Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/318E2428F81411EFB2A9A97C762E951A.roa
File: 318E2428F81411EFB2A9A97C762E951A.roa (raw, json)
Hash identifier: +rirXQyaRSX4CUnA9YS0l5GgeeditVu2VtEQUDx3Hz4=
Subject key identifier: 6F:15:77:62:37:A7:EC:C2:39:A2:D5:5F:22:BC:BF:23:0F:B2:A4:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016FCC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/318E2428F81411EFB2A9A97C762E951A.roa
Signing time: Mon 03 Mar 2025 09:45:09 +0000
ROA not before: Mon 03 Mar 2025 09:45:05 +0000
ROA not after: Wed 30 Apr 2025 09:45:05 +0000
asID: 63139
IP address blocks: 154.94.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94156 (0x16fcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 3 09:45:05 2025 GMT
Not After : Apr 30 09:45:05 2025 GMT
Subject: CN=67c57a25-9763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:69:38:12:46:ee:57:85:94:9b:9f:26:fb:7e:
e5:5d:8d:50:94:f1:c0:9a:38:8e:eb:bd:11:d2:08:
b8:7e:2c:0e:22:d2:b6:23:c5:34:c8:03:39:f2:5c:
6a:35:4c:96:2c:00:3f:d9:7b:06:97:29:37:d6:ef:
9b:9a:58:90:42:e0:43:a7:14:19:11:64:7c:e7:5d:
1e:c8:f7:e4:04:3d:6e:db:af:56:4f:c0:30:c0:ea:
86:f6:10:66:a0:22:24:a2:63:ac:e1:4d:0c:fc:98:
d7:60:3f:bc:3d:84:65:f4:d5:31:42:25:c7:1b:96:
d8:d8:55:57:d8:5b:c4:6f:d2:97:97:94:2c:4e:7f:
a1:8b:ea:e6:d1:6e:cb:63:b3:26:78:57:f8:4c:2a:
1c:08:86:9e:9e:7e:16:cc:e3:ce:7d:e6:9d:30:03:
ba:78:1b:34:ec:82:2b:b6:49:88:d7:21:89:9b:6d:
50:4a:fb:71:e9:09:c9:76:85:31:08:1a:86:47:34:
a0:c8:be:ea:f4:9e:d8:00:06:c2:6e:20:9a:34:9f:
c8:f7:a6:b8:11:03:d3:02:87:f9:f3:64:cf:43:1e:
c4:ba:7d:c7:e0:1e:80:d0:7d:95:c6:5b:57:94:e2:
e3:ca:16:8b:4b:b2:8c:7e:27:a9:fa:c8:38:81:fd:
3d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:15:77:62:37:A7:EC:C2:39:A2:D5:5F:22:BC:BF:23:0F:B2:A4:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/318E2428F81411EFB2A9A97C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.113.0/24
Signature Algorithm: sha256WithRSAEncryption
09:eb:ec:81:1d:de:22:f6:f3:0e:84:a6:b8:fd:8a:6c:b4:e9:
8f:e5:99:ca:2b:18:22:b9:19:62:60:cf:af:6e:ca:b0:b0:d5:
43:0a:ec:59:7b:28:26:a9:74:62:b4:10:8d:15:e5:56:8f:69:
b4:e9:a3:29:7f:4d:c4:76:76:5e:45:6f:37:a3:32:0f:f6:d5:
68:0b:18:c3:1b:bd:7a:f1:1a:0b:fa:33:bf:97:8e:a3:64:ff:
e0:cd:75:98:e1:b6:ca:5c:de:3d:c5:0e:07:b6:ac:4b:9c:ab:
61:a4:23:db:f7:6c:69:63:f0:30:74:36:67:d7:de:f2:7e:e4:
ab:14:3b:04:14:5f:c3:78:82:b8:c4:c1:80:30:3e:8d:78:ef:
e2:21:7a:ae:d2:b3:f8:31:15:f0:d4:50:f4:a5:78:b3:f4:ba:
9f:57:61:e0:50:e4:7d:0e:c0:58:0f:a6:ea:05:ae:d0:c2:9c:
bc:32:59:42:4f:7b:07:79:96:7b:c3:51:cb:a4:da:83:06:e7:
96:5f:b9:d3:3c:65:df:ee:21:25:7f:c7:a9:fa:88:a0:17:55:
da:cf:2d:cd:0f:8b:4b:e7:f1:7f:20:fd:48:ce:c8:6c:8e:61:
e4:c4:8e:c3:9e:3d:c1:f9:0c:42:a4:5c:4f:4e:95:81:89:0b:
ad:de:e6:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:58:02 2025 by rpki-client