Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C233956C61811EF806031BF762E951A.roa
File: 8C233956C61811EF806031BF762E951A.roa (raw, json)
Hash identifier: PQd73i9PkbkwJZRG4jaWH9j4T/6x1JVqyYtClA+SXRU=
Subject key identifier: A1:00:DC:2B:B6:01:01:D9:22:D1:03:C2:7D:93:FB:87:A9:FA:F9:3A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012F26
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C233956C61811EF806031BF762E951A.roa
Signing time: Sun 29 Dec 2024 19:10:20 +0000
ROA not before: Sun 29 Dec 2024 19:10:16 +0000
ROA not after: Sun 12 Dec 2027 19:10:16 +0000
asID: 17561
IP address blocks: 154.217.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77606 (0x12f26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 19:10:16 2024 GMT
Not After : Dec 12 19:10:16 2027 GMT
Subject: CN=67719e9c-9faf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:88:a3:8b:14:83:96:59:f8:d1:96:e9:9e:50:
38:3e:59:9c:61:23:8f:7e:fb:83:ca:90:f0:85:27:
97:d6:bc:30:25:74:6a:ba:bc:ca:41:b7:06:67:5f:
3f:9c:11:2f:3c:f8:82:2a:eb:60:d1:ee:86:2a:b6:
16:42:da:9c:ef:f2:fb:5e:8a:5b:25:7d:6d:ad:ae:
10:cc:50:a7:32:08:92:82:92:e8:47:0e:ec:a7:46:
52:3a:37:7b:6d:a5:80:6c:c5:a6:84:ef:a2:00:46:
4a:f3:1b:c9:e5:91:73:c5:a2:5b:74:5d:dc:0e:16:
16:ac:d5:7a:e5:3b:6e:9a:6d:62:77:73:dd:28:04:
90:b1:6f:8a:a8:c6:80:3a:3b:83:b2:1b:00:f9:d3:
55:82:e7:39:ee:ad:aa:e9:e0:37:8a:b1:10:25:23:
1e:e8:61:b5:0e:ca:e9:18:35:e8:3e:3c:59:f2:44:
fa:24:21:04:36:be:73:0c:6c:2e:4a:8f:6e:0b:61:
3e:7c:54:81:9c:bd:bd:40:52:38:35:86:4f:06:50:
f1:06:3d:71:b9:1a:a0:a9:c9:06:56:72:0d:5d:e1:
88:2f:7e:c2:f4:1f:62:27:23:58:a5:25:a9:bd:0d:
55:d4:5e:34:99:a5:74:22:18:6d:d6:52:ed:e3:6f:
e7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:00:DC:2B:B6:01:01:D9:22:D1:03:C2:7D:93:FB:87:A9:FA:F9:3A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8C233956C61811EF806031BF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.118.0/24
Signature Algorithm: sha256WithRSAEncryption
70:e4:e1:a5:bb:2f:45:04:85:11:af:a2:5d:40:26:33:11:d8:
79:6a:34:d4:fb:08:cd:15:a6:1b:a5:53:dd:cf:92:dc:82:6a:
df:99:cf:d5:25:78:93:89:52:94:bf:c3:13:a8:01:1c:8c:2c:
a7:de:bc:00:fd:93:ae:10:72:c4:3c:de:e5:aa:a1:90:87:e4:
07:ab:2f:54:e7:b2:fd:cf:d7:6f:bf:b7:9e:3e:be:5d:8b:e0:
0e:59:fe:98:6c:94:61:77:ff:13:8e:86:a8:08:f1:f5:70:f7:
7a:54:03:d9:13:dd:f3:18:6d:db:8d:2c:da:65:3b:ed:b6:68:
6d:cf:46:a5:0c:26:d4:c0:d5:3a:f2:e1:a1:8c:4a:10:4d:fb:
a5:fa:fa:76:b1:69:93:66:43:2a:50:b4:5d:a5:9c:cd:74:11:
85:83:1b:29:2d:21:f8:6a:83:2e:b9:f8:f1:34:bb:8e:23:75:
56:a6:52:0b:e4:6a:0a:d7:9f:e6:05:8e:96:eb:16:96:02:dd:
69:57:f7:12:9d:f0:d8:ee:0b:d1:dd:a2:7b:c5:d9:eb:0b:ed:
44:bf:1b:53:c0:29:b7:93:1c:a4:90:f0:94:d2:14:81:e3:f8:
57:07:33:93:df:c3:9f:1a:b9:45:8c:5e:09:47:0f:0e:17:df:
c5:36:2b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:15:50 2025 by rpki-client