Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C14C952088111F0B47A16B3762E951A.roa
File: 2C14C952088111F0B47A16B3762E951A.roa (raw, json)
Hash identifier: 81ulsON1ylSwf3PPd43kgz2MYCNboey4At4ejMA7+9o=
Subject key identifier: F1:1D:D8:86:67:DD:75:DD:19:ED:F1:C5:E9:6B:A9:00:B7:15:0F:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0175BC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C14C952088111F0B47A16B3762E951A.roa
Signing time: Mon 24 Mar 2025 07:25:33 +0000
ROA not before: Mon 24 Mar 2025 07:25:29 +0000
ROA not after: Tue 29 Apr 2025 07:25:29 +0000
asID: 59187
IP address blocks: 154.221.32.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 09 Apr 2025 17:49:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95676 (0x175bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 24 07:25:29 2025 GMT
Not After : Apr 29 07:25:29 2025 GMT
Subject: CN=67e108ed-88e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:14:9e:4c:d2:ec:82:d2:da:46:7f:4f:39:82:
1b:b6:22:de:a3:60:2c:ea:8e:96:31:ac:6b:49:2e:
d8:a9:c1:ea:fa:6e:80:7e:6c:8d:71:56:c0:92:c0:
2f:d5:0a:59:38:d5:0b:4a:26:c9:84:01:b6:51:60:
63:06:3c:d1:6c:1f:49:9c:e9:3e:61:75:51:23:f2:
cd:cf:9b:f1:86:06:c6:f9:4c:db:f0:59:08:33:2a:
50:bb:3a:6f:7a:fc:aa:48:be:f2:0e:af:36:3d:98:
5c:c3:29:58:11:16:69:ed:dc:79:e0:1d:d8:67:63:
cf:cd:d7:56:7b:30:8d:80:28:a2:c5:48:5e:65:8e:
5f:88:70:c7:75:cf:b2:9a:e7:d6:e4:79:a1:9c:8d:
02:66:d8:e2:bf:24:64:34:92:5e:ff:e3:32:d4:e8:
8a:19:b2:92:44:a5:93:e3:d4:ae:44:bf:b6:b6:9c:
28:53:50:56:ae:b2:42:50:94:6b:54:ae:e1:c7:5a:
cb:21:e4:35:77:f2:fe:86:fe:30:eb:12:d9:26:dd:
81:22:15:06:a9:74:02:02:95:55:2f:e6:66:fa:dc:
44:7f:5b:12:20:4d:b3:0c:7e:fc:22:c7:63:14:d7:
8c:be:18:19:4d:c6:4e:2f:72:03:7d:49:d3:53:a4:
1b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1D:D8:86:67:DD:75:DD:19:ED:F1:C5:E9:6B:A9:00:B7:15:0F:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C14C952088111F0B47A16B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.32.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:9b:a0:d3:e7:d8:f8:7f:0c:a6:7b:5a:cf:e6:95:70:4f:9e:
73:14:cc:5b:ec:1d:82:44:e7:64:4f:21:75:9f:04:7b:08:a6:
0d:b3:e4:72:90:61:77:d2:f5:47:40:9d:ad:cd:d7:81:d2:30:
35:94:c8:2a:40:74:e3:a9:b9:de:53:2b:3a:08:31:4a:55:6a:
75:a6:1a:9c:74:9a:9f:e5:fd:bd:b9:f4:55:39:8f:e3:34:48:
66:b4:13:1f:a9:52:7d:82:43:37:af:28:27:b4:22:c9:c9:a1:
f5:49:3f:53:fc:40:60:2d:5b:28:48:8d:7e:b1:cd:b7:71:1f:
c2:a1:73:9e:4c:81:17:5f:52:61:c9:5b:e2:c3:49:07:65:94:
81:4c:0e:4f:60:c7:3f:c5:70:48:f4:8c:50:cb:69:c8:38:ec:
0b:bc:4a:18:16:fe:b9:8e:55:59:d8:50:9c:e4:41:d9:da:2e:
61:3e:7c:6d:ce:12:67:36:21:1a:a2:c5:24:ea:62:8e:aa:db:
a0:46:08:77:43:84:72:d9:fa:4b:08:11:38:d5:76:64:54:14:
b2:ca:ed:ef:41:3e:94:76:7b:b8:2b:bd:e4:6c:5b:ff:21:67:
df:ef:5e:a6:78:68:a8:c7:28:c4:bb:14:c8:64:23:97:27:f2:
18:20:12:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:19:28 2025 by rpki-client