Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/180C5A40C0EE11EF860ADE71762E951A.roa
File: 180C5A40C0EE11EF860ADE71762E951A.roa (raw, json)
Hash identifier: Ou4QVuU/pxDZyRwTN6Y5kqE/cs9/XVnLB3qWT7lYYlc=
Subject key identifier: AD:F9:EB:3F:11:7B:D8:B7:F2:0C:EF:18:CE:D7:ED:4F:CA:0A:B0:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011F42
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/180C5A40C0EE11EF860ADE71762E951A.roa
Signing time: Mon 23 Dec 2024 05:23:51 +0000
ROA not before: Mon 23 Dec 2024 05:23:47 +0000
ROA not after: Wed 10 Dec 2025 05:23:47 +0000
asID: 984
IP address blocks: 154.90.87.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73538 (0x11f42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 05:23:47 2024 GMT
Not After : Dec 10 05:23:47 2025 GMT
Subject: CN=6768f3e7-59a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8c:b0:13:40:98:c2:d2:88:9b:39:3c:8c:ab:
b6:bd:04:a3:4b:9e:cd:80:04:e8:21:e6:f7:98:57:
da:48:92:a8:a2:99:4e:d1:75:3a:36:89:f7:31:6d:
78:d4:37:44:6a:e2:26:c4:0d:9d:87:bb:d9:f7:b7:
2d:f1:10:d5:94:d7:2e:e2:7c:6a:1e:41:1a:96:4f:
5d:9f:3c:2d:c3:ed:a0:65:2b:35:5e:6a:8c:47:af:
c2:fa:64:6f:77:9b:9c:b6:17:6b:01:8a:d2:a8:ab:
02:a8:83:fa:8e:93:3b:5d:c3:8a:1e:ac:63:27:70:
32:3b:72:c0:6a:19:7c:05:e5:30:6a:82:c0:14:c7:
c2:98:6c:6b:4c:53:87:fd:27:de:2d:10:5a:2e:c2:
31:d6:04:e1:74:59:59:6a:e1:70:32:cd:37:3c:b3:
67:ff:3c:4c:c9:23:f1:8e:79:b7:e3:1d:aa:36:c7:
26:24:1f:e7:4d:99:68:06:39:9d:de:0c:98:0d:83:
48:6a:58:1b:7f:11:6b:b6:28:f7:3d:df:aa:ee:84:
d6:ad:31:cb:95:42:98:d9:4f:cf:ee:0c:75:b7:6d:
8d:69:31:57:06:e2:70:77:a1:c6:1d:6b:ee:c1:ea:
92:5e:1f:c4:d5:e1:66:aa:c6:61:ab:53:1c:30:8a:
5f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F9:EB:3F:11:7B:D8:B7:F2:0C:EF:18:CE:D7:ED:4F:CA:0A:B0:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/180C5A40C0EE11EF860ADE71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.87.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:6f:96:3b:1e:2f:9f:0d:a3:b7:1b:cf:43:b9:ab:1f:ff:b0:
26:13:53:96:60:30:28:94:4d:d7:f3:26:8f:c9:5d:10:c4:5c:
a5:62:18:47:b7:74:b4:ae:31:64:35:fa:a5:59:d3:4f:7a:a4:
da:50:ac:99:54:9c:5d:27:07:0e:3c:41:8a:c7:d6:18:cd:b6:
14:12:2c:e4:d8:90:2a:0e:06:c7:06:19:6e:7f:3d:91:4c:ba:
f1:be:52:c2:10:6d:7c:b3:93:8e:ec:96:f0:e1:63:b0:bf:bd:
23:48:db:52:a8:8a:c5:eb:69:ec:57:57:4c:03:27:76:9c:35:
c3:6c:20:4b:51:e1:30:97:20:77:48:33:b1:53:29:3c:9c:c9:
f7:8c:ba:c4:2d:2c:5f:14:3e:0b:2a:59:46:8b:74:f7:54:bc:
de:cd:75:27:bc:6d:06:23:e3:61:a3:bc:33:94:e0:e6:36:7e:
57:75:68:3a:af:ca:1a:3b:fc:02:3b:f7:74:c4:e6:25:f1:90:
88:3e:c6:04:45:95:4c:da:07:89:48:06:85:fd:ef:00:f1:cb:
95:ef:35:c4:b4:98:92:2a:f3:05:75:2b:22:19:99:5c:ba:1b:
e2:bf:01:43:47:bc:71:69:6f:18:a3:1d:83:76:95:5a:af:29:
d4:35:81:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:14:37 2025 by rpki-client