Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59B800460CAE11F0A388A242762E951A.roa
File: 59B800460CAE11F0A388A242762E951A.roa (raw, json)
Hash identifier: 8QfgD5TLRlHbXHpgP+zLIReTUQ0bJtxTT90X5rPG4cw=
Subject key identifier: 53:62:DC:E4:93:9A:5C:BA:D1:CC:CE:47:75:2A:4C:B8:F3:80:29:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0176A9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59B800460CAE11F0A388A242762E951A.roa
Signing time: Sat 29 Mar 2025 14:59:02 +0000
ROA not before: Sat 29 Mar 2025 14:58:58 +0000
ROA not after: Sat 03 May 2025 14:58:58 +0000
asID: 23470
IP address blocks: 154.202.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95913 (0x176a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 29 14:58:58 2025 GMT
Not After : May 3 14:58:58 2025 GMT
Subject: CN=67e80ab6-6a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cd:43:74:ec:c4:37:0d:81:34:73:5b:dd:21:
b2:a6:ea:26:95:13:69:9c:84:f6:53:84:bd:df:f4:
ce:53:04:bb:c7:3f:cf:e2:51:f5:54:41:0a:59:cd:
a5:38:d9:f9:61:d9:6d:6c:bf:64:f6:7c:df:f9:fb:
05:48:cc:0c:d5:dc:92:77:1f:f9:9f:38:19:a6:fa:
ca:27:4b:6f:7b:a2:8e:db:2c:ce:0e:b6:b9:d1:f4:
a3:89:e5:ee:2e:b1:fd:f7:09:65:d7:5e:40:71:7a:
cf:25:29:0b:40:0e:d9:e1:06:1d:7a:51:a6:e4:12:
e5:86:15:f5:07:c8:11:ac:75:20:e4:ac:72:06:39:
5f:62:6d:c4:68:47:7d:26:d8:42:41:51:40:6c:15:
30:b0:ba:da:15:73:6e:d0:1f:5b:6a:bf:6d:a4:41:
ef:a7:a4:3e:62:b9:e0:ab:60:e9:d8:cf:77:06:70:
6a:f0:29:b2:38:47:7d:ba:34:f4:0e:4f:81:74:62:
1f:f3:04:ed:83:b4:ed:28:a5:f0:93:9a:6b:69:2e:
99:6c:d2:40:13:46:9f:8d:b5:d6:1c:cd:6b:6e:6d:
78:af:20:67:ae:48:01:4b:5e:1d:52:d6:6a:21:18:
97:c3:2d:66:81:bd:46:38:d7:03:33:cd:18:18:33:
b2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:62:DC:E4:93:9A:5C:BA:D1:CC:CE:47:75:2A:4C:B8:F3:80:29:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59B800460CAE11F0A388A242762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.0.0/24
Signature Algorithm: sha256WithRSAEncryption
31:c9:fd:15:fa:db:86:98:9c:79:04:01:52:e7:30:c6:f2:bb:
dc:d9:5a:d7:ff:53:50:24:d0:4f:9f:31:45:04:57:0a:a1:5e:
ca:d1:12:be:bd:fa:57:34:ad:90:ee:df:17:60:37:8b:51:c4:
5e:6e:07:2c:0d:5c:f1:1a:f3:b0:65:bf:02:ad:88:e4:06:17:
4e:48:d2:7b:39:27:62:2a:84:9f:ec:98:f7:13:0f:16:f3:29:
f4:6e:40:38:f1:d8:f9:b0:61:76:dc:95:7b:3f:78:02:81:0d:
63:07:f0:73:75:be:aa:c3:f9:c1:94:fc:af:e3:2f:e9:ce:31:
04:26:ad:dd:27:96:77:05:7f:3e:15:42:c3:4f:ed:84:37:24:
f0:76:66:23:a5:3e:8d:c2:4e:77:a7:10:81:00:be:5f:3b:86:
a2:83:12:de:db:5c:07:eb:a9:9b:13:22:fb:a2:16:80:dc:e0:
05:d0:6a:59:57:8d:48:ed:44:ac:c0:c1:e6:ca:92:f5:e5:ea:
ad:65:44:43:ff:63:f1:b9:b4:0d:8a:05:bf:31:fe:ca:6b:6a:
ae:77:d2:dd:7c:e4:c9:87:3f:cd:2c:7d:0b:10:e8:3f:6e:0f:
94:fa:5a:dc:2a:dd:11:c0:84:28:87:a3:17:f3:d9:da:10:21:
4a:8b:b1:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:17:03 2025 by rpki-client