Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/371745A0C1D211EFA407EB8F762E951A.roa
File: 371745A0C1D211EFA407EB8F762E951A.roa (raw, json)
Hash identifier: JXeMIhax0mxr2Mk5Gt/jUB6HTPp13W3rkopmvw4YQAM=
Subject key identifier: FE:65:3F:2E:D4:F5:F8:9A:C2:A1:1B:11:64:E0:4E:5F:C9:E8:4C:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0122AF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/371745A0C1D211EFA407EB8F762E951A.roa
Signing time: Tue 24 Dec 2024 08:36:48 +0000
ROA not before: Tue 24 Dec 2024 08:36:45 +0000
ROA not after: Wed 10 Dec 2025 08:36:45 +0000
asID: 984
IP address blocks: 154.193.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74415 (0x122af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 08:36:45 2024 GMT
Not After : Dec 10 08:36:45 2025 GMT
Subject: CN=676a72a0-05e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7f:bb:34:a1:3f:81:bd:78:08:aa:e3:19:2b:
2b:af:1b:03:70:01:56:9a:b9:39:80:7b:ee:7f:90:
d6:c8:b8:a9:04:7f:90:50:96:18:68:a5:72:84:94:
a4:db:8c:51:75:73:44:e3:f2:3e:2b:68:88:37:a8:
d1:84:9b:cd:4f:19:48:9f:14:83:d2:ad:be:a9:32:
a0:c1:0b:d7:dc:68:62:f8:29:05:38:48:38:c4:33:
12:1d:3b:a9:db:1e:2c:06:77:14:6b:8a:40:16:18:
7e:88:88:38:00:ce:6f:fa:c5:71:a9:1b:04:47:e6:
72:3c:25:f1:50:a6:fb:56:74:f8:a6:29:da:f1:92:
e4:e6:5a:3a:b5:72:47:19:60:2e:c7:a9:8b:7d:98:
f5:ff:8e:d2:d1:d8:82:15:93:85:7d:89:c2:15:4c:
1c:78:23:b9:8e:8e:36:75:4f:ba:d2:26:6b:ee:2b:
b5:83:58:31:e2:a5:29:2b:2c:9f:08:c7:18:3e:80:
5f:0c:3c:83:fe:cd:b9:15:b7:69:16:92:9f:82:ce:
55:50:65:b4:02:07:fe:ea:ff:9c:fc:85:d4:32:34:
65:32:f7:79:da:4d:c8:8f:67:1c:33:7b:6e:d1:49:
4f:fb:e9:c2:51:72:90:14:54:9d:1d:13:3e:27:2e:
76:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:65:3F:2E:D4:F5:F8:9A:C2:A1:1B:11:64:E0:4E:5F:C9:E8:4C:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/371745A0C1D211EFA407EB8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.247.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:fe:97:25:e8:64:78:f2:fc:47:42:65:37:2a:8a:19:59:af:
85:e1:d8:6d:6f:a5:be:6d:9b:8f:84:10:e0:7e:48:af:e5:b7:
ba:fa:96:b3:e8:cc:d2:d5:bc:34:26:b2:f7:2b:3f:e7:18:e6:
0b:e6:6f:d2:6d:02:08:a3:3c:06:25:c5:ac:49:79:17:8e:b7:
44:2b:45:dd:8f:57:1b:f5:53:8b:f2:4c:31:9f:8b:65:1a:ff:
4e:6d:9a:9f:13:1b:3a:0a:cb:42:1a:8d:d6:ec:ba:28:03:e1:
86:38:a4:35:34:95:2e:67:ea:54:9b:b5:7b:6c:14:d1:df:af:
52:29:78:8a:42:76:ea:f4:bf:89:8d:4d:8f:90:93:fd:c4:9d:
93:ca:c0:c0:2b:a5:40:e4:ce:9d:56:73:46:54:a1:8d:1c:ab:
25:04:16:49:c7:5b:c8:6f:80:1f:27:53:61:86:56:2b:13:99:
00:fc:a5:e4:8e:c9:76:40:7e:9c:ad:32:ef:e0:dc:8c:ac:da:
a5:2f:68:92:58:6c:ed:02:ed:07:c7:21:89:29:be:2d:08:a3:
ac:f7:21:5b:ec:e2:32:6e:0e:50:08:8c:ea:b0:9d:cc:3f:e8:
29:0e:9f:f5:be:d1:c7:5b:cf:84:64:a3:5d:bb:ee:87:34:91:
f3:2b:12:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:03 2025 by rpki-client