Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E3B619EC41D11EFA3E5A0B9762E951A.roa
File: 2E3B619EC41D11EFA3E5A0B9762E951A.roa (raw, json)
Hash identifier: NvkQ06yAsSA2l6BfuKdv/rllMl0n1bnvmYf5iwYgE+o=
Subject key identifier: 03:CD:58:15:71:94:46:81:D9:AB:69:77:C0:EF:1A:B5:FA:C0:D1:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012999
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E3B619EC41D11EFA3E5A0B9762E951A.roa
Signing time: Fri 27 Dec 2024 06:38:28 +0000
ROA not before: Fri 27 Dec 2024 06:38:24 +0000
ROA not after: Sun 12 Dec 2027 06:38:24 +0000
asID: 17561
IP address blocks: 154.201.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 12 Apr 2025 00:06:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76185 (0x12999)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 06:38:24 2024 GMT
Not After : Dec 12 06:38:24 2027 GMT
Subject: CN=676e4b64-3795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7f:1f:ad:06:87:96:55:e0:45:72:51:ba:03:
9c:5e:89:bf:d7:ab:9a:9d:34:e5:0c:5e:fb:b9:ab:
34:07:f0:fa:ae:3c:76:c5:47:5f:cb:1d:d1:f3:94:
53:fd:b1:30:9d:33:55:17:3f:a3:54:68:43:8e:75:
15:27:3f:3e:b6:ff:31:30:43:c5:c5:3c:6a:b9:eb:
63:bc:d2:6c:12:c0:50:6c:fa:f4:3d:2e:3e:ec:e6:
a5:d7:1c:ce:c3:11:54:6c:ee:61:95:cc:db:56:66:
db:eb:b1:54:f3:ea:30:3c:ae:28:e3:75:22:ef:a1:
cc:62:f3:b2:89:fe:87:70:cc:72:43:d6:ac:47:59:
7d:09:17:0b:df:d7:c6:19:d7:7d:2d:67:60:4b:96:
b5:c9:18:0e:73:7c:df:16:9c:38:4b:a1:82:a2:7b:
ec:5d:2d:24:d0:b6:72:ff:67:78:f0:45:b7:13:24:
e7:7d:c7:48:4e:01:ce:52:d7:58:80:c7:88:81:25:
ec:db:62:a6:52:e9:31:2c:00:3b:ab:f6:0c:95:89:
95:ba:51:f4:ca:24:75:10:5b:22:0b:d4:d2:9d:8e:
d0:8a:af:3d:b2:28:dd:bf:36:a5:73:58:cc:f3:13:
00:80:59:fc:34:e8:44:f9:03:be:23:ab:ca:78:b0:
2a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CD:58:15:71:94:46:81:D9:AB:69:77:C0:EF:1A:B5:FA:C0:D1:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2E3B619EC41D11EFA3E5A0B9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.27.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:67:97:69:e1:53:cf:52:7a:f1:98:cf:e5:e3:1b:da:06:e1:
ca:49:13:c7:42:90:86:68:df:87:e6:98:47:70:15:6d:9d:d8:
8e:0e:64:eb:f9:a8:75:d6:4d:06:d8:05:e6:bc:ed:36:3c:83:
cc:58:2a:d4:dd:59:e4:8f:34:5c:c3:a7:e5:7e:53:d1:64:5d:
c5:46:02:f2:a4:c1:69:86:d6:01:fb:7b:3a:9c:cf:2c:9b:3e:
ae:36:22:40:66:4f:97:61:0c:5a:65:b3:3f:63:4f:32:80:e3:
94:26:ba:11:ee:d8:ea:bc:27:c0:75:fd:1d:1c:eb:7e:bb:52:
54:b8:9e:3b:fe:f2:67:09:23:15:68:78:3b:a0:8e:0c:ae:26:
46:25:4b:a1:0f:8d:92:ee:92:b4:7b:f8:07:44:a4:54:ff:8d:
6e:36:60:c1:39:9a:71:9d:fc:9e:8b:e6:f5:10:24:86:0d:ad:
71:2e:09:c1:85:05:a1:d4:a6:e8:32:b5:bb:c4:0d:a0:50:a4:
58:33:87:16:4a:bf:8b:78:12:bd:6f:3f:8c:48:e0:36:a2:45:
1f:fc:99:f0:cc:09:08:a6:d8:5f:95:cd:e1:00:e3:95:2d:21:
7c:c3:22:6f:dd:5d:8f:b9:fb:09:55:3b:4e:c1:b6:56:71:12:
d9:bf:ca:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 09:05:41 2025 by rpki-client