Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E3B815AC38211EF99FB8658762E951A.roa
File: 8E3B815AC38211EF99FB8658762E951A.roa (raw, json)
Hash identifier: xOkx6NSlwvtF+6xassx3IUGGRwu8HT4hzSK1ULRCvXY=
Subject key identifier: 41:05:BD:FC:EF:2C:7F:4E:B7:7E:60:8A:89:00:4B:51:9A:F3:F3:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01276E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E3B815AC38211EF99FB8658762E951A.roa
Signing time: Thu 26 Dec 2024 12:11:37 +0000
ROA not before: Thu 26 Dec 2024 12:11:33 +0000
ROA not after: Sun 12 Dec 2027 12:11:33 +0000
asID: 17561
IP address blocks: 154.94.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75630 (0x1276e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 12:11:33 2024 GMT
Not After : Dec 12 12:11:33 2027 GMT
Subject: CN=676d47f9-c03c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ac:39:82:8b:eb:39:ea:30:90:64:ca:75:59:
6a:38:38:65:0a:b6:6e:5b:61:ef:8b:10:98:19:99:
d5:d9:92:d6:98:b6:0b:a6:5a:66:04:4a:0d:1d:59:
7f:44:28:b9:19:96:95:8e:53:61:3f:f4:00:b4:15:
76:20:66:33:80:fc:ca:ce:88:9e:29:09:9c:3f:92:
c7:3e:4a:db:65:6c:90:9f:98:73:4c:12:ad:12:15:
51:32:c2:62:b8:2e:92:7c:25:86:6a:1c:14:ee:2f:
e2:f2:68:c2:ce:ec:3a:7b:3c:46:db:8e:da:cc:48:
06:b3:1d:51:0b:a7:bf:11:95:d0:f7:01:aa:1c:ce:
7b:ea:21:b7:42:ad:b5:b6:a1:a1:df:f2:66:30:04:
67:4b:80:9f:6a:ab:5e:e7:48:9c:5d:88:4c:db:04:
0e:e4:ec:89:d9:28:98:6a:b2:67:69:0b:7f:cc:a2:
45:3a:e4:f3:7d:a0:31:59:58:45:c0:13:c0:0a:c7:
f2:02:39:5d:b6:67:d5:0b:de:36:6b:f1:99:56:65:
28:1e:58:fd:a1:3d:84:e6:c7:bd:66:4d:5c:d4:7d:
98:10:6e:93:8e:3a:8f:95:0e:e8:16:e6:0c:92:d4:
98:fe:f1:00:02:03:c4:d5:c0:9c:6a:b5:45:36:78:
da:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:05:BD:FC:EF:2C:7F:4E:B7:7E:60:8A:89:00:4B:51:9A:F3:F3:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E3B815AC38211EF99FB8658762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.206.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:8c:99:84:72:da:2e:7b:ce:47:b6:f7:f2:a4:8b:dd:b3:96:
f3:c8:40:0d:07:35:f1:c1:7d:15:aa:17:2a:ed:69:f8:a8:ad:
fa:f0:ee:c2:e8:18:1c:a0:37:ac:54:c5:f5:1f:e4:02:8d:18:
67:0d:37:a0:40:00:e3:5f:9c:f2:86:9c:49:78:d1:6c:fd:2f:
da:a2:d1:df:86:20:77:c4:28:20:3b:ee:b3:b6:e0:a7:3d:7c:
64:d4:af:97:08:5a:8e:a5:bb:1b:11:63:ec:ac:b5:9d:4b:aa:
17:6e:4e:e0:67:34:97:d1:c2:4f:d7:26:2e:b1:29:9f:3b:8a:
fe:9d:90:67:8d:16:8b:39:d0:b7:e0:47:5a:bc:4a:c1:20:d6:
46:7e:30:a3:31:15:76:f1:ae:6e:44:21:ed:f1:41:8a:d1:c5:
a2:be:77:c4:01:80:be:a1:67:6d:af:61:0f:fc:c7:f8:ce:56:
4f:72:77:5b:8e:d4:59:63:57:63:fd:71:1a:6a:d3:28:13:ea:
74:0e:4f:73:43:44:cd:38:05:74:d3:53:a2:2b:d3:be:4b:09:
75:18:fb:5a:28:53:24:34:0b:4a:94:14:f9:d9:87:78:aa:04:
f8:55:22:dc:2b:97:96:09:24:fe:df:53:8d:97:03:90:74:8b:
5a:a8:4e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:58:54 2025 by rpki-client