Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AB51A00C91011EF935C63A3762E951A.roa
File: 6AB51A00C91011EF935C63A3762E951A.roa (raw, json)
Hash identifier: 7h9sSEjAlTVz05avn5skkE5lmRf2ykPx523M6c4tZdM=
Subject key identifier: F3:86:9B:12:0D:A6:43:D1:87:7A:42:7C:32:22:CD:03:B4:09:E0:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0132A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AB51A00C91011EF935C63A3762E951A.roa
Signing time: Thu 02 Jan 2025 13:49:42 +0000
ROA not before: Thu 02 Jan 2025 13:49:38 +0000
ROA not after: Sat 13 Dec 2025 13:49:38 +0000
asID: 984
IP address blocks: 154.221.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78499 (0x132a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 13:49:38 2025 GMT
Not After : Dec 13 13:49:38 2025 GMT
Subject: CN=67769976-adeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:47:fa:22:fd:7d:67:16:da:84:0b:ab:86:22:
ff:7c:9a:2d:65:91:78:51:9e:1c:c0:a2:69:1b:99:
07:fe:ec:af:04:18:03:51:cd:fa:77:40:4c:b1:df:
ca:b1:8e:ab:3f:71:36:1f:e4:15:03:1a:ff:38:07:
15:1e:85:9d:1c:dd:5b:b2:36:79:4a:ff:b0:a3:89:
5c:76:cd:04:93:c5:1b:b4:17:ad:b8:c8:ee:ed:ef:
c1:00:0f:92:6a:7b:61:99:9a:20:91:97:91:94:2b:
cf:40:72:25:21:8b:14:1f:2d:e8:b1:0b:8f:55:b6:
ea:b1:fc:3d:01:5b:c5:82:98:4f:0b:2c:fe:d3:d3:
eb:8b:d2:6c:8b:62:3b:47:f4:0e:4d:54:e6:67:f7:
8a:a5:02:11:a9:f5:41:fc:22:95:76:22:5d:93:80:
27:17:ca:c9:ff:12:21:c1:c3:d7:1e:16:bc:9c:b2:
3b:f0:37:53:29:b1:e7:3e:39:02:f4:a6:c4:24:42:
e7:52:26:1d:0b:21:06:f5:63:9f:2c:9c:cf:f8:de:
36:6a:7a:3b:cf:2c:8e:29:ec:5d:b5:56:3c:96:66:
5d:bf:a4:a2:c2:e2:5f:66:d2:f6:47:e0:cd:a5:80:
a4:8d:c0:2f:15:57:c0:2e:a2:1a:76:c9:d0:d3:98:
4b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:86:9B:12:0D:A6:43:D1:87:7A:42:7C:32:22:CD:03:B4:09:E0:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6AB51A00C91011EF935C63A3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.222.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:2f:90:ed:43:5d:25:20:a9:f3:ca:b6:b4:93:53:e8:7a:2b:
c6:26:d0:03:00:55:c1:2e:72:b5:41:af:fc:9e:5f:dd:e5:da:
4f:d0:75:8a:ac:81:88:56:82:d8:0b:00:c3:67:f5:62:44:a4:
f5:32:74:93:9f:54:da:dd:5d:d1:52:78:25:1c:d7:9f:b7:a7:
fe:c0:64:c9:46:bc:d2:5a:a7:5f:c1:e6:73:ed:ee:49:64:68:
6f:59:e5:33:02:45:c5:61:2b:06:c9:d6:8f:94:37:65:97:d5:
b8:44:90:9a:35:4e:43:be:82:84:3d:72:fe:1c:88:e3:5c:98:
94:9d:d7:18:dd:05:80:58:a6:a7:82:d4:e1:00:a0:08:07:69:
dc:7d:4c:f0:92:f6:cf:83:a4:cd:22:38:d8:7e:99:e2:6f:0f:
56:58:77:e9:5e:08:05:d5:07:32:30:aa:2a:a8:32:1a:f3:60:
33:67:57:4c:90:3b:7f:dc:eb:71:f5:9e:53:23:97:33:04:9a:
d5:b9:bb:fa:12:12:88:c4:ef:50:cc:56:cf:ef:7f:a1:2e:fc:
1c:d0:9f:17:3a:6f:60:78:a2:f5:ba:9a:0c:6e:b5:b0:fe:f2:
b0:44:de:61:c0:76:1d:94:42:29:ca:78:93:cc:08:26:5d:4c:
cb:cf:04:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:14:37 2025 by rpki-client