Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81404C78C3CE11EFB72157B5762E951A.roa
File: 81404C78C3CE11EFB72157B5762E951A.roa (raw, json)
Hash identifier: /Y2gWAK7yiejP7TgPHvAkBqoqA8JXrN7+8SFCF7XXY4=
Subject key identifier: 95:32:D8:F4:72:AE:F9:2B:D8:35:22:63:61:25:4A:3A:CA:27:F6:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012826
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81404C78C3CE11EFB72157B5762E951A.roa
Signing time: Thu 26 Dec 2024 21:15:17 +0000
ROA not before: Thu 26 Dec 2024 21:15:13 +0000
ROA not after: Fri 12 Dec 2025 21:15:13 +0000
asID: 984
IP address blocks: 154.83.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75814 (0x12826)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 21:15:13 2024 GMT
Not After : Dec 12 21:15:13 2025 GMT
Subject: CN=676dc765-c880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:96:96:2f:59:3a:f6:7b:90:4c:ff:07:7a:d7:
f5:b4:11:9e:aa:ef:65:b4:d0:a2:69:59:40:a9:e8:
20:c6:ec:ec:3f:07:78:68:7c:e4:bc:fe:67:ef:c6:
4b:07:de:2a:ae:d3:8e:a4:d6:bb:a5:f5:e3:3a:ad:
4b:1a:4a:c6:1d:f0:27:a6:12:5e:8f:84:e9:e1:44:
32:bd:aa:f7:26:cc:59:ae:ef:a2:b6:c1:cf:b5:07:
ac:88:32:a5:e3:f3:a2:58:ab:46:96:7a:ce:4f:f2:
36:60:71:36:85:db:82:6a:3d:61:c4:ac:0a:76:7d:
a5:2c:73:e6:2f:cc:91:d0:e3:0b:02:94:a8:22:9d:
4a:43:fa:5d:b3:d6:5a:dd:ea:c1:e5:1e:55:26:82:
ec:e6:5a:cc:bc:59:c4:ef:f7:05:b3:ae:86:22:18:
f6:0c:31:a1:d9:20:af:c0:31:cb:61:03:54:02:0f:
9b:ef:05:b3:7f:9d:0f:f1:19:08:17:f4:8f:1f:1e:
71:37:51:ea:98:ae:93:8c:4d:1c:ed:eb:97:b9:56:
0d:c3:1c:3d:d9:21:fa:a4:43:f7:f6:4d:83:52:38:
6e:ac:84:16:ed:6f:90:56:f9:d7:78:44:9e:1d:32:
23:95:e0:eb:a2:65:c3:a5:79:0e:69:42:1f:8a:a6:
86:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:32:D8:F4:72:AE:F9:2B:D8:35:22:63:61:25:4A:3A:CA:27:F6:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81404C78C3CE11EFB72157B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.169.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:34:56:29:d1:15:f3:36:6a:ac:ce:07:e4:19:09:68:f6:86:
b1:34:a6:53:c0:90:d0:44:c4:a5:fe:0c:a5:6d:93:66:87:a1:
4d:a4:42:7b:18:41:42:44:6b:98:54:bd:01:bd:23:7a:b1:42:
f0:70:09:74:70:7c:77:32:c6:af:35:96:78:51:d3:bb:04:d1:
48:3c:b4:71:e1:a0:b8:1e:e9:ed:45:f3:2a:34:39:10:e3:a3:
c6:6b:d3:ab:a2:3c:db:a3:50:08:25:7a:55:d1:e9:63:48:eb:
fe:4e:71:02:85:54:79:36:ed:4e:65:28:3b:cd:4d:19:4c:fb:
d8:65:a0:f2:53:99:d9:78:f4:20:17:aa:32:49:1f:15:28:82:
32:aa:f2:6c:7a:ef:c1:60:f8:48:13:6a:be:4c:33:6c:a0:81:
43:be:80:2e:f9:7a:0c:88:ed:c6:35:da:19:af:db:d7:b0:37:
92:cc:be:c7:d3:11:dc:14:df:20:ce:b7:7b:14:87:06:b0:b6:
43:72:7a:41:cc:7d:0e:fe:a4:7f:4f:dc:14:c9:6d:4b:df:9c:
fc:ab:32:f0:3f:cc:5a:35:19:17:78:3d:4d:e7:1b:84:a2:23:
5f:2d:fe:d9:14:64:2a:16:b7:9b:9d:11:84:7d:9b:c4:70:25:
40:3e:c9:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:54:59 2025 by rpki-client