Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/488FACAEC60111EF994606AD762E951A.roa
File: 488FACAEC60111EF994606AD762E951A.roa (raw, json)
Hash identifier: q9qcjbmlkINwnK2G8LlzPKQLhNS3iG1eWDZeRzN90l8=
Subject key identifier: 89:C5:11:51:E5:CD:B4:F0:52:3E:87:AE:08:71:D7:E5:D7:E2:80:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012E60
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/488FACAEC60111EF994606AD762E951A.roa
Signing time: Sun 29 Dec 2024 16:23:49 +0000
ROA not before: Sun 29 Dec 2024 16:23:45 +0000
ROA not after: Sun 12 Dec 2027 16:23:45 +0000
asID: 17561
IP address blocks: 154.217.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77408 (0x12e60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 16:23:45 2024 GMT
Not After : Dec 12 16:23:45 2027 GMT
Subject: CN=67717795-f45a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6f:24:80:8b:e6:a9:07:73:9e:af:ab:53:d7:
b3:b2:ec:d4:7e:8d:c5:7d:99:74:da:e7:7b:eb:f8:
39:6f:dd:60:4d:ca:d6:1b:31:8a:8e:44:54:7c:0a:
65:94:f4:53:2e:94:2b:ee:c0:c7:08:59:b7:28:f5:
7e:a7:ad:53:b3:e2:bc:59:cc:ca:b7:a9:26:ce:8e:
ab:20:39:e7:c6:76:4f:90:32:77:7e:f8:4c:8d:14:
8e:d9:52:32:5c:7b:68:47:68:ec:9b:c3:de:96:b8:
6a:c3:80:9c:e4:4c:88:4b:a2:01:c3:11:e5:3a:3c:
8a:7d:73:83:34:35:94:1a:d0:f6:eb:e4:e7:d0:13:
15:a9:45:b1:1a:02:08:3e:9c:8b:07:ec:0e:1c:31:
50:ef:10:d8:cf:63:9c:f0:bb:84:e2:28:29:9d:67:
35:43:7e:08:d6:4d:e6:08:f1:ca:0f:f9:5f:53:05:
a0:41:ee:3d:3b:d1:2d:f9:a3:3d:14:4b:7b:f7:1f:
63:fb:e2:d5:fe:0c:1e:84:98:66:0b:fc:f6:54:d6:
12:c5:12:6c:14:7f:6d:3e:cf:d8:83:69:8c:19:1a:
59:21:20:6a:13:99:47:95:d3:dc:a5:89:63:5a:e5:
dc:06:78:bb:84:83:d1:2d:42:30:e9:d4:72:7e:55:
43:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C5:11:51:E5:CD:B4:F0:52:3E:87:AE:08:71:D7:E5:D7:E2:80:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/488FACAEC60111EF994606AD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.19.0/24
Signature Algorithm: sha256WithRSAEncryption
92:6a:6d:f2:4d:63:df:fd:94:3b:1f:ec:38:42:90:06:78:95:
0c:20:3f:6c:c3:d7:26:21:7e:ab:de:0a:b1:47:4b:6b:7d:21:
e4:29:fa:4e:ab:e4:84:10:21:b3:e8:fa:e8:37:50:6d:41:75:
f2:da:b5:bc:6a:2b:3f:ca:07:4f:ad:e7:57:92:e2:cb:23:f6:
6e:8c:1f:6e:1e:ac:be:9c:f2:ca:e1:a5:40:54:25:a5:af:dd:
ed:46:66:0e:02:47:5f:28:86:fe:76:f1:d4:5e:2e:dd:11:67:
20:c2:a6:de:b0:62:cc:4d:f5:cc:f8:41:1e:3e:ef:cf:42:8f:
8a:38:58:71:9c:a0:b4:5b:dd:85:67:98:d6:fb:cb:49:c8:1c:
f9:1f:13:8c:3d:e1:62:dd:6f:d0:44:64:ba:5f:75:b7:cc:a0:
8b:53:1d:44:03:a9:e7:1d:59:ff:ff:82:c5:f5:e3:c9:e0:da:
a7:42:6b:7b:50:89:e4:e0:17:e9:4d:11:e1:2d:45:bd:55:59:
8c:9e:5c:e4:c5:d2:3d:30:31:1a:f7:f0:76:19:68:48:32:8b:
5d:c0:bc:36:b6:1f:d2:89:41:7c:f6:30:ae:07:6d:e7:66:f3:
c8:38:f4:9f:3a:9e:e2:22:f5:34:8b:e1:bb:0a:f2:5e:af:22:
e1:f0:bb:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:59:27 2025 by rpki-client