Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CE15CDA092F11F0ACC1CC5D762E951A.roa
File: 6CE15CDA092F11F0ACC1CC5D762E951A.roa (raw, json)
Hash identifier: 5K+Ux690z41kDzGcM8XXhI5rfz5RBc2i56pBJTPVXV4=
Subject key identifier: FD:87:A4:2F:DC:10:4B:55:72:1F:34:99:0F:8D:A6:FA:0F:A3:68:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0175E3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CE15CDA092F11F0ACC1CC5D762E951A.roa
Signing time: Tue 25 Mar 2025 04:12:54 +0000
ROA not before: Tue 25 Mar 2025 04:12:50 +0000
ROA not after: Mon 14 Apr 2025 04:12:50 +0000
asID: 139880
IP address blocks: 154.215.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95715 (0x175e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 25 04:12:50 2025 GMT
Not After : Apr 14 04:12:50 2025 GMT
Subject: CN=67e22d46-bce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3b:f7:31:d3:1c:a4:34:fc:53:19:26:70:34:
0d:f6:21:38:73:55:31:bb:bd:2a:96:08:a9:1f:6b:
8d:78:68:75:68:2b:b5:02:62:24:ca:61:2d:2d:a1:
dd:0e:33:d0:4f:1b:d3:86:09:38:f9:a2:4b:77:e0:
18:e2:33:0c:d5:66:cd:47:9a:be:fa:91:87:85:2e:
e7:1a:48:91:06:24:0b:4c:ac:3e:8c:1f:80:6d:82:
67:56:02:fb:48:0e:72:c0:cc:e7:86:fe:fb:fd:2d:
e2:b0:14:79:82:d8:9b:83:cf:40:ba:fd:4b:81:69:
e6:4b:7f:43:79:ca:0a:da:98:89:0a:24:4f:1b:42:
18:2f:55:84:60:9d:f1:79:17:5e:0e:f3:df:2b:23:
29:91:b4:0a:eb:fa:2e:e8:a6:b1:9c:24:a5:d6:b6:
3a:6f:cc:98:f7:ba:81:ac:84:9a:f9:fe:2e:97:d2:
8b:26:7d:1f:f1:0f:b8:45:1e:65:91:6b:58:21:07:
7b:5d:82:df:29:b6:50:bd:34:fa:01:9b:09:69:01:
41:b2:cb:d9:ee:70:e0:3e:d0:44:a8:55:bb:3e:81:
f6:23:c4:24:ca:4f:8a:89:d2:29:2e:16:ec:c6:26:
74:bb:e6:48:71:40:d8:96:8e:c5:8c:1b:46:1d:33:
f7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:87:A4:2F:DC:10:4B:55:72:1F:34:99:0F:8D:A6:FA:0F:A3:68:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CE15CDA092F11F0ACC1CC5D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.64.0/18
Signature Algorithm: sha256WithRSAEncryption
5f:49:e3:12:33:d8:25:a6:1a:ef:39:58:e6:f9:22:73:e4:66:
8e:b9:b0:44:4f:80:ae:06:14:4b:0a:73:9e:96:d0:d7:20:3f:
63:e3:67:32:1a:ce:f5:f0:a2:19:89:05:aa:82:d6:fd:86:90:
12:99:b9:cd:cc:68:cf:9d:58:71:45:51:fe:77:2e:cf:f6:95:
38:0a:7a:a6:bc:5a:47:46:04:da:2d:0e:b8:14:2a:6b:8e:2a:
99:25:9a:12:64:4d:d2:48:9d:3c:41:91:a6:07:78:0f:6d:5f:
5a:7a:16:28:4e:ae:8c:90:df:2c:98:69:b1:8f:a4:78:75:1c:
1f:09:c0:fc:c6:67:e4:10:70:61:a3:1d:18:db:dd:a4:96:22:
82:40:3d:0a:19:1c:c8:93:4a:b8:6e:25:74:63:02:98:03:74:
eb:01:95:5f:d4:b5:1b:e6:6a:80:39:06:27:c6:96:e4:da:bc:
ca:9b:cb:d7:bf:66:0f:42:48:02:e1:0b:55:85:56:c1:1d:ed:
83:ab:cd:f5:73:9f:41:4c:e6:88:25:a1:fa:20:08:ae:7c:7c:
f6:ff:e7:a5:b7:3c:95:73:94:68:7f:16:cc:da:b2:3d:c3:13:
2c:7f:73:24:bf:0e:12:30:f1:fd:3c:49:80:b8:fd:71:98:cf:
45:b6:b3:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:52:04 2025 by rpki-client