Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63318F82C42111EFA90A4255762E951A.roa
File: 63318F82C42111EFA90A4255762E951A.roa (raw, json)
Hash identifier: W5KWmp7UzJg7uQtX54mHvHVIpCjz0wprQAC5x7/q3Kw=
Subject key identifier: F2:6C:1C:9F:E0:F1:01:76:A6:89:67:C4:DA:1C:A2:3F:8E:60:9D:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0129C3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63318F82C42111EFA90A4255762E951A.roa
Signing time: Fri 27 Dec 2024 07:08:35 +0000
ROA not before: Fri 27 Dec 2024 07:08:31 +0000
ROA not after: Sun 12 Dec 2027 07:08:31 +0000
asID: 17561
IP address blocks: 154.201.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 12:38:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76227 (0x129c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 07:08:31 2024 GMT
Not After : Dec 12 07:08:31 2027 GMT
Subject: CN=676e5273-cb88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:64:f3:81:43:f9:1c:e5:40:5f:04:59:4d:20:
01:64:d4:79:ca:21:39:1f:f4:cf:c1:74:e5:ef:b4:
74:b6:7d:d4:7e:6c:2b:8a:f0:81:d7:bd:dd:9c:4d:
5b:0c:e7:41:27:49:98:07:b2:f9:db:41:45:75:0b:
7b:0d:7a:24:ab:69:68:05:92:40:49:1c:71:0d:e1:
9c:2d:48:a2:78:30:e7:9b:70:f4:75:bb:44:61:4b:
aa:68:89:6c:ae:c6:1c:5a:fc:a2:45:cb:b2:29:2b:
df:4c:40:5a:f5:57:2f:ff:4f:78:5b:7e:ac:59:13:
02:e5:90:28:ac:d9:0d:f3:4e:84:fd:74:9e:20:48:
ca:e0:8e:17:af:84:d5:3b:9c:4e:db:e5:d1:fd:e5:
93:48:1d:70:3c:8c:67:33:bf:80:56:a9:88:9a:6f:
a3:8b:eb:67:0d:4e:96:66:9f:81:0b:ea:28:0f:67:
01:94:01:ad:d8:61:34:9c:51:ee:90:88:9f:49:58:
5d:4c:67:3c:2b:5f:d7:77:bd:df:08:7a:b9:55:23:
0d:fa:10:45:1b:52:24:15:3a:a4:3a:5d:b5:ba:c2:
f5:49:60:71:ee:87:14:81:3e:6a:5f:3b:46:9b:c8:
8a:61:35:00:06:bc:bc:eb:79:36:66:55:c6:f2:1a:
d9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:6C:1C:9F:E0:F1:01:76:A6:89:67:C4:DA:1C:A2:3F:8E:60:9D:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63318F82C42111EFA90A4255762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.56.0/24
Signature Algorithm: sha256WithRSAEncryption
54:2c:e6:de:f1:e5:6b:01:58:de:c8:60:d6:d2:1b:0e:3b:82:
e7:6d:36:51:6b:ba:10:ce:c6:88:f6:fc:98:57:c1:99:78:86:
29:e2:e0:a3:80:8a:cb:b8:38:ab:9a:3d:bf:cb:6c:2c:e2:dd:
2f:68:e5:0b:60:15:c7:ca:85:7b:03:77:03:82:8b:12:6e:30:
b5:ea:18:e5:77:b9:76:40:cf:c5:af:f0:6a:ee:9c:07:a3:14:
24:66:33:9f:4a:4b:71:82:bd:70:95:e1:af:70:fe:4a:8b:b0:
d1:be:21:23:97:a1:70:26:e0:11:c9:ef:76:ed:a5:06:72:4e:
ec:cb:df:05:b2:2b:3a:dc:1f:85:c5:52:6e:1c:65:59:3c:8e:
e2:31:f9:41:8b:60:f7:98:a3:d8:5c:cb:8e:f4:fd:4d:2e:3b:
ef:50:f3:18:31:2b:51:b6:82:f3:4b:1f:a3:c7:44:5c:54:99:
2d:63:dd:0b:fd:11:a0:e3:08:55:e8:78:0a:e1:46:b9:ca:3d:
cc:fc:ff:e9:5a:9a:9b:89:43:d2:5e:75:83:23:3d:98:dd:4d:
61:c4:e0:b8:cf:0c:01:3c:f5:40:01:a8:67:58:ca:1e:a1:32:
a7:62:fe:f4:0f:96:57:41:94:e7:f6:4d:ef:ae:a5:1f:6b:07:
3f:4b:3d:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:50:07 2025 by rpki-client