Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/601A77EAE2D111EF8F7771B3762E951A.roa
File: 601A77EAE2D111EF8F7771B3762E951A.roa (raw, json)
Hash identifier: i0WJyScC14/a0QeFv6ZGDTjpT0N+xsx5duHpljJ5J3g=
Subject key identifier: 35:7E:84:1E:01:35:2A:4F:02:EC:F2:5C:EB:00:0E:AE:68:0D:AD:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0150A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/601A77EAE2D111EF8F7771B3762E951A.roa
Signing time: Tue 04 Feb 2025 08:23:56 +0000
ROA not before: Tue 04 Feb 2025 08:23:52 +0000
ROA not after: Wed 30 Apr 2025 08:23:52 +0000
asID: 18229
IP address blocks: 154.210.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86178 (0x150a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 4 08:23:52 2025 GMT
Not After : Apr 30 08:23:52 2025 GMT
Subject: CN=67a1ce9c-4913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:09:88:f6:3d:e9:16:55:3a:c7:2b:1e:13:e2:
14:70:47:b2:e7:1d:92:15:70:5a:04:02:35:86:be:
8a:b9:b3:8e:31:36:86:4b:35:72:99:b2:60:5f:c1:
bc:ed:d4:6c:f5:da:e9:02:ad:e6:ef:29:c2:98:e7:
a3:4f:a4:b3:a6:10:2c:0a:94:5c:3f:31:89:c4:c6:
ce:de:24:81:50:99:fd:da:2c:1e:c7:a8:39:55:ed:
35:44:75:94:e0:d1:ab:44:b2:25:eb:89:08:9b:70:
45:f4:52:03:fa:4e:ad:61:f5:80:c7:69:b8:38:43:
8a:ad:79:0e:6d:bb:14:9b:dc:5e:65:d6:5c:6b:58:
0b:88:67:0e:1f:2c:4a:a6:48:2e:34:6c:09:b6:ab:
f9:11:ee:e5:c8:32:6b:76:f8:c8:27:46:fe:01:50:
fa:7e:7a:ed:22:a3:8e:a9:a0:57:bd:7a:4f:8b:c3:
92:36:54:35:ad:fc:8e:7e:7b:42:8a:f6:74:dc:77:
64:df:74:7d:0c:27:72:94:a1:86:de:93:e3:f4:e9:
7a:f2:df:f7:ee:68:25:f8:19:10:11:a4:dc:b8:98:
d9:e2:46:b6:b6:69:13:1c:f1:56:c5:51:e1:cc:77:
ea:fd:13:e9:d7:66:72:8b:a4:53:6b:77:d5:72:dc:
74:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:7E:84:1E:01:35:2A:4F:02:EC:F2:5C:EB:00:0E:AE:68:0D:AD:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/601A77EAE2D111EF8F7771B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.202.0/24
Signature Algorithm: sha256WithRSAEncryption
57:47:06:94:61:2a:b9:ec:93:13:32:c1:8f:03:f2:f9:a6:de:
7d:25:33:e3:75:f0:18:c5:ca:54:85:13:bb:19:23:04:0f:8e:
8b:f1:d1:a6:7b:0a:85:99:21:3d:75:79:1c:02:2f:6b:83:54:
27:c4:2a:ff:4f:2b:73:a2:89:6f:92:e7:d5:a9:29:c8:91:d3:
e2:77:fe:99:67:10:45:2a:f5:08:6d:5a:01:2b:29:7c:27:63:
f9:ab:69:dc:48:f5:69:87:69:2e:54:ce:8f:9d:3f:42:c6:d0:
59:c3:19:29:5f:d1:e2:75:95:0d:e0:9e:fc:62:70:d3:20:58:
78:94:a8:04:eb:f8:31:18:16:a0:29:ad:95:f6:44:94:7f:26:
0b:55:c5:77:7a:bf:7a:eb:4b:f3:98:3a:3e:f0:09:f4:97:0e:
a4:65:85:a6:d2:0d:46:1d:39:45:33:02:e7:79:67:95:8f:44:
83:0d:44:fb:a2:fe:63:fe:5c:7d:b3:c5:4c:c5:92:6c:85:85:
6d:d9:6b:c7:81:38:6c:c4:08:06:84:c3:67:16:c5:af:19:89:
9f:77:35:17:5b:0b:e9:d9:16:5e:50:8d:57:bb:35:1f:40:d5:
26:40:23:03:73:86:74:36:f7:e1:75:66:f5:0f:35:21:aa:c1:
dd:17:c7:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:43:30 2025 by rpki-client