Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D932350C0C911EFA4A38976762E951A.roa
File: 7D932350C0C911EFA4A38976762E951A.roa (raw, json)
Hash identifier: 29iorfpveMM7ajs3Vs7Nloa0zy3VDyRcvibJqnQwi/o=
Subject key identifier: 5D:42:C9:DF:58:D2:98:C4:38:51:53:C6:D3:00:EE:EE:C2:6A:C8:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011DE4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D932350C0C911EFA4A38976762E951A.roa
Signing time: Mon 23 Dec 2024 01:01:50 +0000
ROA not before: Mon 23 Dec 2024 01:01:46 +0000
ROA not after: Wed 10 Dec 2025 01:01:46 +0000
asID: 984
IP address blocks: 154.82.229.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73188 (0x11de4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 01:01:46 2024 GMT
Not After : Dec 10 01:01:46 2025 GMT
Subject: CN=6768b67e-f861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3b:9c:cb:9c:d1:a7:3e:91:4a:69:81:1f:e4:
3c:c7:4f:0b:5f:a9:75:91:a7:ec:bc:09:08:bd:7c:
d2:04:78:78:74:21:a9:d6:6a:03:1d:cc:5f:e3:56:
bf:c5:28:7a:74:bd:2a:3b:78:22:dc:ae:da:5f:56:
4c:33:73:c5:f0:8c:3c:04:5d:8b:28:6c:18:01:12:
a7:89:f5:9b:f8:94:82:7a:1a:6c:fa:43:d5:ed:46:
51:5d:9a:6e:38:86:e8:20:8f:68:53:a6:ff:5c:7b:
6a:e1:70:aa:70:70:da:b2:96:3b:18:9a:5d:b7:7b:
60:ba:94:2c:18:97:9b:9a:5d:50:a4:b8:6f:ee:ac:
7d:34:ac:0b:b6:61:ed:f8:32:cd:91:ae:7d:f3:08:
04:34:6e:d7:c4:63:aa:66:8b:2d:9c:5d:32:20:f5:
c5:f8:9d:53:11:14:8f:54:ae:05:e0:87:d8:93:03:
39:2c:05:25:58:1b:7f:29:41:01:c7:1a:df:ca:b1:
ec:18:e5:78:05:96:75:92:b9:cb:7e:00:2a:70:b3:
43:5f:ec:a9:5a:a8:b8:61:a4:4f:c0:27:07:86:9f:
e8:34:0f:46:6f:70:5d:d8:cb:a1:05:cd:27:b7:11:
6b:51:02:65:3c:20:2e:fa:29:8f:d0:36:65:18:14:
07:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:42:C9:DF:58:D2:98:C4:38:51:53:C6:D3:00:EE:EE:C2:6A:C8:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D932350C0C911EFA4A38976762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.229.0/24
Signature Algorithm: sha256WithRSAEncryption
77:0c:c0:80:1e:6e:a2:80:ad:8a:d8:8e:d9:21:80:65:f4:ec:
12:c8:77:3e:8a:47:1d:2c:a7:64:71:6a:d2:68:fc:2b:8f:3a:
30:83:ba:a0:ef:b9:92:fe:cf:5a:42:81:bb:5a:86:88:70:30:
c9:34:6e:a4:0f:de:fa:5e:71:1e:3d:f1:bf:25:59:3a:5b:22:
74:f0:20:63:1f:6a:44:99:bc:0c:2e:71:82:81:e2:6f:39:52:
a0:97:fb:44:71:06:67:f6:dc:ee:a4:94:5d:fe:a0:d8:3b:23:
cb:98:a1:56:42:2c:d4:bf:85:15:8c:14:0e:01:02:33:37:be:
90:c4:d1:25:2a:a5:a0:66:27:31:08:83:9f:9e:59:1d:7f:ea:
9d:dd:58:d2:b6:a9:f5:7c:ce:2b:21:ca:f8:61:88:fc:97:9f:
c1:30:2c:f0:c3:7f:f7:17:b6:b8:8a:cb:e8:83:01:ca:8e:28:
38:80:bb:50:94:68:68:03:fb:9d:19:19:46:b6:53:4a:af:77:
35:a9:36:e1:e0:ed:c2:96:bb:2e:32:e3:1e:6f:b4:3f:3a:a0:
04:07:03:9e:12:5b:79:7e:a0:b2:6f:ca:7f:dc:cd:f8:63:46:
dc:2d:03:6b:06:38:a9:96:03:1c:5a:f6:ca:93:43:6c:71:76:
19:25:33:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:31 2025 by rpki-client