Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39E600E4C3C311EFBA0AA36D762E951A.roa
File: 39E600E4C3C311EFBA0AA36D762E951A.roa (raw, json)
Hash identifier: C7vivzCrGzdQ8uUkr/Tps2k7N+J5al0KYbwN6D1mo8E=
Subject key identifier: CF:0D:FE:D7:D2:F9:00:E5:73:9B:07:38:DE:3D:4B:AE:CE:7E:E8:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0127B4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39E600E4C3C311EFBA0AA36D762E951A.roa
Signing time: Thu 26 Dec 2024 19:54:33 +0000
ROA not before: Thu 26 Dec 2024 19:54:29 +0000
ROA not after: Sun 12 Dec 2027 19:54:29 +0000
asID: 17561
IP address blocks: 154.81.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 12:38:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75700 (0x127b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 19:54:29 2024 GMT
Not After : Dec 12 19:54:29 2027 GMT
Subject: CN=676db479-1e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:90:06:0d:70:33:d7:e2:27:dd:eb:dd:4c:45:
56:56:b2:07:69:35:2d:04:e3:1a:13:e2:e2:b3:d0:
aa:80:97:4e:48:85:02:27:de:f8:80:7c:f6:45:c1:
4b:42:0b:a9:06:c5:4a:96:3c:ba:33:a9:65:17:5b:
7e:05:99:51:19:7d:7b:38:6a:e6:c9:fd:4b:e3:78:
d0:52:e9:1b:06:02:d3:17:4b:b4:91:a7:47:dd:5b:
1d:46:34:5d:7c:e2:90:3e:b2:d2:75:f9:6f:69:6e:
fb:d4:dc:73:45:c4:45:18:a5:32:36:f1:12:66:56:
95:80:c8:cd:d0:2e:7a:59:91:3c:38:d0:d0:7b:2f:
9d:dd:8c:e3:d5:e5:0c:cd:74:e7:b8:3b:ba:04:26:
62:2d:10:ae:3d:04:65:a6:69:f6:7f:4d:82:5c:70:
5a:e0:46:24:d5:3a:52:44:b7:4e:a4:08:a3:70:55:
f2:b6:24:a2:93:be:b8:33:82:c4:5e:63:8d:a3:e1:
32:a4:c1:c0:01:5a:fd:43:7e:c5:11:43:92:04:7a:
60:63:78:f1:09:e8:60:12:c5:5b:4c:26:34:46:1a:
1a:76:8f:91:57:de:35:ff:17:53:46:e9:1c:d8:88:
95:8a:83:fd:21:4d:38:11:2b:3e:ac:7c:bb:a3:e5:
b9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0D:FE:D7:D2:F9:00:E5:73:9B:07:38:DE:3D:4B:AE:CE:7E:E8:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39E600E4C3C311EFBA0AA36D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.222.0/24
Signature Algorithm: sha256WithRSAEncryption
31:01:99:2a:02:48:21:6c:35:f0:62:e4:99:8e:ac:90:64:9f:
80:4c:c5:f5:2e:f9:26:13:6d:ad:9f:ee:0e:9a:c5:e6:0a:02:
fb:fc:1b:6b:03:54:37:60:14:ca:08:c4:43:95:c8:e2:48:9a:
a4:16:94:e2:94:9b:2e:55:8d:16:a2:99:92:d3:13:c6:87:54:
18:c6:3b:1d:5b:44:c0:27:57:9b:b1:ff:90:67:33:a8:6b:1c:
ef:4d:55:fe:6b:31:56:3e:8d:42:6e:c3:a1:a3:81:c9:bf:8f:
78:dd:c4:cf:4d:76:04:8c:49:b9:18:9b:9a:61:90:ff:f4:7a:
65:17:fd:65:eb:80:dc:09:b4:b1:34:ba:70:ea:4a:da:5b:dd:
3e:97:c0:33:89:40:05:e3:df:55:66:de:2e:1c:39:fb:3f:e7:
26:44:3e:53:f5:64:6a:cb:b5:4e:34:08:cd:ce:9b:8c:c7:98:
58:5b:07:70:2a:66:98:26:19:2f:0d:b0:04:97:ba:20:bc:2b:
ad:f7:7f:72:fa:0e:29:da:3f:b0:a4:91:37:a4:3f:51:a3:b8:
81:a9:4a:97:f9:21:f3:1f:f0:c8:fc:30:07:de:8b:29:56:f9:
4f:66:42:11:1c:2d:7e:74:c0:43:95:b0:dd:df:52:f1:d0:a9:
25:29:63:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:53:00 2025 by rpki-client