Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/292E6034C93B11EF89A2B8B0762E951A.roa
File: 292E6034C93B11EF89A2B8B0762E951A.roa (raw, json)
Hash identifier: 8pygfSoqiO2Qcn9PJNS4dYTwPXl/FNVrWXADWxxcizM=
Subject key identifier: 17:DC:DB:AF:AD:B9:E0:83:55:87:02:17:8D:50:31:37:57:37:03:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0133FB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/292E6034C93B11EF89A2B8B0762E951A.roa
Signing time: Thu 02 Jan 2025 18:55:40 +0000
ROA not before: Thu 02 Jan 2025 18:55:37 +0000
ROA not after: Mon 13 Dec 2027 18:55:37 +0000
asID: 17561
IP address blocks: 154.223.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78843 (0x133fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 18:55:37 2025 GMT
Not After : Dec 13 18:55:37 2027 GMT
Subject: CN=6776e12c-26cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:99:61:18:61:ce:4e:d2:49:c0:82:b2:0d:f2:
c6:58:79:05:07:8e:4d:e5:56:8d:d5:b3:9a:6e:22:
44:82:a3:91:d9:e7:22:f1:e2:18:af:41:f3:be:c4:
d0:ac:07:ca:b7:b7:fc:47:58:e1:b0:1c:26:a3:07:
07:37:fd:86:8e:b8:28:d2:96:16:a9:3a:42:ef:e6:
8c:17:6e:a0:34:9a:ef:5a:ce:e5:75:d6:2f:4b:19:
af:b4:47:d9:f0:6f:40:f2:65:b4:43:ad:78:c4:74:
76:89:14:3c:1a:f0:75:55:cb:26:e7:1f:5a:17:89:
cf:57:5c:2e:92:45:95:f4:ba:0e:09:7d:14:ba:82:
a7:94:78:16:34:48:2c:76:eb:b8:04:c2:1b:8f:e6:
e2:54:27:5a:1b:15:2f:8e:f7:5a:8d:d4:77:38:52:
8c:b6:ac:da:bb:9b:75:50:a9:dc:41:0e:e1:5f:db:
9f:0a:79:3f:04:90:a5:bf:4d:f3:3d:4f:2f:f5:57:
3c:a2:81:cc:be:29:82:d5:1d:cd:b5:67:6d:91:1e:
a0:c1:d9:ad:dd:03:71:de:93:a3:65:15:94:1f:78:
0f:3e:65:98:56:cf:56:2c:61:db:59:a6:24:db:ec:
14:4f:a0:e1:07:2a:b7:73:83:22:09:fe:e2:6d:1b:
6d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:DC:DB:AF:AD:B9:E0:83:55:87:02:17:8D:50:31:37:57:37:03:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/292E6034C93B11EF89A2B8B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.225.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:4c:14:54:eb:e8:ad:91:e3:17:68:27:6c:b0:1e:66:e8:91:
ae:95:9d:1f:95:7c:61:0a:39:7f:20:77:b1:c7:9a:74:74:96:
84:07:b2:9d:f8:63:2d:ad:60:da:35:ba:86:da:81:9b:61:bd:
9f:52:b8:dd:f1:5f:18:c7:39:9a:a5:66:4d:f3:07:d9:97:3b:
46:d9:3e:bd:76:7e:02:bb:fe:99:33:5f:e9:36:33:be:20:64:
d3:6c:7a:75:9b:32:ff:dc:26:46:a2:9d:45:8a:54:21:3d:6d:
38:d9:ae:ae:f2:37:6f:18:c8:86:f7:ba:95:57:d7:68:f7:34:
7d:a9:b9:44:d6:8d:d1:f8:6b:8d:3c:9c:76:d1:11:c3:58:b0:
53:48:22:d8:9a:21:7a:c3:67:4a:50:c6:f9:16:84:70:b5:1e:
b5:33:e6:28:0a:b2:87:73:69:ca:da:e5:0e:48:00:5f:da:83:
d6:f4:69:2b:8c:60:08:a5:81:ae:67:ca:3c:25:ac:02:8a:a9:
1a:60:98:a9:73:68:95:77:40:5d:c8:01:be:0e:a8:b7:c1:24:
a2:38:73:81:6f:d0:57:d5:cc:29:93:71:70:de:e4:29:62:46:
ce:a3:61:f5:35:a2:a2:4f:0a:f5:7c:03:36:f6:3e:17:4f:f6:
e7:5e:57:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:36 2025 by rpki-client