Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C750C94D24811EFBB44ABB4762E951A.roa
File: 4C750C94D24811EFBB44ABB4762E951A.roa (raw, json)
Hash identifier: emfME68MjV4RlYsf819Ee/acWG92R8g4hqiPzKN7VxY=
Subject key identifier: 2F:2F:2C:CC:06:FA:FA:FD:DD:51:2B:0B:F6:E7:6E:0F:58:D2:6C:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013AD9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C750C94D24811EFBB44ABB4762E951A.roa
Signing time: Tue 14 Jan 2025 07:22:23 +0000
ROA not before: Tue 14 Jan 2025 07:22:20 +0000
ROA not after: Tue 18 Feb 2025 07:22:20 +0000
asID: 214413
IP address blocks: 154.205.254.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Feb 2025 10:39:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80601 (0x13ad9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 14 07:22:20 2025 GMT
Not After : Feb 18 07:22:20 2025 GMT
Subject: CN=678610af-af8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:88:ae:a9:27:16:98:75:ec:23:b8:80:0d:b4:
74:10:34:20:be:1f:d7:c3:d2:95:b5:29:59:4f:5a:
1a:27:e3:4e:2d:ea:b1:91:03:45:55:01:30:de:39:
e0:49:51:d1:c3:59:6a:a0:ec:ff:52:79:a1:9b:ad:
83:cc:8c:37:32:40:ec:c4:3e:41:2f:22:75:53:af:
c5:42:15:93:8e:a6:4b:60:1d:36:03:d9:62:31:06:
19:16:38:d3:84:c4:e5:07:e7:b7:dc:c2:ea:f2:87:
17:27:fe:a5:ec:7e:8f:ed:11:6d:c2:93:e4:57:26:
ae:49:b6:b3:47:ad:df:48:3c:74:0d:4a:4d:27:7a:
18:de:ab:e1:ae:f1:35:97:f2:3b:d6:d1:bb:c6:5e:
04:5c:95:d5:e7:0d:8e:3a:7a:40:b0:6c:8c:27:ba:
39:bf:6e:03:bf:f3:8e:c6:89:3e:67:69:fe:89:53:
de:03:3c:d3:98:c1:0b:05:01:d4:95:c2:d5:dc:6f:
31:be:d3:89:9c:88:d2:b1:aa:25:94:5e:9c:b6:7a:
d7:19:c0:7b:7d:e7:a9:1a:7c:d2:53:85:9e:f8:fb:
ba:9a:31:bf:4b:30:61:30:cd:df:c5:da:c3:9f:5f:
2f:f2:9d:58:42:b7:e3:45:10:54:1c:c6:58:71:20:
41:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:2F:2C:CC:06:FA:FA:FD:DD:51:2B:0B:F6:E7:6E:0F:58:D2:6C:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4C750C94D24811EFBB44ABB4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.254.0/24
Signature Algorithm: sha256WithRSAEncryption
83:69:94:b2:1e:76:e3:4e:99:68:6c:4e:90:12:8b:a5:97:af:
78:0e:dc:94:fb:1c:b5:c1:fc:8a:e0:3e:c7:8f:04:fc:a6:51:
63:05:e5:1f:ef:a6:29:ab:b4:08:5c:ec:c5:a5:2f:65:2d:25:
61:8a:2c:fe:c5:2c:8b:47:4c:f0:c7:f0:fb:d5:a1:c2:60:47:
43:64:9f:7f:1b:bd:94:c8:32:13:9e:26:a5:b8:cb:37:33:ac:
f1:a7:6e:20:47:6c:8e:ce:72:ab:c0:02:be:73:75:5d:2c:19:
d2:34:4f:03:02:c6:58:a5:40:5f:4a:a0:d7:38:c3:7d:23:92:
0a:d3:06:97:ca:59:96:dd:42:e9:36:35:14:0f:56:a4:49:cc:
72:48:98:17:b6:4b:58:35:1a:33:7e:80:d4:15:07:b8:1d:0d:
19:3a:a4:df:87:a7:48:4d:fb:3e:38:08:4c:2a:27:df:1f:d6:
86:7d:72:12:9d:2a:a1:14:8e:30:6e:64:58:15:6d:93:a5:d9:
3c:bd:2b:1a:59:8f:ec:0a:b0:52:9f:c7:78:4d:58:2d:aa:9a:
4a:2b:0f:ae:8c:8a:43:e8:4c:ae:b0:6a:38:12:3c:ba:d2:38:
97:06:f9:75:83:48:d8:a6:81:8a:1d:35:13:05:9f:20:d8:f9:
a9:d2:13:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:01:17 2025 by rpki-client