Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/734AC982F4A111EF90242963762E951A.roa
File: 734AC982F4A111EF90242963762E951A.roa (raw, json)
Hash identifier: nlYmAz6mw5RMecS7yqGRrL8MBJ70bZ4zlXiHS3UIFwA=
Subject key identifier: 9C:1F:85:4A:36:F8:5F:12:8A:C4:34:A3:05:D5:6B:FC:0F:77:FE:85
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016603
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/734AC982F4A111EF90242963762E951A.roa
Signing time: Thu 27 Feb 2025 00:26:13 +0000
ROA not before: Thu 27 Feb 2025 00:00:09 +0000
ROA not after: Sat 19 Feb 2028 00:00:09 +0000
asID: 17561
IP address blocks: 154.94.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 09 Apr 2025 17:37:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91651 (0x16603)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 27 00:00:09 2025 GMT
Not After : Feb 19 00:00:09 2028 GMT
Subject: CN=67bfb125-02b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:98:88:39:58:52:d1:04:dd:8e:b1:c9:8a:d7:
4f:c9:fb:3e:24:4e:3c:db:da:32:43:36:8b:66:41:
7c:b2:de:10:ca:01:e0:e8:1c:e3:0a:05:58:8b:4c:
5b:ae:63:6e:0a:a4:ee:e0:8d:e3:2d:ae:a6:f1:02:
67:f5:23:7c:7b:91:68:96:d0:f2:22:cb:9b:ad:51:
71:cb:4c:b0:8b:fa:ba:97:f4:3a:65:95:55:2e:98:
8d:ff:ef:09:cb:c4:6e:27:21:6c:50:65:e8:f7:62:
0e:23:c5:4b:f9:76:5b:0a:18:5b:c2:b4:2f:42:5a:
82:19:00:25:94:90:d3:8f:cf:2f:90:77:ba:23:27:
d2:b6:3b:ca:8d:c4:35:53:ac:5e:00:6c:a4:1f:87:
3f:e8:dc:e7:92:ec:d2:cb:d4:32:9e:c9:d9:05:4a:
56:71:2d:93:c8:7a:89:6c:c9:79:88:93:50:60:35:
bd:4d:6c:23:df:75:4f:ae:a8:4c:f1:68:14:90:80:
3f:7c:a6:bb:9f:b6:9d:51:db:8b:84:45:f2:98:f7:
67:f7:a0:c1:82:3a:b1:02:1c:0c:35:fb:a8:cc:0e:
8b:a8:3a:f7:fa:23:88:4d:33:76:23:54:5d:5c:3f:
4f:86:ab:e0:87:a1:c6:58:9b:42:ec:ee:49:7a:9d:
7d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:1F:85:4A:36:F8:5F:12:8A:C4:34:A3:05:D5:6B:FC:0F:77:FE:85
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/734AC982F4A111EF90242963762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.243.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:28:be:b7:66:d1:92:6e:06:f7:71:eb:dd:f9:56:ae:0a:bd:
74:aa:e3:f4:e1:93:34:d0:60:47:c9:97:2b:43:f9:d8:b7:b9:
79:1a:19:e1:06:c8:c1:05:62:96:76:7d:65:14:99:8e:63:dd:
4a:7e:1d:75:c3:86:8b:4a:28:40:ea:f5:cc:15:f0:af:ce:fc:
78:00:4c:eb:ac:42:40:64:02:d6:11:fa:a0:f0:2e:cf:32:bb:
e0:21:58:f9:91:c3:b7:03:b0:94:96:da:45:aa:7b:ad:c6:7c:
56:b9:41:ee:92:34:fd:bf:59:a5:74:89:b0:41:0a:c8:a8:ca:
96:f5:27:37:a6:32:5a:e9:51:34:98:c6:a7:a2:4a:51:f0:75:
71:ad:22:66:be:a5:2e:64:40:ca:64:7b:09:63:8d:a9:b7:bd:
7a:24:fc:22:76:9d:57:ab:aa:1b:16:cb:4b:40:9f:b4:1f:71:
f6:87:68:e9:8d:55:15:70:3f:09:7a:ab:ba:b4:bb:64:a5:af:
c9:be:92:4b:e3:39:26:6f:52:b0:68:a3:ff:0a:ba:cb:4c:20:
c3:c2:5f:e7:56:b9:23:50:8e:84:28:52:28:49:46:57:24:dc:
db:d2:07:73:76:f0:db:06:dc:30:a7:c3:fa:0a:83:53:0d:82:
87:82:00:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:34:25 2025 by rpki-client