Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49EEE784C8A611EFA2F20B79762E951A.roa
File: 49EEE784C8A611EFA2F20B79762E951A.roa (raw, json)
Hash identifier: 7Z/6+lKuTWLf38ZJ71Nt4DC9Zx8+POJ6OJpnb6QXoz8=
Subject key identifier: E3:60:4C:9A:DC:1F:61:93:B1:21:0D:F6:A0:BC:C6:EB:81:25:4A:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01314C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49EEE784C8A611EFA2F20B79762E951A.roa
Signing time: Thu 02 Jan 2025 01:10:00 +0000
ROA not before: Thu 02 Jan 2025 01:09:57 +0000
ROA not after: Sun 12 Dec 2027 01:09:57 +0000
asID: 17561
IP address blocks: 154.220.129.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78156 (0x1314c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 01:09:57 2025 GMT
Not After : Dec 12 01:09:57 2027 GMT
Subject: CN=6775e768-a562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:92:5f:b4:69:8f:95:6f:ee:b7:68:61:5d:e0:
9a:54:5f:8c:88:f3:78:2f:5b:22:63:71:48:66:17:
7a:d6:bd:6a:76:0f:6d:70:6b:5c:58:85:b0:8e:37:
eb:0c:80:8d:4e:39:c1:d3:0e:ea:fc:99:08:5d:e2:
a7:42:ff:06:7e:b0:87:51:8a:fd:c4:4a:33:69:c4:
c0:13:4f:20:d2:de:ac:7b:d7:9c:f6:74:19:9e:e3:
fb:fb:3e:81:f7:80:82:3f:21:f4:47:43:c8:4e:bb:
c5:fb:81:5f:4f:11:82:26:f4:bd:7a:57:b2:7b:13:
c9:37:5a:d2:07:72:ca:56:fc:c0:58:e6:04:40:5d:
b3:24:5f:1a:53:03:be:c2:4a:6d:3f:0d:9f:c7:b5:
6a:f9:56:b9:50:d3:07:14:ab:75:d4:e1:80:b3:09:
6f:6f:a9:d6:10:39:45:35:25:a0:74:03:35:f5:00:
3a:41:ae:6d:f1:65:1f:66:d7:e1:18:8c:94:cf:6b:
f0:94:fa:99:45:db:4c:72:fd:2a:fa:df:90:58:48:
25:e5:a8:71:d2:57:45:b0:3b:fa:f3:3f:9c:ca:79:
2c:c0:26:d6:f7:c8:d7:32:22:e6:ac:cc:83:2c:96:
3e:a9:5f:08:8e:4f:c2:48:7e:60:a4:ef:09:9f:79:
08:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:60:4C:9A:DC:1F:61:93:B1:21:0D:F6:A0:BC:C6:EB:81:25:4A:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49EEE784C8A611EFA2F20B79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.129.0/24
Signature Algorithm: sha256WithRSAEncryption
13:48:89:83:e6:96:1d:2f:e5:22:cf:07:d5:98:9b:c3:ea:03:
24:e3:ac:6f:23:c9:a4:bf:81:08:7c:7e:dc:00:ea:46:df:c3:
42:42:ab:7e:0a:a1:63:59:89:b1:bb:1e:bb:1b:0d:4f:24:9d:
4d:bd:53:b8:b3:a3:40:8f:aa:e2:99:ad:a5:f3:d7:fc:7a:91:
64:11:00:64:9b:29:65:cd:ff:a3:bf:2c:f6:be:7c:22:ff:f3:
d2:54:9f:76:a9:e4:8a:0d:bf:31:de:af:a4:72:d1:c6:60:55:
30:f8:e1:6c:91:9f:cb:77:7e:e3:cc:76:e7:af:4f:8a:de:ce:
46:ea:38:90:ac:2b:3d:ec:e6:34:72:3e:66:0a:35:a6:b5:db:
14:5d:88:64:bc:0a:92:a0:23:ff:95:55:61:c1:b4:82:23:e6:
7d:d6:29:2a:fb:03:36:11:e2:63:a7:30:b6:37:e8:8a:c1:35:
d8:a8:8d:61:75:bd:33:6e:75:9b:92:83:c5:90:ab:ce:88:e2:
7a:14:09:86:63:09:43:84:30:8f:98:eb:48:e7:1a:fe:85:90:
6f:99:b6:ca:80:29:0e:fb:33:01:7b:a1:5b:da:13:1b:63:8a:
37:4e:7d:64:e2:e0:94:d3:1b:b0:ae:a5:1b:e9:47:f6:07:0a:
9c:90:0a:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:51 2025 by rpki-client