Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/481DB848CF6F11EF8B20CBB1762E951A.roa
File: 481DB848CF6F11EF8B20CBB1762E951A.roa (raw, json)
Hash identifier: 9GOUlA0MN40He9N3kqXkrT0xlm8i/1ccVIHoB4Xz5gE=
Subject key identifier: 24:2B:24:EC:0F:07:D2:F6:34:A2:BA:17:BA:89:94:40:91:C9:F3:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013A56
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/481DB848CF6F11EF8B20CBB1762E951A.roa
Signing time: Fri 10 Jan 2025 16:23:53 +0000
ROA not before: Fri 10 Jan 2025 16:23:50 +0000
ROA not after: Fri 12 Dec 2025 16:23:50 +0000
asID: 984
IP address blocks: 154.81.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80470 (0x13a56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 10 16:23:50 2025 GMT
Not After : Dec 12 16:23:50 2025 GMT
Subject: CN=67814999-5da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f8:2c:79:8b:69:3f:26:e9:df:8c:dc:0d:ad:
bc:57:03:27:5e:5b:59:35:ae:a5:d5:e4:10:44:e1:
55:94:65:e9:14:47:6e:2b:44:bd:f0:5b:f1:9a:0b:
d0:99:1e:de:b5:f7:f6:a0:31:55:b2:74:c7:0d:4d:
91:1e:22:92:45:33:46:57:af:95:26:45:cf:0e:bc:
d0:81:a6:e3:06:4e:22:55:55:b6:33:fc:85:fa:9f:
ab:4c:02:98:3d:47:88:ad:2e:82:8b:c7:c5:91:9e:
4d:e3:08:d1:bb:6d:91:07:b2:5f:c5:ec:dc:e6:6d:
8e:b0:3d:7c:0e:22:6b:f8:43:eb:db:33:39:e8:5e:
8f:1c:74:89:8e:44:d8:12:fc:98:78:4a:9b:4a:89:
93:1c:2b:9d:c1:84:d3:95:dd:49:e4:8c:62:cb:7a:
58:2a:8f:72:67:97:e2:14:c9:cb:62:5b:df:75:48:
48:20:11:55:58:8b:f0:03:54:1a:a4:17:e3:d0:62:
5d:86:fd:a8:4f:40:cb:73:7c:59:48:a7:e6:f3:06:
21:07:1a:d2:b9:e5:ca:d8:37:85:33:24:41:2e:61:
d5:2f:5a:8d:d4:f9:4a:dd:2a:5b:c9:47:6c:49:b1:
3e:04:6a:dc:0c:e7:ee:2a:85:27:58:96:d1:90:5b:
15:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:2B:24:EC:0F:07:D2:F6:34:A2:BA:17:BA:89:94:40:91:C9:F3:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/481DB848CF6F11EF8B20CBB1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.162.0/24
Signature Algorithm: sha256WithRSAEncryption
53:83:99:cc:34:eb:60:ce:db:a8:8c:f7:19:90:ea:af:54:77:
a9:35:04:3c:52:1c:02:9b:e7:5a:c0:94:f2:ff:b7:4c:d7:11:
34:aa:f9:e9:62:ea:99:41:dc:4f:7c:3e:59:67:44:ca:d0:77:
66:57:41:eb:79:bf:20:15:19:33:ee:44:a5:bf:86:a4:70:07:
58:4f:ce:d0:5b:59:5e:26:eb:26:54:30:88:d2:0f:a0:eb:e5:
53:c1:5d:da:21:88:6c:5c:32:ad:1a:0c:af:99:d7:4c:d7:12:
75:f3:6a:71:d9:e0:00:bb:5d:26:3c:5b:2f:93:5e:54:77:b9:
e2:73:41:0a:91:10:80:bd:f9:a3:3c:89:09:cf:08:40:84:0b:
ca:41:3a:c6:4b:88:54:61:c1:d9:3f:a6:a3:06:26:1f:f3:e5:
af:f8:25:94:74:d3:47:52:31:cd:65:6b:fb:1b:27:b7:3d:38:
5d:d7:31:c3:86:cd:f6:22:03:79:37:36:98:38:f8:88:9b:50:
a3:21:92:26:60:fb:e2:39:69:a0:94:d5:0e:76:a4:14:50:51:
1f:af:da:49:5e:3c:fb:33:51:63:d8:61:bf:d5:0e:a3:5b:aa:
c8:8b:62:8f:ab:d0:cb:1d:05:3e:c4:21:7b:91:1d:fd:68:71:
57:99:0b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:14:41 2025 by rpki-client