Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D967A9EC35511EF98B6D0BB762E951A.roa
File: 7D967A9EC35511EF98B6D0BB762E951A.roa (raw, json)
Hash identifier: h1ZjaVP6s3bKTlFB+bCjYZf0AK1KjIW2/o2iPEQOSMs=
Subject key identifier: 55:6E:3C:B0:7A:E7:0C:6B:C0:A7:92:42:72:8D:F2:66:AB:17:9D:86
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0125D9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D967A9EC35511EF98B6D0BB762E951A.roa
Signing time: Thu 26 Dec 2024 06:49:02 +0000
ROA not before: Thu 26 Dec 2024 06:48:58 +0000
ROA not after: Sun 12 Dec 2027 06:48:58 +0000
asID: 17561
IP address blocks: 154.88.48.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75225 (0x125d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 06:48:58 2024 GMT
Not After : Dec 12 06:48:58 2027 GMT
Subject: CN=676cfc5e-cd75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c5:6c:31:01:cd:ab:0c:d5:fc:30:f8:de:fc:
f7:57:80:4a:ca:6d:72:02:dd:2b:ea:29:fc:bf:3b:
ff:76:bf:fb:4d:c2:20:c6:22:8a:b2:5a:4d:0d:b2:
71:16:99:ce:85:05:1a:c0:f3:5f:ee:60:19:7a:08:
1f:dd:be:7b:59:80:28:ad:e9:de:0e:00:d6:d1:33:
15:f4:3c:a3:5d:8b:0c:d9:fd:67:30:10:88:a1:60:
09:b9:87:4a:50:83:62:6a:f6:2d:73:bd:ab:2b:bf:
a2:ce:66:bb:9e:91:38:cf:f0:85:a6:31:4a:44:1b:
c6:ef:e6:ed:66:ae:d1:6f:51:2c:ab:62:a3:d7:71:
2a:2a:aa:d5:c4:50:bd:9a:18:7b:23:12:85:af:39:
ad:63:c5:28:c7:80:4d:4d:34:2f:89:fe:99:41:26:
f3:51:38:aa:5b:19:95:0d:4e:d0:95:ab:15:88:dc:
bb:29:ce:43:7e:da:d8:c8:32:d3:15:de:89:b4:c5:
30:33:85:f7:68:2e:b9:3e:b0:03:a2:24:17:3a:e9:
e3:4b:c9:b2:88:c7:a6:7c:d2:68:9b:17:d6:e0:7d:
ab:09:94:8a:d8:9e:9f:fa:50:09:7d:c9:fd:62:6c:
f9:d0:ea:2c:47:92:18:bf:00:99:dc:61:a2:f1:21:
eb:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:6E:3C:B0:7A:E7:0C:6B:C0:A7:92:42:72:8D:F2:66:AB:17:9D:86
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D967A9EC35511EF98B6D0BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.48.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:e8:f0:7a:31:c1:05:3c:ee:12:02:f6:86:f0:08:9a:14:a0:
e6:ed:e1:66:53:8e:21:d8:06:68:29:c3:c7:07:8d:21:1d:60:
c4:0c:c5:75:0a:65:e9:c7:ae:4d:76:a1:3d:7f:c8:17:e6:c4:
8d:c6:63:2d:3c:7d:18:e2:50:85:a6:da:f1:da:39:ee:63:74:
ee:4a:75:82:0b:57:38:01:10:7e:d5:a5:7a:0a:a9:54:e2:c4:
f8:58:c0:e9:5d:d0:99:6b:83:1d:b6:f3:16:a0:b8:ed:df:9c:
5c:d1:37:64:53:bc:55:5d:6a:31:3e:cc:64:b3:25:94:d7:1e:
40:55:cc:24:35:da:51:9f:c2:e2:f0:44:30:61:5d:41:7e:d5:
02:5d:12:d3:42:39:4a:27:f0:21:36:eb:4a:aa:f5:79:70:a8:
61:03:82:36:03:fb:03:cd:04:5c:48:89:ff:4d:d6:54:bf:74:
50:50:56:d5:07:4d:61:81:06:a5:00:e4:94:9c:a3:3e:cb:9b:
cf:3c:7c:81:7c:5a:67:b7:82:47:96:b0:88:76:ff:2a:c7:a3:
01:1d:e4:d2:7a:a0:75:ee:24:ef:d0:79:61:b6:9e:02:a8:3b:
4f:da:97:62:92:b4:07:ed:73:c1:39:f5:1b:81:5c:9b:4f:5b:
6c:9a:32:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:45 2025 by rpki-client