Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AA8B458C90711EFA245FA6C762E951A.roa
File: 6AA8B458C90711EFA245FA6C762E951A.roa (raw, json)
Hash identifier: D66UP7FPYH/4tjF5CaBgy7w74hqbecZTNNJD4UpXbYo=
Subject key identifier: 90:DC:46:31:98:BA:E3:48:24:62:3C:54:FB:64:9A:7A:A3:DC:1B:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013275
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AA8B458C90711EFA245FA6C762E951A.roa
Signing time: Thu 02 Jan 2025 12:45:16 +0000
ROA not before: Thu 02 Jan 2025 12:45:12 +0000
ROA not after: Mon 13 Dec 2027 12:45:12 +0000
asID: 17561
IP address blocks: 154.221.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78453 (0x13275)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 12:45:12 2025 GMT
Not After : Dec 13 12:45:12 2027 GMT
Subject: CN=67768a5c-f5b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f4:48:c1:99:6c:3c:74:cc:8a:b6:38:e5:9b:
0f:c4:58:25:a8:c9:8a:97:2e:c2:ed:3f:7a:ce:a0:
eb:2b:63:8a:cf:44:84:0f:26:60:00:ea:80:93:ee:
d5:ab:09:1b:48:4e:b1:79:82:ab:60:6a:93:a4:36:
3b:94:dc:14:69:e3:28:39:fd:a8:81:ff:d0:5f:73:
18:2a:0a:ab:69:a5:c8:0e:c2:92:e4:a2:91:8c:90:
e6:bf:06:36:e2:b4:56:91:e9:62:85:8a:bf:fc:dd:
36:d2:e7:8f:3b:7c:bd:e0:61:3a:b7:ac:be:b8:f3:
a2:73:62:22:25:8e:ba:50:83:af:73:82:64:07:94:
84:26:01:7c:61:df:af:07:3f:ee:f2:17:b9:5f:4b:
67:30:37:56:62:e5:40:9d:c7:a4:e1:a2:c7:1b:a7:
7f:bd:98:7c:23:48:07:77:39:bf:14:85:28:ef:34:
70:2a:68:bd:33:83:7e:be:07:61:b3:a4:98:a1:e5:
3f:f2:f6:10:5d:2d:ab:61:f3:76:04:ce:ed:7d:24:
ec:00:a4:0c:58:ed:07:86:72:cb:ed:e6:ad:bf:5c:
fd:11:33:87:af:be:ca:46:d6:5d:8c:5a:95:3b:63:
fd:d9:55:cc:75:9b:98:8a:7f:57:f5:a0:65:79:4d:
96:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:DC:46:31:98:BA:E3:48:24:62:3C:54:FB:64:9A:7A:A3:DC:1B:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AA8B458C90711EFA245FA6C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.199.0/24
Signature Algorithm: sha256WithRSAEncryption
14:ef:37:06:99:30:d9:d1:b5:1b:11:7b:ba:40:98:7a:82:9e:
84:0f:24:b7:34:3e:13:7f:f7:2b:54:13:a5:a6:c6:6e:8f:98:
f9:9e:ed:ff:a0:c6:6b:67:e8:72:0b:8a:2a:26:8a:5e:57:c5:
c8:cf:e5:22:7b:ff:f1:f1:de:19:8f:4b:4c:7d:5f:2f:d7:d3:
76:5d:69:d0:94:63:f5:d0:44:6f:f2:ef:90:a2:a0:38:65:4a:
2e:62:42:a9:e3:97:27:fa:c9:f7:91:37:9f:6e:1e:a3:68:57:
f4:ce:f0:05:4f:9a:f0:34:1d:3b:80:ed:f9:c2:49:11:58:fc:
95:a9:89:10:3b:e4:2c:c7:cc:25:67:b6:4e:db:33:cf:a1:bb:
16:79:96:e7:44:ab:ac:40:ce:06:72:2a:5f:af:23:42:09:65:
db:44:4e:d4:e1:93:f4:b5:66:3d:a7:23:93:69:6c:d2:19:75:
74:2d:f6:ea:32:72:53:87:77:d0:53:a2:81:c8:fc:88:ba:04:
f8:37:5d:78:fb:9f:b2:e1:8c:e9:83:0c:1f:1c:25:6b:0e:e3:
04:69:2b:26:3b:95:4e:28:20:54:f0:49:09:f5:64:db:1f:a4:
28:f1:ec:55:a9:e3:0d:91:68:2d:97:ff:7c:a5:db:27:6b:2f:
28:b4:6d:87
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATJ1MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTAyMTI0NTEyWhcNMjcxMjEzMTI0NTEyWjAYMRYw
FAYDVQQDEw02Nzc2OGE1Yy1mNWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuvRIwZlsPHTMirY45ZsPxFglqMmKly7C7T96zqDrK2OKz0SEDyZgAOqA
k+7VqwkbSE6xeYKrYGqTpDY7lNwUaeMoOf2ogf/QX3MYKgqraaXIDsKS5KKRjJDm
vwY24rRWkelihYq//N020uePO3y94GE6t6y+uPOic2IiJY66UIOvc4JkB5SEJgF8
Yd+vBz/u8he5X0tnMDdWYuVAncek4aLHG6d/vZh8I0gHdzm/FIUo7zRwKmi9M4N+
vgdhs6SYoeU/8vYQXS2rYfN2BM7tfSTsAKQMWO0HhnLL7eatv1z9ETOHr77KRtZd
jFqVO2P92VXMdZuYin9X9aBleU2WswIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJDc
RjGYuuNIJGI8VPtkmnqj3BuHMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82QUE4QjQ1OEM5MDcxMUVGQTI0NUZBNkM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt3HMA0GCSqGSIb3DQEB
CwUAA4IBAQAU7zcGmTDZ0bUbEXu6QJh6gp6EDyS3ND4Tf/crVBOlpsZuj5j5nu3/
oMZrZ+hyC4oqJopeV8XIz+Uie//x8d4Zj0tMfV8v19N2XWnQlGP10ERv8u+QoqA4
ZUouYkKp45cn+sn3kTefbh6jaFf0zvAFT5rwNB07gO35wkkRWPyVqYkQO+Qsx8wl
Z7ZO2zPPobsWeZbnRKusQM4GcipfryNCCWXbRE7U4ZP0tWY9pyOTaWzSGXV0Lfbq
MnJTh3fQU6KByPyIugT4N114+5+y4YzpgwwfHCVrDuMEaSsmO5VOKCBU8EkJ9WTb
H6Qo8exVqeMNkWgtl/98pdsnay8otG2H
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:06:37 2025 by rpki-client