Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E15828CC3D711EF916CD26C762E951A.roa
File: 5E15828CC3D711EF916CD26C762E951A.roa (raw, json)
Hash identifier: O4yl0q56b63lTR2brDEJZu5BwPchK1G2qSSb+1BG7W8=
Subject key identifier: 86:DF:55:FE:BA:23:D7:15:B4:DB:C9:BE:92:E0:40:A1:E2:48:CD:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012880
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E15828CC3D711EF916CD26C762E951A.roa
Signing time: Thu 26 Dec 2024 22:18:44 +0000
ROA not before: Thu 26 Dec 2024 22:18:40 +0000
ROA not after: Fri 12 Dec 2025 22:18:40 +0000
asID: 984
IP address blocks: 154.84.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75904 (0x12880)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 22:18:40 2024 GMT
Not After : Dec 12 22:18:40 2025 GMT
Subject: CN=676dd643-8f8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:38:a3:19:61:f5:4f:ff:09:59:03:4e:cc:da:
b9:71:4f:6f:69:3f:7d:df:3e:83:c7:0f:ad:b2:21:
7b:d1:9a:97:21:a7:8d:cb:a7:e3:d9:9c:85:77:fb:
38:1d:5b:c1:c5:af:dd:72:11:6b:d7:5a:64:8c:4f:
37:2d:c4:48:d4:c4:a6:fc:99:39:58:7c:48:e4:d1:
95:21:fd:a5:d6:3f:39:ce:2d:f9:e9:83:70:53:74:
b7:47:8c:f3:be:35:8e:c9:7a:a2:eb:0c:7d:f1:1b:
cf:49:d0:ff:17:a4:f8:70:8e:2e:42:15:95:42:a8:
91:a5:82:25:e8:1a:2b:a6:04:3d:be:49:6c:46:6e:
be:03:ea:e9:66:2b:49:44:20:a8:4c:81:05:51:56:
f8:19:0b:ad:d6:b3:22:78:bf:9c:38:4f:97:e6:8b:
4d:81:35:59:20:db:bc:a1:6f:54:32:b9:1b:31:d7:
17:b1:5b:81:4b:1e:a4:b9:e3:92:0b:14:10:ff:19:
d2:7a:b6:13:1b:8c:ff:7e:26:57:45:6a:53:b2:f4:
3c:1f:d1:72:82:f6:94:9f:a4:96:82:eb:22:71:a7:
0a:70:67:d0:bc:6f:41:2e:fc:d6:88:17:d1:46:38:
38:37:2b:16:ed:1c:03:6f:ef:e3:cd:7a:7c:d6:c8:
dd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:DF:55:FE:BA:23:D7:15:B4:DB:C9:BE:92:E0:40:A1:E2:48:CD:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E15828CC3D711EF916CD26C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.175.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:83:63:b6:13:ee:2f:f5:b1:f2:2a:03:a2:86:a8:08:53:c0:
32:b9:68:85:6b:91:10:3a:d2:b0:0a:09:9e:56:39:1c:83:fe:
b4:d2:7b:ac:5c:0f:92:c8:16:28:f6:59:a5:09:de:7e:fb:e3:
46:d7:d8:8a:86:a3:16:70:c2:15:26:88:45:c1:b6:95:88:c3:
fa:82:86:94:7c:9e:5f:22:b5:bf:e0:1a:9d:72:d5:f4:93:7f:
8e:94:08:95:67:a9:fe:d7:96:34:5b:58:b7:a1:5a:1c:a5:4b:
cb:43:40:0a:64:ab:65:ef:e1:88:11:12:cc:07:e2:03:76:68:
8f:14:e9:3a:ff:e0:0b:3c:3a:ca:aa:65:31:a8:fd:7f:d7:6f:
2a:57:52:80:87:d5:a4:a7:73:4c:d5:fc:77:fb:70:b1:e5:ed:
56:15:a3:f4:99:88:43:08:ab:85:9b:08:c9:01:5c:ba:db:31:
bd:fb:4a:63:19:35:52:93:52:ec:e8:0b:5d:25:f7:c8:62:96:
13:43:03:4d:9f:cc:56:ae:f3:d2:a5:bc:8c:57:3f:a4:3c:cb:
81:70:0c:57:bb:54:bd:5b:b4:12:a8:56:c3:af:cd:e8:c7:79:
5a:78:02:a8:1d:58:4d:af:0c:b2:36:6e:b1:fe:2d:58:5b:3b:
b6:c8:a5:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:35:45 2025 by rpki-client