Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24AD0BF4C0D111EFBC4B9FAE762E951A.roa
File: 24AD0BF4C0D111EFBC4B9FAE762E951A.roa (raw, json)
Hash identifier: RsonmwwpvEwFaSaDM/LifzEYjsPEpOvzMckb9EKr1kc=
Subject key identifier: 73:51:C5:E1:1F:6A:EC:69:8E:F7:E7:A2:52:8A:1C:88:66:54:50:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011E36
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24AD0BF4C0D111EFBC4B9FAE762E951A.roa
Signing time: Mon 23 Dec 2024 01:56:37 +0000
ROA not before: Mon 23 Dec 2024 01:56:33 +0000
ROA not after: Wed 10 Dec 2025 01:56:33 +0000
asID: 984
IP address blocks: 154.83.103.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 12 Apr 2025 00:06:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73270 (0x11e36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 01:56:33 2024 GMT
Not After : Dec 10 01:56:33 2025 GMT
Subject: CN=6768c355-5f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9e:00:23:55:2e:3d:3c:ca:24:56:c5:7a:01:
5f:dd:34:15:52:8c:f1:cf:f2:a7:6a:02:25:f1:95:
4b:bf:80:5f:08:42:ae:73:df:6b:ae:e0:7d:a3:6f:
f9:42:33:75:64:46:3b:aa:60:42:a0:36:af:d7:9a:
c4:de:95:6c:c1:73:0d:3e:24:14:24:59:67:e3:b8:
a6:4b:ed:61:93:f0:bb:dc:ae:06:00:c9:1f:f8:c0:
d3:d3:bc:06:06:44:0d:6b:b2:69:a2:17:9e:45:41:
f9:bd:9c:df:9e:17:58:d1:80:78:12:f8:0f:1d:96:
e2:b2:28:95:20:ba:35:de:8e:ef:40:8a:b7:92:a5:
8d:84:ea:f7:ab:58:da:9a:99:73:6c:84:13:b4:22:
0d:fa:68:c8:73:ee:4f:b1:f3:8d:a2:8d:d3:f6:a0:
19:75:40:77:2c:3e:71:9b:27:37:85:f9:ab:b6:12:
36:41:dc:d3:f4:53:ab:a1:82:01:f6:a0:1e:65:0a:
ef:7a:a0:fe:99:bd:9f:82:17:6d:ed:6c:2d:61:5e:
d7:71:d9:78:6c:c1:fb:4d:52:c4:62:b2:7b:99:cb:
1d:1e:e7:10:af:da:a5:1f:78:9c:f0:6f:96:d5:55:
28:30:40:b0:b4:5c:ef:6e:51:d1:96:39:fe:e5:e2:
ef:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:51:C5:E1:1F:6A:EC:69:8E:F7:E7:A2:52:8A:1C:88:66:54:50:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24AD0BF4C0D111EFBC4B9FAE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.103.0/24
Signature Algorithm: sha256WithRSAEncryption
55:13:2c:36:fb:ba:10:05:65:f0:49:dd:d2:14:c0:aa:44:7a:
9f:4f:2c:8e:3a:ba:a8:1d:e5:cf:ef:80:91:d3:2a:4e:df:b5:
1f:9a:fa:15:11:06:6f:35:33:c3:c2:74:a7:bd:25:47:59:a7:
95:c4:47:e0:c0:ee:b0:92:45:e6:b8:20:49:12:df:36:65:31:
52:04:7b:f3:c6:ee:72:bf:75:d4:e1:b7:ca:97:b8:c0:df:16:
c7:aa:80:b4:f0:90:7a:26:7a:e4:18:aa:af:29:f3:a3:ed:6c:
cb:c8:29:14:eb:8d:78:48:9d:ee:36:77:d4:71:d5:81:5d:a3:
9a:51:9c:3f:47:a1:2b:b3:0e:20:5f:28:56:45:29:01:65:98:
53:00:f5:eb:f1:50:e0:f2:c3:cf:d8:a3:bf:14:b2:0b:02:57:
69:f5:68:83:4a:9c:4b:fd:bc:51:41:db:9d:39:88:ae:90:b2:
8b:ae:62:e4:b6:41:3d:3d:f2:5f:86:16:9b:aa:c5:1c:19:cf:
86:7e:52:d7:6a:ff:5f:3e:bd:40:c2:12:47:f2:7e:cc:af:a2:
0c:27:b9:f6:bc:7f:a8:08:4c:2b:4c:40:eb:22:a5:e8:00:6f:
ad:cb:99:e1:39:d5:23:8c:4b:32:1a:5d:23:1b:8b:df:fc:44:
0e:b1:8e:91
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAR42MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjIzMDE1NjMzWhcNMjUxMjEwMDE1NjMzWjAYMRYw
FAYDVQQDEw02NzY4YzM1NS01ZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs54AI1UuPTzKJFbFegFf3TQVUozxz/KnagIl8ZVLv4BfCEKuc99rruB9
o2/5QjN1ZEY7qmBCoDav15rE3pVswXMNPiQUJFln47imS+1hk/C73K4GAMkf+MDT
07wGBkQNa7JpoheeRUH5vZzfnhdY0YB4EvgPHZbisiiVILo13o7vQIq3kqWNhOr3
q1jamplzbIQTtCIN+mjIc+5PsfONoo3T9qAZdUB3LD5xmyc3hfmrthI2QdzT9FOr
oYIB9qAeZQrveqD+mb2fghdt7WwtYV7Xcdl4bMH7TVLEYrJ7mcsdHucQr9qlH3ic
8G+W1VUoMECwtFzvblHRljn+5eLv3QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHNR
xeEfauxpjvfnolKKHIhmVFAkMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yNEFEMEJGNEMwRDExMUVGQkM0QjlGQUU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlNnMA0GCSqGSIb3DQEB
CwUAA4IBAQBVEyw2+7oQBWXwSd3SFMCqRHqfTyyOOrqoHeXP74CR0ypO37UfmvoV
EQZvNTPDwnSnvSVHWaeVxEfgwO6wkkXmuCBJEt82ZTFSBHvzxu5yv3XU4bfKl7jA
3xbHqoC08JB6JnrkGKqvKfOj7WzLyCkU6414SJ3uNnfUcdWBXaOaUZw/R6Ersw4g
XyhWRSkBZZhTAPXr8VDg8sPP2KO/FLILAldp9WiDSpxL/bxRQdudOYiukLKLrmLk
tkE9PfJfhhabqsUcGc+GflLXav9fPr1AwhJH8n7Mr6IMJ7n2vH+oCEwrTEDrIqXo
AG+ty5nhOdUjjEsyGl0jG4vf/EQOsY6R
-----END CERTIFICATE-----
Generated at Thu Apr 10 16:02:23 2025 by rpki-client