Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BB38C7AC92411EF8EE67FA2762E951A.roa
File: 6BB38C7AC92411EF8EE67FA2762E951A.roa (raw, json)
Hash identifier: jR5BIfLyqt6crvV6RtSPhU8duxm06ra4DGI3hI/+uus=
Subject key identifier: 9D:D9:09:AA:AA:E0:44:9B:53:03:6B:BD:7D:B8:6E:8E:AB:0F:1D:B8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013347
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BB38C7AC92411EF8EE67FA2762E951A.roa
Signing time: Thu 02 Jan 2025 16:12:53 +0000
ROA not before: Thu 02 Jan 2025 16:12:50 +0000
ROA not after: Mon 13 Dec 2027 16:12:50 +0000
asID: 17561
IP address blocks: 154.222.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78663 (0x13347)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 16:12:50 2025 GMT
Not After : Dec 13 16:12:50 2027 GMT
Subject: CN=6776bb05-e074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:27:85:94:31:a8:21:4b:dd:15:95:df:80:ad:
3b:b6:2b:1e:7e:35:fe:5f:9c:44:ea:9c:1f:ef:75:
38:42:dc:86:57:60:f3:94:0c:31:90:fa:17:cc:ab:
77:39:d8:e2:8a:da:ce:94:ae:35:78:9c:98:32:55:
16:f8:33:f6:ac:f2:1f:79:91:b7:0f:51:d6:5a:d5:
fe:98:28:01:90:fb:28:60:4b:f4:ee:df:f9:a7:44:
f6:f3:3e:53:d3:55:a7:54:ac:77:df:b7:49:bc:8d:
66:f3:48:5a:f9:b6:02:0f:69:84:88:5a:02:6e:f4:
74:ea:f1:07:84:dd:30:77:47:3f:36:ca:bb:31:a5:
0c:c9:da:94:e5:ca:6b:4e:3a:10:67:5c:6d:4c:a8:
76:7b:c7:ca:8f:19:b9:aa:b5:5e:49:6b:f3:63:32:
77:4d:59:ed:48:9e:b6:55:1e:43:c6:1b:06:35:3e:
24:4c:8d:36:d7:46:22:d3:fd:52:cd:72:2c:41:1e:
7e:23:4d:ff:54:8c:85:87:31:e3:13:b1:ba:87:89:
d6:5f:f9:64:41:81:58:77:20:97:2b:6f:4b:eb:86:
3d:3a:d8:22:7f:d6:d2:b6:10:60:7c:17:34:9f:2c:
80:53:63:31:97:2b:65:43:0e:af:f2:fa:1d:0d:65:
32:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D9:09:AA:AA:E0:44:9B:53:03:6B:BD:7D:B8:6E:8E:AB:0F:1D:B8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6BB38C7AC92411EF8EE67FA2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.106.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:f6:8c:ff:3a:d1:4b:bb:dd:d0:ac:88:82:ed:c6:6d:12:94:
93:7b:b1:9b:65:76:c3:b4:a9:f5:c9:2d:f6:5b:74:43:36:9e:
10:8b:05:b9:b4:8c:65:83:34:ed:5a:3a:f9:61:2e:93:52:a0:
3c:5a:5c:01:5c:ee:ac:df:1f:3b:1b:ea:b7:30:6f:11:1c:fc:
9f:f7:f5:d0:2c:bf:47:48:9b:6e:65:e8:05:c8:90:cf:3b:3b:
1b:2b:23:d5:cf:13:aa:5e:1b:68:23:4a:8d:00:a4:a7:a1:7e:
b4:2d:6b:a1:51:6a:30:b3:48:41:99:ea:08:c8:e6:67:50:25:
e8:7c:5e:5c:c2:9c:61:73:b8:6a:24:8b:4f:91:be:21:8a:27:
f0:73:9e:47:58:fb:bd:f9:00:e9:8c:4b:fd:29:2b:b5:52:45:
58:f7:9f:5e:d5:e2:73:c2:fa:48:1f:d2:d1:ff:4e:9c:2c:f3:
ba:77:8e:c2:a6:8b:d1:7b:47:e6:db:c8:d2:e7:8f:33:da:5f:
08:b3:fc:ba:e4:dc:35:08:36:22:70:c6:c4:c0:8b:2c:02:1e:
0c:d6:91:de:b7:d1:ed:64:8e:cd:59:84:3b:d3:38:22:c3:fd:
79:62:3c:84:a9:a1:b7:6f:af:f2:91:d2:61:2b:ff:4e:f2:7d:
1d:a1:8c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:44 2025 by rpki-client