Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B96B008C53A11EFAF9AB742762E951A.roa
File: 5B96B008C53A11EFAF9AB742762E951A.roa (raw, json)
Hash identifier: ygV57iYhNjEWmtawddrSFeSOfFaLlgW0pGHC4Bz/apE=
Subject key identifier: A8:89:AF:A9:77:03:56:6A:25:F8:E0:EC:F1:47:47:96:DB:75:8D:9A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012C3F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B96B008C53A11EFAF9AB742762E951A.roa
Signing time: Sat 28 Dec 2024 16:39:51 +0000
ROA not before: Sat 28 Dec 2024 16:39:47 +0000
ROA not after: Sun 12 Dec 2027 16:39:47 +0000
asID: 17561
IP address blocks: 154.205.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76863 (0x12c3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 16:39:47 2024 GMT
Not After : Dec 12 16:39:47 2027 GMT
Subject: CN=677029d7-0261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b1:bc:a8:b6:0e:af:c5:56:38:7e:d8:5d:dd:
88:fc:7e:3e:1d:01:99:d2:f8:aa:97:6d:e6:d2:fb:
5b:aa:7d:da:7d:30:39:a4:29:8d:6f:b6:4a:dd:ec:
41:fe:92:16:55:1d:dd:29:05:c5:f0:85:24:80:8d:
75:77:34:48:28:c0:b0:a8:7d:35:d6:22:e8:37:d2:
9d:15:e1:b6:84:d1:22:73:23:fe:01:d6:36:d9:33:
25:6c:ef:72:9c:fc:bf:ec:63:84:ab:3c:72:a8:c9:
fe:23:1a:88:78:48:11:32:14:f0:7a:de:7a:40:19:
b4:b5:22:36:97:55:44:55:87:c3:95:30:6d:42:61:
17:1f:4c:9b:8a:b4:4d:45:e6:26:69:f0:cd:44:94:
4d:04:8c:64:42:94:c7:c5:65:a6:b5:55:ab:5c:59:
15:b1:aa:00:5c:e7:97:cd:46:64:47:81:50:68:57:
22:18:5c:37:d4:28:78:2d:c6:0c:0a:29:1b:34:08:
06:54:52:b8:6b:b1:cc:ce:07:c8:70:09:d0:d8:bb:
4c:77:84:97:6e:e1:1e:6c:35:51:ba:34:24:98:f6:
12:1f:57:60:98:34:df:08:ce:62:85:a5:b1:13:4d:
6b:45:0c:89:9c:d3:6d:e1:77:40:1f:03:23:e3:66:
52:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:89:AF:A9:77:03:56:6A:25:F8:E0:EC:F1:47:47:96:DB:75:8D:9A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B96B008C53A11EFAF9AB742762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.40.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:c0:90:0f:ac:d1:e2:86:5e:82:d3:bd:d6:ed:ba:ec:ef:81:
15:98:a1:19:b6:36:66:3f:00:af:fe:a4:37:a6:cb:99:2e:a1:
fb:7b:a8:12:9e:e9:0f:d9:0b:53:53:8f:eb:ae:99:df:91:27:
eb:ff:d5:25:16:12:e6:2b:3b:78:80:c0:37:8b:45:25:dc:7e:
91:32:b5:6c:97:cb:80:69:cb:f6:24:7e:32:74:0e:91:3b:5e:
8d:78:fd:22:57:a8:81:75:9b:3e:03:d8:a6:1d:76:da:62:47:
5b:fe:9b:1f:84:0d:e9:e3:b3:e2:3b:12:98:dc:71:77:1c:bc:
ad:44:fc:25:17:cc:7b:d9:7c:07:ac:20:92:41:86:6f:6b:d8:
dc:74:e1:e3:9b:43:d8:7d:9a:6e:21:34:5d:04:c4:d9:e7:53:
b7:3e:ef:a7:1e:22:62:ae:75:c9:40:c8:2a:dd:15:d5:15:34:
d2:ed:8b:3d:42:49:99:90:14:15:c5:d4:9b:9c:47:a7:6b:92:
b3:21:a7:f9:89:d7:05:91:ec:c1:14:a0:ff:04:7a:02:9a:ff:
e3:1b:23:9d:9a:e6:89:85:da:d9:f6:4d:b7:6f:24:67:92:ad:
b0:cd:0c:df:ff:6f:5e:f7:81:b2:77:46:7b:e2:4f:49:f5:1d:
ca:00:70:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:06:40 2025 by rpki-client