Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18FC556EC93511EF89267689762E951A.roa
File: 18FC556EC93511EF89267689762E951A.roa (raw, json)
Hash identifier: doRz003lrxuqOSSQhS1UngxnPSo1cLQGch4uTZtJVyo=
Subject key identifier: AA:B3:B7:F8:A1:94:2F:0C:E2:9E:D8:81:94:93:53:A4:81:40:7E:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0133CB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18FC556EC93511EF89267689762E951A.roa
Signing time: Thu 02 Jan 2025 18:12:16 +0000
ROA not before: Thu 02 Jan 2025 18:12:12 +0000
ROA not after: Mon 13 Dec 2027 18:12:12 +0000
asID: 17561
IP address blocks: 154.222.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78795 (0x133cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 18:12:12 2025 GMT
Not After : Dec 13 18:12:12 2027 GMT
Subject: CN=6776d700-d429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:93:45:78:24:f0:e0:a9:ae:a9:96:26:44:67:
f1:45:11:3b:d2:00:8e:94:9e:f1:5b:dc:a3:db:ee:
9c:fb:37:5d:b5:7d:79:c5:f5:a5:0c:4f:44:aa:53:
d2:f8:51:0d:f5:43:2f:21:15:53:fe:84:6d:1b:5d:
56:6c:82:92:d4:ae:78:bc:0e:ec:79:33:10:5a:dc:
18:4c:07:f2:c4:8f:71:5e:9d:58:96:c3:bb:5c:ee:
5a:82:38:bd:4d:80:1e:7d:7e:13:7b:13:d7:e4:6c:
75:aa:b5:51:9b:13:7e:76:27:50:95:f6:98:ce:b0:
57:9c:2e:a3:75:fe:72:e6:d7:6b:41:d5:5e:e2:80:
eb:d7:31:e0:ed:28:58:9d:98:e4:4c:41:19:dc:2f:
cc:b9:85:68:e3:a3:9f:e5:ff:93:6c:41:9e:31:66:
f9:92:c6:73:9b:07:cc:a7:f3:24:01:30:76:09:69:
a1:99:24:39:23:77:0c:78:9e:37:48:8e:3f:3f:4c:
95:f9:40:fa:ef:b7:c7:7e:cf:56:1e:e7:37:11:2a:
52:1b:90:f4:ee:87:67:5b:a8:a0:6d:69:27:cb:2f:
07:9d:b8:2e:4a:83:da:fb:4b:34:46:80:c6:96:df:
76:a3:ef:95:4a:2f:31:a6:01:17:54:9e:7d:b4:e3:
59:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B3:B7:F8:A1:94:2F:0C:E2:9E:D8:81:94:93:53:A4:81:40:7E:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18FC556EC93511EF89267689762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.180.0/24
Signature Algorithm: sha256WithRSAEncryption
11:2f:e5:0e:67:06:24:6f:78:50:58:81:e7:03:54:a6:12:31:
9a:e4:53:56:2f:12:f0:41:fa:ea:88:f2:f1:c2:e3:31:f8:ab:
12:ff:3b:50:e0:b2:db:ff:4b:f2:10:c0:b9:8b:a1:6c:b4:5d:
9b:7d:28:79:f0:73:19:d5:fc:0f:65:cd:4c:8e:d3:f9:7e:a8:
7a:22:65:be:a1:d4:74:0c:c0:20:e2:fb:d6:d6:27:09:db:50:
0b:5d:80:de:1e:b5:65:c6:83:e7:22:29:ab:e3:4e:0c:ad:3e:
52:1b:1c:a0:12:35:ec:a1:1b:c1:fd:55:ae:31:1b:99:5b:d4:
ba:5e:c2:e0:a5:15:87:eb:af:08:8f:ee:d0:d0:ee:6e:aa:26:
b2:1e:08:3f:11:7a:ca:c2:3c:8f:cb:f6:86:e6:cb:dc:59:2c:
a0:dd:13:b3:f9:2b:51:fc:5f:9e:b5:2a:b2:6b:c0:8b:00:21:
05:2e:03:1c:82:f7:26:d3:dc:af:72:df:69:f6:26:e7:f1:46:
35:64:08:a8:14:a2:27:02:f4:b7:79:27:0b:25:b1:28:4a:27:
c7:86:2c:86:86:76:a0:f5:48:e1:1a:5c:4d:46:45:38:15:19:
bf:31:9a:e9:82:55:50:4a:9b:38:03:69:5b:5c:2b:19:e4:d9:
6c:c6:96:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:45 2025 by rpki-client