Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/546C9F6613C011F08248D098762E951A.roa
File: 546C9F6613C011F08248D098762E951A.roa (raw, json)
Hash identifier: obk7S1QncaINNCVblg7Gq4Jr6iahM8rXA+UY4q9VJ9c=
Subject key identifier: 29:4B:7A:E5:F5:1C:85:AC:1A:03:A2:CA:E7:80:A5:29:1E:23:2D:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017806
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/546C9F6613C011F08248D098762E951A.roa
Signing time: Mon 07 Apr 2025 14:55:22 +0000
ROA not before: Mon 07 Apr 2025 14:55:18 +0000
ROA not after: Sun 11 May 2025 14:55:18 +0000
asID: 36680
IP address blocks: 154.81.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 10 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96262 (0x17806)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Apr 7 14:55:18 2025 GMT
Not After : May 11 14:55:18 2025 GMT
Subject: CN=67f3e75a-4406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6e:d1:6b:9d:3a:b8:be:23:5f:01:e2:e4:2c:
59:3c:ee:e5:ff:35:f2:b1:48:62:d8:02:3d:3e:ac:
ca:0d:f7:5b:77:57:2c:51:56:a8:bc:56:d9:22:50:
0c:ab:3d:1b:a3:b3:2f:00:66:4e:c5:9c:a0:2c:7f:
46:e7:24:b5:cb:23:5d:98:23:dd:59:71:42:7d:bb:
53:11:97:ab:f3:5d:4b:2e:d3:bc:77:e6:97:50:1b:
71:81:8f:a0:ff:00:b1:b0:90:39:b3:3e:b0:8f:52:
78:d1:37:8f:d1:c0:d0:93:0a:d9:f2:d2:2a:f2:77:
58:13:a5:3d:53:52:3b:4b:8a:95:6b:ed:84:34:0a:
43:41:e6:dd:30:f5:a9:d1:2c:b4:ee:9a:28:c5:cc:
d7:44:8c:23:12:68:8f:6e:6a:a9:b3:05:14:78:12:
a1:91:12:f3:cb:f0:bb:1e:51:3f:39:8a:fd:e3:41:
7a:8b:b9:bb:a7:13:1a:58:fb:e7:f3:3d:a8:b4:55:
db:eb:bf:de:47:00:9a:46:f3:8b:92:28:52:5e:3a:
74:34:3e:03:83:88:18:2e:6e:e5:79:54:98:96:0f:
11:9e:33:31:50:00:2c:c0:40:b4:bf:ec:87:36:fc:
63:5b:d1:95:2d:55:8a:db:12:84:81:dd:b3:8a:f1:
17:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:4B:7A:E5:F5:1C:85:AC:1A:03:A2:CA:E7:80:A5:29:1E:23:2D:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/546C9F6613C011F08248D098762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.156.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:6a:c1:73:a7:d3:c9:e5:0e:22:13:ed:e5:ee:7e:a3:b0:54:
05:3c:1b:38:32:ee:e7:f2:ae:5a:56:79:7d:1b:76:8f:ad:67:
5a:d9:5c:ed:58:6d:eb:d7:80:90:10:a9:70:d3:66:5d:59:dd:
31:ef:b9:18:37:f0:41:aa:65:7a:b7:e9:4e:9c:4c:ed:ef:f1:
42:5e:ff:c9:c8:42:e7:7c:12:b8:d8:73:99:d1:52:86:6d:ac:
a6:23:d3:29:b4:0e:71:f6:86:23:08:ef:20:f9:d4:11:80:1b:
4f:e6:11:d3:0f:98:4a:df:12:f1:43:c3:38:66:eb:6a:15:ab:
c3:58:55:ec:f5:6b:3e:00:e7:d7:7f:e7:d1:85:d2:e6:38:96:
13:bf:6e:34:ab:ee:cb:fa:73:1d:19:54:1e:63:bd:e4:e0:a6:
a9:7a:13:d7:ee:84:81:40:e8:8c:66:f0:51:98:80:9d:d9:f8:
fd:9f:0d:50:ae:d9:ba:43:05:ee:91:ef:0e:c4:c4:a0:3a:64:
68:77:fb:2e:f5:c4:44:6a:38:16:69:60:2e:31:2c:73:97:33:
1c:79:cc:c9:80:6f:1b:75:7b:36:b5:b2:76:d4:64:72:5f:e6:
82:2a:1c:2b:31:11:c9:8f:87:14:ac:f8:3c:97:42:13:31:3d:
7e:27:43:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 10:15:44 2025 by rpki-client