Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9034571CF46E11EFB3F79D8C762E951A.roa
File: 9034571CF46E11EFB3F79D8C762E951A.roa (raw, json)
Hash identifier: vQHjq2C+Sh/+lEJsIVS/LuoyUuUdrzh5dP8UMRXPmqg=
Subject key identifier: 35:4A:BF:C5:AC:37:5E:DC:3E:EC:A7:DD:8A:41:D6:56:FE:20:E2:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016558
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9034571CF46E11EFB3F79D8C762E951A.roa
Signing time: Wed 26 Feb 2025 18:21:57 +0000
ROA not before: Wed 26 Feb 2025 18:21:54 +0000
ROA not after: Sat 19 Feb 2028 18:21:54 +0000
asID: 17561
IP address blocks: 154.201.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 12:38:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91480 (0x16558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 18:21:54 2025 GMT
Not After : Feb 19 18:21:54 2028 GMT
Subject: CN=67bf5bc5-e752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d2:07:ae:5d:69:7b:8d:f0:8b:19:55:dd:d2:
a9:56:19:7c:d5:31:94:67:33:47:cf:ac:0b:2f:0a:
69:f3:bc:87:50:a9:b7:3f:67:76:bf:8e:16:fc:5f:
c2:4c:6e:49:ce:32:fc:47:a4:1c:c5:a2:6e:7d:b7:
01:97:10:f8:69:57:6a:16:e7:d1:b5:da:fe:df:80:
84:aa:e0:e6:5b:9e:f1:eb:b9:63:3b:da:0a:44:d0:
f1:07:63:6e:ee:3c:c4:81:dd:2a:7d:38:b2:7a:86:
94:7e:75:66:b9:3c:3f:07:69:25:9d:a1:68:3d:9a:
66:8b:0a:94:ba:3a:ba:1b:88:53:ef:7c:40:2f:7e:
00:6b:88:ba:b7:5d:66:29:40:f3:b3:18:17:76:9e:
44:07:69:3b:1f:04:4e:22:14:34:1b:0d:d4:90:15:
f2:e6:d1:80:8d:87:5d:f3:92:b5:0b:55:ff:1d:d1:
5d:b0:37:c0:2a:b9:24:a1:a5:b1:89:90:b8:bc:ff:
94:db:5b:e0:58:f4:e9:39:c4:cd:e2:d0:8e:9a:52:
40:50:1a:f5:4c:18:3a:d7:54:c6:a0:74:7b:b9:de:
1d:1b:3e:1f:ba:8e:7f:1b:a0:ea:5f:90:c2:97:c3:
bc:e1:8d:79:53:2d:e3:d8:3c:98:f6:4a:c8:d8:e8:
e3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:4A:BF:C5:AC:37:5E:DC:3E:EC:A7:DD:8A:41:D6:56:FE:20:E2:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9034571CF46E11EFB3F79D8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.15.0/24
Signature Algorithm: sha256WithRSAEncryption
18:30:60:75:6d:2e:35:4f:d0:47:e4:a8:1b:6e:e0:e4:31:84:
dc:d0:35:37:7d:59:70:17:7e:6e:b5:02:72:c9:30:67:d2:a7:
74:46:36:dc:84:ac:68:ed:01:00:7f:4e:e2:dc:0b:31:08:cf:
38:22:73:ef:58:b7:26:0e:20:5f:e0:7b:dd:c1:b4:16:2b:1b:
10:64:cf:e9:53:f8:7b:55:a1:a6:af:f7:81:ce:ec:e7:12:02:
a4:d0:c4:0b:02:3d:51:a1:43:76:7d:19:52:87:ff:26:5d:c1:
0f:a2:51:40:08:e8:e4:c2:7c:dd:ef:f5:22:37:2d:df:97:94:
24:29:aa:7d:df:08:1b:c6:35:5d:6b:bd:32:9e:2e:a3:66:cf:
a0:6b:fa:19:1c:ce:27:a4:3f:11:e4:86:09:b2:86:ba:0d:10:
ab:a7:c6:8e:c4:d2:4e:2b:5f:6b:6c:63:86:9b:17:76:a8:c2:
b1:2b:eb:30:fd:66:15:d0:2b:91:77:10:a9:a0:e1:95:d6:40:
3f:4d:85:b4:4c:b2:14:93:f0:6e:f5:80:a5:db:ab:59:bf:b8:
c3:1c:42:6c:a0:3a:45:c9:00:cc:5f:a4:04:a0:09:09:03:cf:
a1:4d:61:2a:81:61:b1:5f:1d:80:a0:01:1a:0e:ce:d9:68:e3:
b6:61:72:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:53:11 2025 by rpki-client