Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/779F3BB6C40F11EF9C078B65762E951A.roa
File: 779F3BB6C40F11EF9C078B65762E951A.roa (raw, json)
Hash identifier: dhCvLurksXLZ/5z2IBqOcYGzWuDhRATUryO2n2rbNf8=
Subject key identifier: 95:A1:22:16:C5:5A:F8:1C:8C:81:E3:50:42:4C:66:39:51:6A:E2:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012941
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/779F3BB6C40F11EF9C078B65762E951A.roa
Signing time: Fri 27 Dec 2024 05:00:18 +0000
ROA not before: Fri 27 Dec 2024 05:00:15 +0000
ROA not after: Fri 12 Dec 2025 05:00:15 +0000
asID: 984
IP address blocks: 154.196.234.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76097 (0x12941)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 05:00:15 2024 GMT
Not After : Dec 12 05:00:15 2025 GMT
Subject: CN=676e3462-5fb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1a:63:18:de:11:3c:cc:65:39:71:a9:41:cf:
15:f1:1d:68:36:32:dd:2b:94:ed:d7:99:28:38:c9:
f4:3c:f7:56:34:60:58:aa:49:cf:56:38:d0:55:12:
91:22:4e:74:5f:46:b9:5a:43:f3:50:eb:ec:2d:9e:
ed:1a:d3:f9:a3:2c:a6:1f:a6:a7:1a:cb:98:1d:21:
de:24:bb:d1:49:17:2f:31:8a:58:ce:a3:c4:66:b4:
a7:66:ba:bf:4b:a5:91:bc:03:5a:6d:d3:2d:5f:4e:
52:bd:05:09:0b:80:31:a6:d7:8e:71:90:d6:21:c1:
87:e2:32:48:68:98:70:7e:46:f4:93:4a:a1:9f:66:
dc:6a:42:86:16:6d:e7:06:00:43:d9:7f:d5:29:b3:
5b:39:56:c5:24:b2:dc:82:2f:f9:b1:e5:43:19:2e:
e8:91:81:4c:b8:0b:11:1f:ee:03:36:d2:57:9f:57:
c4:e4:aa:4b:d8:e4:66:4e:0a:34:dc:fa:8f:f8:80:
00:f9:9f:ff:61:5a:31:fc:49:b6:5f:2f:78:91:84:
cf:5d:62:12:91:6e:4c:be:c0:9e:ae:a9:a8:80:3b:
af:76:2a:b7:25:7c:3e:29:28:7c:48:69:53:2f:53:
62:6d:a0:3a:1d:61:a0:e6:96:94:cf:2c:9b:f9:60:
08:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A1:22:16:C5:5A:F8:1C:8C:81:E3:50:42:4C:66:39:51:6A:E2:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/779F3BB6C40F11EF9C078B65762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.234.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:18:cc:e7:2f:53:39:65:41:97:d2:6b:ad:f5:99:31:f5:1e:
d5:f3:f8:f2:3f:cb:64:3c:fe:e6:f7:a4:2f:d2:b7:8e:e4:77:
82:a7:01:9a:5d:86:7a:37:db:02:84:98:bf:49:60:ae:e3:eb:
ed:d1:be:d7:4b:1f:0f:15:b8:a2:00:57:f8:8f:db:9b:1c:2d:
6c:cb:92:ef:e1:fe:57:14:3d:67:0e:9d:56:d8:45:92:cf:2d:
d8:60:70:95:3a:4c:67:98:8f:cc:af:94:48:35:8d:b9:80:e9:
e7:52:d4:aa:c6:cc:a6:1f:55:d6:6b:83:69:bf:31:fd:48:5f:
f9:ca:77:c4:48:95:49:11:85:71:4f:9b:72:e0:48:94:76:13:
15:8f:43:dd:95:90:50:ab:70:a4:36:29:64:14:1f:ba:d1:2d:
79:3c:c3:bb:f8:64:49:f9:17:28:be:96:f0:4f:44:5b:1c:c5:
5f:9b:a8:f2:ba:61:76:73:41:21:ee:72:9f:8e:85:34:1d:bf:
b2:50:66:c2:7e:5f:9c:d6:ba:9f:2d:c8:81:e5:aa:6b:0c:25:
a8:ab:b7:ca:c7:7e:01:96:e3:93:e2:9d:bc:88:e9:f8:00:82:
9d:0d:80:96:1b:36:e7:7b:e6:92:6d:6c:2e:ae:1c:b9:87:18:
cd:73:7f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:59:14 2025 by rpki-client