Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/290B01C0C5E911EFA9ABB795762E951A.roa
File: 290B01C0C5E911EFA9ABB795762E951A.roa (raw, json)
Hash identifier: OF5TNgrScx/Q43CS/RkWNhSHsTW6KDWo8SxDJovjhGo=
Subject key identifier: 65:88:D9:48:56:E1:DD:19:35:5A:03:D9:A6:E3:37:BF:D5:A4:CE:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012D94
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/290B01C0C5E911EFA9ABB795762E951A.roa
Signing time: Sun 29 Dec 2024 13:31:08 +0000
ROA not before: Sun 29 Dec 2024 13:31:04 +0000
ROA not after: Fri 12 Dec 2025 13:31:04 +0000
asID: 984
IP address blocks: 154.210.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 11 Apr 2025 00:06:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77204 (0x12d94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 13:31:04 2024 GMT
Not After : Dec 12 13:31:04 2025 GMT
Subject: CN=67714f1c-3cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:35:d9:db:6c:96:31:9a:90:74:69:73:49:f8:
3d:a1:1e:17:7f:f4:5d:6d:fa:66:70:c4:58:97:76:
c2:73:9e:45:06:47:b3:51:80:11:d4:62:5c:05:34:
48:8e:03:dd:82:de:3a:5d:33:9a:a0:17:59:bb:34:
f8:f9:54:8b:8c:d0:b7:f8:a9:50:69:4f:c4:7f:b2:
b9:27:56:7b:2c:53:7c:98:0d:f7:6d:9b:3d:61:c4:
b8:25:ae:3a:85:dc:b9:fa:78:f5:59:ad:64:10:65:
d6:df:48:55:fb:82:b6:30:98:2c:9b:30:42:16:dd:
48:f0:e5:c1:43:d2:72:7b:42:90:40:c7:9c:35:2d:
c6:58:31:be:6a:04:0e:d6:d2:ed:0b:d2:2f:08:ea:
97:d8:77:2d:ba:5b:56:0a:6a:e2:0c:6c:bf:cb:42:
03:8d:e2:bd:73:ae:85:ed:93:e2:91:1f:e9:6c:be:
a5:68:a9:2f:c1:b9:fe:a9:37:ef:70:8b:c4:31:6a:
f3:2d:18:05:eb:75:90:ff:46:93:5c:e8:8f:a1:09:
36:40:70:5a:31:7f:37:6d:88:31:96:a7:11:a4:25:
a1:6b:43:c3:6a:08:6d:19:0d:86:b3:22:46:af:c5:
e2:eb:c5:0d:bf:62:da:bf:1a:69:91:4b:a6:7b:bd:
b0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:88:D9:48:56:E1:DD:19:35:5A:03:D9:A6:E3:37:BF:D5:A4:CE:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/290B01C0C5E911EFA9ABB795762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.249.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:24:80:f8:91:aa:89:a8:20:cc:d4:97:ba:ba:37:e0:35:6c:
cf:59:aa:87:9e:25:0c:81:8d:36:66:82:e8:8a:e1:cf:24:55:
72:2d:c8:40:5f:c6:9a:2b:b1:67:c2:c0:ab:aa:4e:3d:17:b9:
e9:d5:75:03:1c:89:d7:e2:6d:2d:41:84:d1:bb:bb:e7:e4:12:
3c:93:9b:0e:70:eb:b4:59:ea:38:1a:6c:9b:2b:5c:e4:d5:25:
a2:20:fd:8a:60:58:b0:da:c1:b5:92:24:24:99:ec:c1:20:28:
22:63:3c:96:ed:83:88:21:c4:76:05:54:b4:a7:85:05:ee:1e:
c4:95:6d:88:9f:ff:dd:c9:fa:b3:ea:8e:de:4e:6b:5d:b5:7f:
29:71:40:59:94:e1:9e:96:5c:80:4a:46:e0:9a:b2:0d:0c:39:
a4:e5:75:3f:7c:ec:51:6d:bf:fa:c3:59:49:53:49:51:67:09:
4e:19:27:65:be:eb:16:7b:97:82:90:cf:38:21:a9:3c:c2:40:
26:eb:51:8b:89:5e:ac:34:6b:23:bc:89:ef:d9:5e:4e:f9:af:
12:b3:a1:11:ae:a9:fe:09:d3:9c:a8:ec:9b:be:3a:93:5c:11:
44:c5:e8:e9:54:0b:02:b2:d3:c4:71:f4:b7:aa:fb:ab:b6:67:
98:58:1f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:53:43 2025 by rpki-client