Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EE4FF82D4AD11EF8E411B93762E951A.roa
File: 3EE4FF82D4AD11EF8E411B93762E951A.roa (raw, json)
Hash identifier: 83L5mRsKoKvKRSuyYNG/4V7395La78Jqom/XHiVzVQs=
Subject key identifier: E2:1F:E7:A0:8A:C7:9A:55:57:61:32:AD:3A:39:FA:BA:FC:E2:7D:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013C43
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EE4FF82D4AD11EF8E411B93762E951A.roa
Signing time: Fri 17 Jan 2025 08:30:02 +0000
ROA not before: Fri 17 Jan 2025 08:29:58 +0000
ROA not after: Thu 17 Jul 2025 08:29:58 +0000
asID: 63199
IP address blocks: 154.209.88.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 12 Apr 2025 10:34:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80963 (0x13c43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 17 08:29:58 2025 GMT
Not After : Jul 17 08:29:58 2025 GMT
Subject: CN=678a150a-9772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2a:f9:3f:6a:ea:10:b3:87:0d:59:56:21:3e:
96:22:b4:57:00:ab:50:e0:79:79:b5:e0:19:26:f8:
ab:ba:65:09:03:1a:3a:17:cb:2f:89:09:50:c5:2a:
81:13:e0:99:b2:80:81:b7:db:63:cc:a3:08:58:cc:
b2:39:d8:ef:7c:b2:87:0e:8c:3e:fa:f0:ed:aa:65:
62:bd:08:15:be:de:68:0c:f1:c6:7c:df:93:9c:5c:
70:91:6d:39:6c:e5:ef:eb:77:a7:06:56:f5:63:8d:
51:91:44:c2:4a:18:0c:48:61:c9:06:b8:5d:ac:e7:
74:77:50:c3:ce:1b:21:aa:0e:5e:2c:9e:72:f2:22:
57:b3:c7:6c:42:d6:18:86:c7:2c:ff:df:3f:5a:bd:
49:bf:b9:4a:0a:ce:d9:c9:83:5e:6f:62:a1:62:4b:
cd:ea:3e:61:f3:a9:94:83:82:93:66:d8:80:3b:a4:
3c:82:ee:4d:4d:9b:c7:1d:ab:26:7e:39:02:15:03:
0c:15:ed:03:e0:fc:0a:ae:07:47:81:d3:3b:37:9a:
f4:2f:fa:99:a8:a7:85:aa:88:cb:4b:3c:53:99:9e:
33:3c:94:97:12:1c:e4:79:01:62:08:c0:47:df:35:
8b:55:52:cc:16:46:1e:ef:20:4f:af:5a:e8:30:75:
cb:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:1F:E7:A0:8A:C7:9A:55:57:61:32:AD:3A:39:FA:BA:FC:E2:7D:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EE4FF82D4AD11EF8E411B93762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.88.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:3b:f3:2d:64:2a:e3:94:0d:e0:64:a3:12:a9:a8:07:67:82:
3f:e6:0b:bd:ed:b1:5b:5f:0b:66:73:01:4f:03:7a:ad:03:cc:
2a:32:d2:81:a2:16:16:af:fd:18:6d:28:70:c5:7f:ee:04:57:
58:64:d0:0c:16:6f:1b:3d:99:4b:09:0d:b0:00:33:9c:c3:7d:
ce:83:8a:76:52:69:29:b8:b3:5f:1b:55:1f:af:0f:9f:e9:00:
0e:ee:2b:98:e9:82:64:54:2f:67:dc:78:0f:2a:98:d5:fb:e4:
a6:ec:6c:28:e4:6c:bd:27:60:15:15:e1:e2:e1:b1:a8:81:fa:
fe:c2:eb:d4:9f:b5:cc:d9:03:d3:84:f5:79:ea:29:08:b6:28:
a4:d2:a1:9b:2e:0c:46:c4:bb:4f:2d:6b:40:fc:3f:c4:61:42:
a9:2c:26:2f:f3:b5:da:ac:d8:8c:a9:68:36:71:04:bb:cc:bf:
0d:35:17:f7:95:a6:09:95:2e:30:a7:8b:df:86:84:6f:22:44:
f7:5f:7b:fc:72:1a:a9:50:d6:c3:eb:cf:b6:b0:83:46:9a:0f:
4d:3d:04:c0:8d:81:f0:ae:1d:7c:1d:07:36:b4:a7:31:cb:c2:
75:ed:24:e2:f6:27:d1:10:51:8c:8a:73:53:1b:6e:2c:d4:46:
df:4a:29:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 01:50:21 2025 by rpki-client