Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A330516CDC911EF9E05B9B3762E951A.roa
File: 6A330516CDC911EF9E05B9B3762E951A.roa (raw, json)
Hash identifier: 7g15L2TxzEY7w+Y54DgML1scO5SF0VyD0buML0G0lO4=
Subject key identifier: 8B:C6:9B:01:B5:89:81:57:56:97:00:9B:3C:6E:93:0D:96:1A:F4:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013751
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A330516CDC911EF9E05B9B3762E951A.roa
Signing time: Wed 08 Jan 2025 14:04:03 +0000
ROA not before: Wed 08 Jan 2025 14:03:59 +0000
ROA not after: Sat 25 Dec 2027 14:03:59 +0000
asID: 17561
IP address blocks: 154.197.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79697 (0x13751)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 14:03:59 2025 GMT
Not After : Dec 25 14:03:59 2027 GMT
Subject: CN=677e85d2-01c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e0:96:42:32:bf:0b:a7:aa:0d:ed:f1:b7:7f:
41:58:68:28:b0:2a:d8:8f:c8:fd:ad:a0:32:34:25:
e2:71:32:a3:35:c9:29:45:cd:d8:69:df:1b:87:fa:
ca:ce:c2:5a:f9:04:a8:01:06:96:ae:9f:87:f2:ad:
01:e1:3b:ac:2d:2a:57:7e:71:b0:6b:3c:d3:ae:2b:
8f:2b:33:00:a9:8a:2f:88:65:ad:d9:63:cc:53:f9:
0b:27:09:5b:98:a8:cd:e3:74:05:67:05:2b:45:ab:
da:38:26:72:3c:2b:91:2f:ae:f7:9e:e3:bc:ee:e2:
43:ac:78:93:26:1a:1f:bc:b1:99:87:ec:88:7d:b0:
04:6c:bd:64:86:85:84:e1:45:d5:25:9f:c6:87:9e:
19:c3:b9:6f:72:15:0e:d3:6d:39:15:2e:58:3d:bb:
44:c1:79:71:38:3f:dc:83:89:d5:6c:f0:b9:4b:2d:
58:44:3c:c2:94:db:17:cc:d5:a7:ed:96:26:16:36:
71:df:af:2d:60:87:45:4a:e4:13:71:b9:d7:c1:aa:
e4:f8:d3:a7:a7:65:4e:44:ae:3c:82:72:42:90:8a:
b8:b9:6f:71:50:e7:e7:b4:33:4a:5f:92:47:10:ac:
0c:a3:87:09:70:56:2b:9b:8f:51:41:bf:8d:97:02:
bf:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C6:9B:01:B5:89:81:57:56:97:00:9B:3C:6E:93:0D:96:1A:F4:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A330516CDC911EF9E05B9B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.101.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:d2:40:c8:1a:34:c2:a3:a9:0b:18:72:22:ee:82:6f:75:e9:
34:93:8c:ab:f5:8e:4a:f4:02:78:5b:74:31:80:aa:4b:ee:2f:
34:4f:a8:ce:ab:43:ec:0f:b3:c6:05:51:48:8f:32:02:a9:86:
6f:0b:b9:75:5a:00:99:4c:92:4e:84:64:5d:a0:71:d1:2e:bb:
55:59:c5:65:34:5e:9e:54:4e:64:d8:bc:33:1c:13:9e:78:48:
68:69:a8:90:5d:fb:af:6f:ce:3b:e8:1a:8c:e3:b6:2e:0b:1b:
bd:22:d2:53:09:6a:ea:f9:11:56:86:ba:5c:4f:49:b7:28:9c:
74:5d:e3:e3:5e:f3:57:53:f4:b7:de:d8:ab:d3:9b:57:89:28:
3b:5c:e7:95:e6:59:0c:64:af:e0:65:46:53:bf:cc:e9:dc:17:
e7:7c:4d:2f:50:6d:d9:3b:f1:d0:90:17:09:df:1b:3c:a0:f4:
6a:12:72:63:c4:a5:da:25:ae:b9:20:92:ba:85:d2:02:e3:5c:
42:4e:e1:c4:cc:e6:43:16:51:c3:a7:63:24:46:95:55:15:6d:
c4:eb:eb:9e:26:f8:1b:b5:d2:b6:20:e9:29:95:f1:18:b7:fd:
30:06:87:bb:c0:21:55:fb:1d:df:71:6e:7e:0f:ce:cd:d1:11:
af:e5:56:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:59:01 2025 by rpki-client