Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D365C82C8A011EF892F0650762E951A.roa
File: 1D365C82C8A011EF892F0650762E951A.roa (raw, json)
Hash identifier: HftIBB7hWRQOnxob6AXDyaC/xjmULeRrSuW4Zq9NnvU=
Subject key identifier: 4A:70:29:34:95:75:E2:10:96:90:FD:B8:68:27:30:DE:BA:78:83:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013116
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D365C82C8A011EF892F0650762E951A.roa
Signing time: Thu 02 Jan 2025 00:25:48 +0000
ROA not before: Thu 02 Jan 2025 00:00:44 +0000
ROA not after: Fri 12 Dec 2025 00:00:44 +0000
asID: 984
IP address blocks: 154.218.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 13 Apr 2025 00:12:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78102 (0x13116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 00:00:44 2025 GMT
Not After : Dec 12 00:00:44 2025 GMT
Subject: CN=6775dd0c-8cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:cc:18:af:53:a5:f2:68:97:5d:ea:1d:ea:
d9:c1:10:a8:d6:27:f7:66:a3:f9:37:27:f1:9d:53:
99:9c:a1:80:3a:d3:c9:78:cc:29:be:8d:c2:a2:1d:
a6:46:15:34:f2:d8:18:92:68:0f:89:a1:f4:bf:09:
75:43:ef:1f:28:b9:cb:7f:9e:07:c0:99:09:3d:b6:
75:79:4c:2e:42:0b:67:99:6a:26:31:67:16:4a:d4:
c4:9d:7f:b5:36:03:39:38:f3:db:61:3b:1a:b1:c1:
78:30:17:81:5c:7e:d7:04:9e:be:17:52:60:77:c0:
46:9a:74:cd:4f:48:31:d4:a8:a8:73:69:b8:b7:af:
63:9e:89:82:53:30:17:88:1c:a0:9f:2e:10:d9:a9:
03:fb:ce:fb:f3:6f:04:e7:09:ff:a6:f2:2d:a6:6d:
89:fa:29:21:28:25:dc:ca:64:51:6d:5a:85:61:1e:
9b:bc:8c:be:96:12:51:e7:20:50:7b:4f:d7:cf:4a:
68:35:9b:1a:95:13:4d:e0:26:44:4d:a1:60:41:84:
3c:b2:38:56:47:97:35:21:2f:cf:d0:32:65:6b:a2:
71:a0:ed:b2:75:bb:47:36:5b:c6:d3:cf:02:78:6d:
be:24:fe:66:3b:c9:81:f5:67:56:d3:5c:ab:80:ba:
2c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:70:29:34:95:75:E2:10:96:90:FD:B8:68:27:30:DE:BA:78:83:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D365C82C8A011EF892F0650762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.39.0/24
Signature Algorithm: sha256WithRSAEncryption
23:ff:4c:25:e7:c5:e8:d1:b5:c3:d2:79:d8:24:d4:15:01:c6:
48:1a:54:2a:f8:b6:ca:89:14:38:4b:d8:33:2a:b6:e7:5a:a5:
6b:4a:ed:0f:46:fd:6a:ef:12:ff:4d:d2:8f:37:b5:92:be:b3:
bd:f6:7a:c2:10:85:ee:61:f0:bd:26:45:fb:fd:75:df:f2:6d:
7b:d6:6e:4b:9f:aa:85:1a:4b:07:3f:b6:5c:58:01:03:eb:a0:
d0:28:69:4c:c3:a0:58:c7:4d:50:75:73:26:2f:25:76:42:c8:
71:f8:e0:75:3a:0a:ef:0e:8f:a2:38:14:41:50:7f:d8:f4:af:
92:23:64:da:ef:63:e5:fd:4b:47:41:0a:87:3a:27:2e:4c:75:
6c:b1:46:f1:5e:84:6b:8d:9f:49:c3:43:6d:f9:25:04:5d:c3:
f6:46:6a:c8:43:06:c3:cb:05:46:1f:59:94:88:ce:b0:4a:2c:
8e:41:00:03:f4:3c:04:02:25:2e:60:3f:80:cd:c2:5b:e5:d6:
b9:33:c8:66:f0:0e:18:d4:04:27:6a:87:38:ed:78:99:52:89:
df:9f:f9:34:ec:ff:65:62:10:4e:b4:d6:87:0f:b7:d1:6b:d1:
00:23:4d:84:62:aa:df:23:9b:e2:c4:b1:5d:69:87:7f:96:e6:
07:99:2b:12
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATEWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTAyMDAwMDQ0WhcNMjUxMjEyMDAwMDQ0WjAYMRYw
FAYDVQQDEw02Nzc1ZGQwYy04Y2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAp4bMGK9TpfJol13qHerZwRCo1if3ZqP5NyfxnVOZnKGAOtPJeMwpvo3C
oh2mRhU08tgYkmgPiaH0vwl1Q+8fKLnLf54HwJkJPbZ1eUwuQgtnmWomMWcWStTE
nX+1NgM5OPPbYTsascF4MBeBXH7XBJ6+F1Jgd8BGmnTNT0gx1Kioc2m4t69jnomC
UzAXiBygny4Q2akD+877828E5wn/pvItpm2J+ikhKCXcymRRbVqFYR6bvIy+lhJR
5yBQe0/Xz0poNZsalRNN4CZETaFgQYQ8sjhWR5c1IS/P0DJla6JxoO2ydbtHNlvG
088CeG2+JP5mO8mB9WdW01yrgLosEwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEpw
KTSVdeIQlpD9uGgnMN66eIOXMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRDM2NUM4MkM4QTAxMUVGODkyRjA2NTA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtonMA0GCSqGSIb3DQEB
CwUAA4IBAQAj/0wl58Xo0bXD0nnYJNQVAcZIGlQq+LbKiRQ4S9gzKrbnWqVrSu0P
Rv1q7xL/TdKPN7WSvrO99nrCEIXuYfC9JkX7/XXf8m171m5Ln6qFGksHP7ZcWAED
66DQKGlMw6BYx01QdXMmLyV2Qshx+OB1OgrvDo+iOBRBUH/Y9K+SI2Ta72Pl/UtH
QQqHOicuTHVssUbxXoRrjZ9Jw0Nt+SUEXcP2RmrIQwbDywVGH1mUiM6wSiyOQQAD
9DwEAiUuYD+AzcJb5da5M8hm8A4Y1AQnaoc47XiZUonfn/k07P9lYhBOtNaHD7fR
a9EAI02EYqrfI5vixLFdaYd/luYHmSsS
-----END CERTIFICATE-----
Generated at Fri Apr 11 03:43:56 2025 by rpki-client