Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82E82BF6F3BA11EFB4F03EA4762E951A.roa
File: 82E82BF6F3BA11EFB4F03EA4762E951A.roa (raw, json)
Hash identifier: wSMEoysKj9s3Z3HLXLFFX4VxtcdN2wU8Geuo3cTqArg=
Subject key identifier: BA:52:F0:D4:EE:3D:6E:AE:37:69:74:68:97:48:D2:6F:58:64:DA:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016005
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82E82BF6F3BA11EFB4F03EA4762E951A.roa
Signing time: Tue 25 Feb 2025 20:53:06 +0000
ROA not before: Tue 25 Feb 2025 20:53:02 +0000
ROA not after: Wed 09 Apr 2025 20:53:02 +0000
asID: 138915
IP address blocks: 154.95.72.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90117 (0x16005)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 25 20:53:02 2025 GMT
Not After : Apr 9 20:53:02 2025 GMT
Subject: CN=67be2db2-cd66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:35:f8:f3:de:7f:94:93:24:60:14:15:26:4f:
8f:66:1e:30:fd:92:ff:4b:08:dd:53:89:ba:eb:60:
24:d3:43:10:91:d7:b9:ba:37:64:cc:9b:ae:4a:50:
9d:4b:ee:54:bc:f7:89:bb:d7:53:3a:66:0a:19:f0:
f6:ae:9f:d0:f9:9d:89:a6:c0:bc:36:72:0e:a8:b1:
df:d1:94:08:1c:45:f3:19:c5:39:49:5e:68:c9:33:
bb:53:3c:40:90:6f:4f:fa:c2:a1:56:f6:eb:57:f5:
1a:54:c5:44:30:86:d5:c0:b4:3a:3a:31:e9:40:0e:
cf:ba:69:77:65:bf:80:43:23:30:48:8c:2d:b0:86:
30:b8:4a:ec:99:a2:e1:49:1d:a5:0b:db:ee:49:87:
48:0d:0e:b4:f8:13:34:9f:6e:c0:68:9d:07:72:b2:
e4:55:1f:fa:36:2d:f4:43:8e:8a:17:2e:9b:8f:40:
83:d9:3b:30:d1:e8:3a:5f:41:fe:88:d3:aa:9c:d7:
17:ea:eb:95:e2:9f:e1:03:76:d9:9b:8b:af:06:ab:
38:e8:4e:b9:34:fe:80:27:44:4d:c6:6e:d2:e9:ff:
a8:f4:e6:4b:f6:f6:ce:31:97:90:cb:2a:05:a1:a7:
f2:eb:f7:7f:90:c0:06:35:ec:6d:8d:8b:ca:db:0e:
24:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:52:F0:D4:EE:3D:6E:AE:37:69:74:68:97:48:D2:6F:58:64:DA:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82E82BF6F3BA11EFB4F03EA4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.72.0/22
Signature Algorithm: sha256WithRSAEncryption
59:6c:06:9b:13:8d:03:51:b8:66:9c:4b:25:cd:88:a1:03:d4:
ba:62:67:91:89:6a:60:2e:05:cd:5a:40:b3:09:44:07:e0:70:
09:24:0a:02:b0:ba:dd:85:a2:1a:81:02:96:94:6d:f5:14:db:
6a:64:52:1d:28:c5:47:86:f8:5e:ad:49:a7:2f:d1:57:dd:c0:
dc:34:2d:9b:48:38:e6:26:6c:43:0a:45:d2:e5:9f:d7:20:7f:
76:35:d0:4e:0f:72:08:9e:36:16:7d:8a:2a:cc:26:bd:cf:83:
1f:1d:48:30:a2:92:5c:2d:fe:51:88:1c:57:8d:d4:8a:d6:5f:
f3:ae:d5:ba:c1:e3:de:88:57:4d:d6:fd:71:01:2b:c5:13:e3:
37:75:55:e2:4c:d2:9a:af:6e:a9:a0:d4:f0:3b:ca:50:f0:36:
6d:25:1b:61:83:2b:44:2a:7e:ba:3e:4a:a5:83:e3:44:20:25:
24:1b:40:f3:3a:dc:48:0f:9e:77:83:a6:6b:2b:03:59:1b:07:
84:b0:01:7e:60:c3:71:c2:40:ad:ef:8e:f2:bb:9e:bd:19:68:
79:d2:a6:ba:a6:63:8b:cf:12:ee:7b:61:e5:1b:b3:7c:35:78:
fc:f3:a5:86:48:65:74:3d:7e:74:33:c0:6f:cd:4f:d1:e0:dc:
40:fc:41:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:18 2025 by rpki-client