Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78DF3A7EC40C11EF83565352762E951A.roa
File: 78DF3A7EC40C11EF83565352762E951A.roa (raw, json)
Hash identifier: HBG6+Ct9YQOsRZ/GdVIXv5wZn8Bz/lakTfIDit3KPiY=
Subject key identifier: 81:2F:B6:E4:11:45:9D:B0:33:FB:F0:15:96:6A:E2:91:6C:F7:62:84
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012923
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78DF3A7EC40C11EF83565352762E951A.roa
Signing time: Fri 27 Dec 2024 04:38:52 +0000
ROA not before: Fri 27 Dec 2024 04:38:48 +0000
ROA not after: Fri 12 Dec 2025 04:38:48 +0000
asID: 984
IP address blocks: 154.196.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76067 (0x12923)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 04:38:48 2024 GMT
Not After : Dec 12 04:38:48 2025 GMT
Subject: CN=676e2f5c-d45b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:56:8a:50:6e:d4:b8:68:70:67:22:33:56:c2:
4a:21:90:d4:e6:fc:79:b3:e0:09:b7:99:d4:47:11:
65:69:10:f0:b8:3d:16:ee:22:b3:7e:23:62:8b:55:
97:f7:ff:eb:fd:dc:71:13:c8:02:93:9a:fc:84:f2:
7d:52:39:93:a2:77:e5:31:cc:0e:0e:3e:1f:c3:58:
fb:96:8d:7e:86:28:b4:67:9e:d2:3e:a6:f3:c0:5b:
fd:06:f8:8e:f8:1c:d1:c1:54:e3:e9:34:dd:2d:d5:
3a:7c:b5:c7:38:8f:6d:92:59:0b:14:9c:57:18:70:
22:57:39:a5:56:75:30:5e:50:a9:af:8d:e2:a6:22:
e6:5e:5e:63:50:09:b9:4d:60:e5:15:7a:7b:d4:71:
bc:88:c5:2a:f6:c4:62:94:35:d4:8a:13:1b:97:4d:
41:92:9e:5a:25:36:56:1d:04:ff:17:43:2a:40:01:
3a:aa:75:85:27:6d:e1:3d:67:a7:95:9f:d5:95:96:
be:12:f3:9c:90:e4:b9:54:0c:9e:61:27:3c:f3:99:
37:bd:41:d5:6d:6c:09:3d:b8:b9:0e:0e:01:28:eb:
7c:87:ae:db:4f:68:14:6a:8b:4a:4e:90:f8:02:23:
cc:72:67:d7:28:9a:85:b5:0f:b2:0c:04:cc:9c:dc:
70:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2F:B6:E4:11:45:9D:B0:33:FB:F0:15:96:6A:E2:91:6C:F7:62:84
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78DF3A7EC40C11EF83565352762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.219.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b6:95:18:6d:df:bc:46:d7:dd:ab:5e:d8:7a:ca:b9:65:0e:
9e:46:30:ef:b6:84:24:2d:9a:40:52:9d:1f:e8:b9:74:73:c0:
64:25:f4:68:02:5a:f5:1a:8f:f1:0b:a9:12:82:c3:41:32:f7:
84:5b:08:f9:61:f3:5b:b4:a0:45:8f:5a:38:31:90:f1:10:e6:
f8:66:23:83:c7:94:fd:1d:34:bc:e2:62:5f:64:4c:00:ef:41:
c0:e4:ae:57:6e:d5:1c:43:0a:f1:cd:37:7b:12:26:17:33:8e:
1f:77:78:7b:81:f1:43:24:54:74:2b:b6:11:d7:ac:96:a3:8b:
8f:5c:9d:23:af:cf:fb:2f:97:5a:9a:8a:d9:f6:6d:5a:e4:b9:
8f:d8:c4:18:58:e6:ce:59:d8:63:0d:43:37:09:fe:59:82:b9:
25:71:a4:8f:2a:f7:7f:0d:1d:75:67:9c:99:11:2a:74:5b:57:
07:b1:9f:9e:92:01:de:0d:0b:f3:7d:2f:bb:4f:bb:8c:65:e7:
ab:8c:c1:69:31:98:c1:e6:24:16:c6:5e:7b:ef:ba:e2:6a:85:
61:a5:45:03:30:7e:df:0a:fa:25:08:34:49:21:40:32:42:d3:
eb:0e:85:bd:40:5c:50:c0:e0:52:74:7b:db:d6:58:e1:57:65:
c9:9a:55:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:19 2025 by rpki-client