Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61682002C25B11EF94E4E677762E951A.roa
File: 61682002C25B11EF94E4E677762E951A.roa (raw, json)
Hash identifier: CmZ1i6YRynqpIrrzMAbgLP9YSNX0r6MNJjKUe/UCVrA=
Subject key identifier: D0:76:B6:68:BE:EF:4C:20:61:60:84:40:A8:DE:09:C3:64:E8:0E:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012370
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61682002C25B11EF94E4E677762E951A.roa
Signing time: Wed 25 Dec 2024 00:58:40 +0000
ROA not before: Wed 25 Dec 2024 00:00:37 +0000
ROA not after: Wed 10 Dec 2025 00:00:37 +0000
asID: 984
IP address blocks: 154.199.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74608 (0x12370)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 00:00:37 2024 GMT
Not After : Dec 10 00:00:37 2025 GMT
Subject: CN=676b58c0-d5d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:03:08:b2:8d:0d:a6:72:ba:05:9f:34:51:ae:
f2:29:e9:a5:fa:8f:3b:13:dc:f4:c1:51:61:37:d4:
b8:7a:b9:0a:8f:db:cc:ef:01:f9:74:0b:37:9f:45:
90:f1:c5:6d:39:ba:71:d2:72:ff:81:f1:a7:dc:2b:
fb:6a:23:dd:f1:23:03:ac:1a:b7:18:56:d0:55:25:
62:4a:88:f7:34:0f:22:4d:1c:08:74:18:c4:67:92:
bf:e9:18:7e:05:aa:18:21:e1:c9:84:8e:ab:7e:f7:
c2:7f:0b:5d:a1:e3:1d:23:bf:70:41:40:cd:db:c1:
9a:ed:68:04:1b:21:c6:31:41:e2:61:3f:2b:49:be:
9f:64:60:c4:e1:10:fe:9f:32:f8:63:46:bb:88:95:
1f:de:b5:7e:a4:8e:0f:5c:47:a0:f9:f4:7e:ea:6b:
3b:0c:bc:0a:83:ed:09:ed:7c:0c:46:66:1b:45:13:
04:3c:25:87:fa:e5:94:51:b1:70:9f:13:34:71:31:
ba:17:13:32:79:fa:12:65:4f:9e:99:e0:fc:7b:6b:
77:ad:62:78:78:e9:20:85:47:8b:09:bc:9c:d2:d7:
bb:ec:f0:d3:9a:a4:82:0e:62:68:a2:73:3e:22:dc:
69:95:a4:ce:11:94:f3:a2:a3:90:54:69:5b:94:d0:
ad:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:76:B6:68:BE:EF:4C:20:61:60:84:40:A8:DE:09:C3:64:E8:0E:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61682002C25B11EF94E4E677762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.69.0/24
Signature Algorithm: sha256WithRSAEncryption
13:16:f3:e9:3a:58:46:e6:05:88:ee:25:b4:4f:c7:d5:de:7f:
6e:34:0d:16:0f:00:22:c9:90:01:39:68:ac:f8:6d:92:08:d7:
a1:44:79:80:cd:9b:86:ac:aa:62:61:13:05:37:b2:f1:cb:c9:
87:ab:87:0b:13:7b:4d:c5:77:7b:a4:50:4a:01:94:09:cf:92:
a7:b1:2d:5e:b4:7a:4e:93:5a:76:87:a1:bb:b0:04:76:d6:d3:
1d:d9:ce:5e:c7:e5:9e:c2:a3:af:bd:ba:9d:30:37:25:02:d4:
52:87:66:76:5d:cb:2d:f7:17:4c:15:a7:7b:32:27:8b:64:a4:
fe:ea:ed:51:25:b2:5b:8f:84:de:5b:7a:55:b6:b1:e3:24:e2:
0c:fa:b6:a1:ee:5f:86:cd:29:1d:a9:1e:7a:99:ff:03:21:70:
36:89:4a:fb:a4:0e:eb:5f:1a:de:b9:50:f1:7f:2d:09:bb:96:
26:ef:fa:d8:63:ad:10:65:b5:2e:dc:84:af:d3:d5:5d:a8:43:
6e:c1:6d:f1:2a:f6:b1:95:5e:d4:c8:b3:2b:49:f8:5c:c8:73:
1e:c7:9f:0c:3d:bc:be:17:22:ce:7a:d4:16:45:0c:42:d2:87:
9c:3e:bf:bd:9e:37:f2:00:02:0a:25:ff:63:ae:3b:66:bd:ef:
3d:1e:7e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:05 2025 by rpki-client