Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/361DAFB8C41611EFB0ACD98D762E951A.roa
File: 361DAFB8C41611EFB0ACD98D762E951A.roa (raw, json)
Hash identifier: Jw8LyFaBuJczJecvOdNsaari2ic/k7pLAoPIdZvw1uw=
Subject key identifier: 68:79:E4:41:26:7A:39:E9:35:85:72:29:9C:97:B0:38:32:6C:23:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01295D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/361DAFB8C41611EFB0ACD98D762E951A.roa
Signing time: Fri 27 Dec 2024 05:48:35 +0000
ROA not before: Fri 27 Dec 2024 05:48:31 +0000
ROA not after: Sun 12 Dec 2027 05:48:31 +0000
asID: 17561
IP address blocks: 154.197.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76125 (0x1295d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 05:48:31 2024 GMT
Not After : Dec 12 05:48:31 2027 GMT
Subject: CN=676e3fb3-9934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f6:65:82:9f:7d:cf:d9:ac:2a:ca:55:39:0d:
bb:2a:ad:21:9b:de:25:ee:a6:30:da:d3:c8:df:c4:
cd:9f:f9:cd:8d:81:2d:4d:16:a6:b7:ef:c4:06:c3:
fc:1e:be:95:8a:3c:ff:92:ab:f4:6a:53:01:c1:2f:
9b:dd:ba:c8:47:d9:0f:42:44:10:4b:0b:0a:6f:87:
a1:29:67:a3:e6:81:58:df:cf:0f:9d:ac:6f:ae:6b:
fc:88:4e:ca:97:3f:3c:9f:33:6c:b9:29:d1:e4:21:
f8:04:c0:28:77:85:3f:eb:b5:df:dc:18:ec:a5:87:
aa:39:f4:15:cb:35:ed:0a:ea:38:cf:bf:ac:ed:d1:
d6:79:44:e1:30:e9:5d:78:92:c8:68:9b:3c:8d:4d:
f1:1b:74:bc:78:6a:19:70:62:63:79:04:c9:09:c2:
82:e1:e3:1b:a2:ad:4b:83:f1:81:51:8f:57:73:d4:
6b:c9:2f:3f:97:64:78:8d:a9:16:3d:0e:5f:e3:f1:
37:bb:60:2b:7a:59:da:46:7e:ab:cb:66:3d:ab:c5:
82:d5:61:d3:0d:c0:f2:1b:71:d3:fc:27:07:a4:9d:
01:9f:7c:ba:54:9a:2d:7a:9d:44:ab:e7:74:98:f7:
ee:47:7e:8e:8b:4d:fe:db:2f:c3:0c:eb:fc:ae:5e:
4b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:79:E4:41:26:7A:39:E9:35:85:72:29:9C:97:B0:38:32:6C:23:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/361DAFB8C41611EFB0ACD98D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.30.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:94:f5:90:1d:c0:cf:62:a2:68:7c:00:2c:ab:1a:d5:37:e3:
c6:cb:90:37:17:03:01:b0:49:bf:d7:88:1d:49:7e:db:f4:f1:
20:8d:db:6b:57:ed:e2:a2:38:b0:77:76:d1:3f:e9:19:45:03:
cb:df:15:1a:0e:07:e3:92:bb:c9:74:36:54:32:45:f7:12:d2:
a8:50:67:20:47:7c:18:4e:8d:07:9a:b8:1a:51:a9:8d:c4:21:
f4:96:a3:c8:0e:2c:13:89:57:a2:5a:67:f4:3f:57:9f:9e:a1:
bf:27:bd:15:c2:45:b4:17:32:c4:be:58:f8:ee:39:3a:48:a6:
7c:27:cd:75:60:95:c9:e2:51:a0:0b:01:1c:20:db:64:0c:36:
95:4b:2a:75:ee:65:f0:02:ac:8f:a8:2c:bc:bb:da:ec:80:a0:
fc:d2:0b:33:be:e1:8b:89:5a:32:58:27:36:76:a8:dd:a0:21:
73:85:35:79:7d:cc:5c:79:da:5c:02:11:d9:4a:a3:2a:49:fb:
19:2a:98:2c:a4:39:e0:88:0d:9c:98:e7:42:45:11:17:5d:53:
b0:51:50:c3:85:f1:8f:ca:08:91:6f:f4:62:83:5e:11:a6:c3:
aa:40:55:31:79:2d:e8:ec:bf:49:fa:81:63:62:c1:65:7f:29:
32:31:5b:0c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASldMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI3MDU0ODMxWhcNMjcxMjEyMDU0ODMxWjAYMRYw
FAYDVQQDEw02NzZlM2ZiMy05OTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuPZlgp99z9msKspVOQ27Kq0hm94l7qYw2tPI38TNn/nNjYEtTRamt+/E
BsP8Hr6Vijz/kqv0alMBwS+b3brIR9kPQkQQSwsKb4ehKWej5oFY388Pnaxvrmv8
iE7Klz88nzNsuSnR5CH4BMAod4U/67Xf3BjspYeqOfQVyzXtCuo4z7+s7dHWeUTh
MOldeJLIaJs8jU3xG3S8eGoZcGJjeQTJCcKC4eMboq1Lg/GBUY9Xc9RryS8/l2R4
jakWPQ5f4/E3u2ArelnaRn6ry2Y9q8WC1WHTDcDyG3HT/CcHpJ0Bn3y6VJotep1E
q+d0mPfuR36Oi03+2y/DDOv8rl5LrQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGh5
5EEmejnpNYVyKZyXsDgybCMSMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zNjFEQUZCOEM0MTYxMUVGQjBBQ0Q5OEQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsUeMA0GCSqGSIb3DQEB
CwUAA4IBAQAvlPWQHcDPYqJofAAsqxrVN+PGy5A3FwMBsEm/14gdSX7b9PEgjdtr
V+3iojiwd3bRP+kZRQPL3xUaDgfjkrvJdDZUMkX3EtKoUGcgR3wYTo0HmrgaUamN
xCH0lqPIDiwTiVeiWmf0P1efnqG/J70VwkW0FzLEvlj47jk6SKZ8J811YJXJ4lGg
CwEcINtkDDaVSyp17mXwAqyPqCy8u9rsgKD80gszvuGLiVoyWCc2dqjdoCFzhTV5
fcxcedpcAhHZSqMqSfsZKpgspDngiA2cmOdCRREXXVOwUVDDhfGPygiRb/Rig14R
psOqQFUxeS3o7L9J+oFjYsFlfykyMVsM
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:39 2025 by rpki-client