Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/448029F6F61511EFBA7D5164762E951A.roa
File: 448029F6F61511EFBA7D5164762E951A.roa (raw, json)
Hash identifier: iWg1bqCMvkjCbc2N7kAyP6jhZDapiKVAwkbFHlPyEDU=
Subject key identifier: C7:DD:13:61:F0:5A:08:A0:6F:73:43:B5:41:0F:64:F3:8A:89:B1:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016C07
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/448029F6F61511EFBA7D5164762E951A.roa
Signing time: Fri 28 Feb 2025 20:47:48 +0000
ROA not before: Fri 28 Feb 2025 20:47:44 +0000
ROA not after: Sun 13 Apr 2025 20:47:44 +0000
asID: 138915
IP address blocks: 154.206.72.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93191 (0x16c07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 28 20:47:44 2025 GMT
Not After : Apr 13 20:47:44 2025 GMT
Subject: CN=67c220f3-3b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:61:03:00:da:42:29:fd:49:80:84:3b:a3:ac:
95:5c:10:a5:b0:a8:00:46:15:ff:ea:f9:8e:86:a7:
e7:ac:e8:4b:eb:db:d2:ac:dc:fd:da:f1:8e:39:6f:
b4:b0:7b:12:45:53:60:4b:3a:3c:6f:49:ae:f8:62:
a2:b4:07:2b:cc:9d:81:66:c6:fb:fb:de:41:9a:f1:
40:61:34:59:6f:23:e4:c4:29:a8:08:f5:8d:f4:34:
74:c9:9e:c6:c2:9c:b2:cb:e4:45:f5:77:e9:a5:e2:
a8:0c:05:68:89:51:5c:26:e7:d4:01:04:6c:ef:37:
72:ec:12:22:93:18:f1:01:72:dc:8e:8a:bb:74:3f:
e8:cd:88:1e:08:90:e3:c2:a5:0a:2b:34:49:91:40:
2b:5f:fd:2c:70:21:79:0b:74:f7:e9:65:18:a6:44:
f2:61:1a:31:5a:39:91:1f:fa:c1:0c:d1:c0:74:0b:
42:3d:a5:5d:26:87:b7:a0:1b:28:c6:b9:49:8f:9d:
d9:7a:63:f5:91:c3:ac:d2:f2:82:fd:46:a5:65:a7:
35:90:4c:ef:0b:68:17:fd:36:25:83:62:93:d7:97:
71:34:dc:a3:58:a7:6d:6d:b2:74:e5:a3:84:f9:f1:
61:14:99:7d:85:b7:3b:63:f7:59:83:f3:39:eb:dd:
52:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:DD:13:61:F0:5A:08:A0:6F:73:43:B5:41:0F:64:F3:8A:89:B1:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/448029F6F61511EFBA7D5164762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.72.0/23
Signature Algorithm: sha256WithRSAEncryption
63:03:f6:39:c4:66:13:ea:a6:91:17:a0:af:ef:22:42:8b:da:
07:fb:46:b9:d4:07:24:e2:5e:6f:57:25:21:5a:35:90:23:ce:
f3:5f:ea:60:cf:29:27:88:d7:bf:6a:3f:13:b1:b3:0b:b2:99:
c7:61:65:b7:f0:f2:00:35:a4:a6:76:c7:19:1d:8a:7e:50:4c:
54:63:8f:91:51:ea:81:8f:7b:15:e7:d6:ca:80:b0:1b:fd:0a:
ec:04:70:4b:ee:da:9c:ca:fa:e4:cf:71:a6:58:1b:a7:09:f0:
05:ce:7b:fa:f3:9a:30:53:88:3a:93:e1:ed:bc:d3:3b:76:7e:
76:1d:61:a5:61:d1:b7:39:a2:1b:e6:89:dd:ac:f5:64:1f:04:
03:12:54:48:7a:9b:2a:da:57:11:17:5f:67:dc:ba:87:ff:2b:
0e:0c:fb:bd:7b:6c:9c:e3:30:92:90:12:88:5f:14:e7:33:9c:
3e:cd:c7:ec:e8:a3:dd:13:a1:d6:70:e2:a0:ef:36:38:68:1d:
2e:28:3f:f5:71:04:a0:58:93:c5:e9:b8:7f:e7:5b:c0:06:7b:
64:c6:36:8f:3a:90:3a:2e:08:7b:46:b8:6a:45:f5:5d:e1:57:
84:a9:72:2d:24:11:8a:f3:bd:87:80:2d:53:f3:61:7c:e1:81:
e9:82:d8:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:40 2025 by rpki-client