762E951A.roa (raw, json)
Hash identifier: 0AyQ+3o54JuMnFBvSA/57EMktsNozb4JtFNfydmHwig=
Subject key identifier: A6:1A:27:A8:62:C8:37:43:0C:F6:2B:33:F8:80:60:FB:F5:8D:EA:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0174F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/16B376FE04B111F094BC986A762E951A.roa
Signing time: Wed 19 Mar 2025 10:58:28 +0000
ROA not before: Wed 19 Mar 2025 10:58:24 +0000
ROA not after: Fri 26 Sep 2025 10:58:24 +0000
asID: 142629
IP address blocks: 154.82.130.0/24 maxlen: 24
154.82.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95480 (0x174f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 19 10:58:24 2025 GMT
Not After : Sep 26 10:58:24 2025 GMT
Subject: CN=67daa354-66c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b1:34:3e:0c:d6:cd:2f:89:8d:b0:fc:fe:5a:
4b:93:52:f5:1d:7b:7f:da:f8:de:09:20:04:c9:54:
36:ed:e4:ea:bc:d8:1e:7e:6a:06:9a:50:7c:05:9f:
0a:70:17:0a:ec:de:d2:e1:bf:90:6c:6c:2f:5d:9d:
cb:de:88:c8:55:6b:92:2b:0e:92:88:44:aa:5d:71:
75:fc:c2:26:d0:af:b6:3f:66:a4:ef:89:c4:d6:4a:
e5:83:90:bc:a8:15:76:8f:e3:44:5a:18:d1:d6:00:
20:46:80:c9:3b:a5:ba:a7:8c:05:be:b6:39:45:10:
49:e6:1f:fa:e0:3e:90:b8:49:5a:83:72:46:ce:11:
d1:90:fc:dd:67:02:57:ee:17:06:7d:52:9c:ec:e1:
5c:94:79:60:ab:ca:c7:58:18:07:b2:a8:ad:d9:20:
2d:0a:be:e7:ff:49:a5:74:03:fb:97:ad:ac:38:f1:
32:b6:f7:21:4d:83:84:dc:97:4c:06:ea:7a:ff:70:
b6:c6:0d:2b:2a:e0:58:6a:27:9f:a4:d1:59:27:77:
42:f1:49:b7:2c:ac:7a:37:ef:db:f8:49:4f:92:6f:
44:6e:2d:24:08:a7:71:15:73:3f:81:c6:a1:e8:a9:
ca:36:41:a6:80:c8:50:b2:d3:06:ee:6f:b5:b1:d8:
c2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:1A:27:A8:62:C8:37:43:0C:F6:2B:33:F8:80:60:FB:F5:8D:EA:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/16B376FE04B111F094BC986A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.130.0/23
Signature Algorithm: sha256WithRSAEncryption
71:cc:6b:dc:b0:98:b5:c6:bf:65:a0:33:68:1b:4e:e1:49:3e:
35:38:27:15:14:08:e4:37:dc:64:84:8d:68:ac:7c:d1:f6:71:
96:1a:da:e4:fe:d1:f9:73:83:96:11:33:cf:63:da:74:23:8f:
37:83:53:4f:57:2b:33:00:6b:84:b0:5d:d0:20:a9:dd:5a:fd:
61:16:c9:2d:71:1c:1a:e4:96:8b:94:44:2c:cc:96:d4:3e:01:
7d:39:79:bf:11:23:5b:62:9d:8b:8f:03:96:d6:9f:43:9c:d1:
35:cf:64:e9:c8:da:cc:a5:53:34:9e:14:b5:b2:02:90:0b:0e:
46:50:4f:ed:2d:a6:a7:68:c1:9a:ef:20:b8:5b:52:b5:93:d2:
bb:2a:42:48:aa:9e:36:48:81:d5:38:c6:0e:26:b3:a8:f6:97:
b7:0f:c5:db:75:4c:72:eb:51:cd:69:9a:24:f5:44:ea:66:50:
8f:ff:04:9d:0a:55:08:a0:d9:32:03:36:cc:2b:b8:df:f8:96:
d5:b2:fa:22:82:83:5d:82:e4:1c:d3:10:c3:8b:a0:b7:0f:da:
34:a9:bd:90:f2:2d:fd:e2:55:57:fd:f3:e4:dc:cc:6d:50:88:
74:05:c0:00:d9:7e:33:9b:5f:d2:df:42:b1:15:66:b6:8c:f7:
f9:ed:f9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:01 2025 by rpki-client