Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74C27F62C5DF11EFB472095A762E951A.roa
File: 74C27F62C5DF11EFB472095A762E951A.roa (raw, json)
Hash identifier: DgE/2o5R0GS1G2OATC47aVa2cX0pxdWANjR8KyLgcUE=
Subject key identifier: 05:80:D0:9D:0A:4A:73:3E:FA:38:85:3C:5D:A9:68:8E:5F:E8:A1:5C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012D40
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74C27F62C5DF11EFB472095A762E951A.roa
Signing time: Sun 29 Dec 2024 12:21:40 +0000
ROA not before: Sun 29 Dec 2024 12:21:36 +0000
ROA not after: Sun 12 Dec 2027 12:21:36 +0000
asID: 17561
IP address blocks: 154.210.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 12 Apr 2025 00:06:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77120 (0x12d40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 12:21:36 2024 GMT
Not After : Dec 12 12:21:36 2027 GMT
Subject: CN=67713ed4-9848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d9:dc:e4:2a:92:53:b0:e2:22:a6:d1:54:0e:
70:2f:6e:75:1a:34:ce:90:1e:0c:f6:ed:52:8b:30:
ff:af:4a:03:f4:0f:e6:3d:b9:45:af:d0:71:3f:a0:
48:d3:e8:6a:cb:da:42:2c:4d:67:e2:d4:b8:4f:b3:
72:89:c4:9b:75:7d:58:84:99:75:b6:77:34:ef:e1:
b6:0b:13:ac:ad:98:33:7c:be:8a:66:0f:c5:5b:c1:
a5:c3:34:67:af:7d:15:8a:75:24:32:fd:ad:c1:59:
4c:e0:27:8b:88:3e:a6:78:67:57:1c:11:27:31:bf:
0d:77:c8:e8:14:f7:2e:5f:4f:65:25:f2:52:e4:c4:
8d:b7:51:3c:3c:5b:16:6b:6a:b2:c1:78:c0:22:2b:
a1:d8:05:c3:d7:ce:bc:61:f5:7d:d1:f5:ea:1f:28:
80:42:f2:cd:ab:0a:17:5c:5d:4f:22:47:43:36:13:
82:2b:97:a6:f2:08:e1:70:9f:56:d5:0a:78:95:15:
1f:24:8f:8c:80:61:4e:ed:2d:f4:62:95:e2:c4:96:
33:ab:fe:02:8e:bb:0a:17:69:ed:6a:21:d5:2e:9a:
46:98:ce:83:00:08:b7:1d:60:f2:d9:67:da:1b:9d:
6f:3b:ea:4e:c6:4f:e6:a2:02:a1:c4:37:40:df:97:
22:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:80:D0:9D:0A:4A:73:3E:FA:38:85:3C:5D:A9:68:8E:5F:E8:A1:5C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/74C27F62C5DF11EFB472095A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.98.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:74:ed:80:8a:86:7e:ae:f6:ee:97:3e:8b:98:2e:11:dd:73:
97:66:0b:56:93:db:00:da:2f:e9:95:e1:68:e1:a2:54:fc:83:
36:1d:d3:dc:61:b9:90:8a:86:7f:17:b5:8f:4a:ae:b4:56:cf:
12:21:2f:87:65:b3:f9:c8:c4:19:02:c5:1c:70:f7:df:9a:29:
20:d1:48:1e:7b:21:90:2e:a7:37:f7:f0:8c:87:74:15:22:2b:
2d:0c:ea:d0:bc:5f:6b:67:97:c4:ae:ce:d9:6f:a7:e4:18:c4:
45:b9:4f:4c:90:20:e6:30:39:0a:30:52:c7:e8:b8:19:28:50:
58:6a:4a:9d:67:c5:80:dd:31:83:c3:3d:81:9e:30:54:71:7e:
51:b8:a7:c0:47:3f:9e:28:74:11:20:9e:78:35:0d:54:a7:7a:
42:76:0e:95:f0:e7:fd:ed:b6:9f:df:77:e4:a9:9c:a8:b1:e3:
a6:d6:09:7c:df:08:16:17:de:e9:91:f7:71:2d:03:b2:91:0d:
df:be:16:1a:7c:87:1e:c5:ec:59:b4:77:c3:88:d4:b7:51:97:
43:b1:3d:ae:af:e3:e9:99:f5:db:90:75:d7:49:43:0f:93:e5:
59:3f:7a:bb:b9:88:55:b7:ff:55:42:fe:b1:26:43:15:f5:72:
2f:2a:32:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 00:18:31 2025 by rpki-client