Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95EDEDE8C8A511EFB6950074762E951A.roa
File: 95EDEDE8C8A511EFB6950074762E951A.roa (raw, json)
Hash identifier: q0EA0l7TmZ05LRGP9igV1LZd+y+qjkUsEpdJGRIgEPU=
Subject key identifier: 4C:AC:D0:1E:22:FA:BD:74:D4:13:4A:1C:08:87:4D:16:A4:5C:31:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013146
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95EDEDE8C8A511EFB6950074762E951A.roa
Signing time: Thu 02 Jan 2025 01:04:58 +0000
ROA not before: Thu 02 Jan 2025 01:04:55 +0000
ROA not after: Sun 12 Dec 2027 01:04:55 +0000
asID: 17561
IP address blocks: 154.219.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78150 (0x13146)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 01:04:55 2025 GMT
Not After : Dec 12 01:04:55 2027 GMT
Subject: CN=6775e63a-493f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ea:29:c2:00:46:77:53:51:73:6e:91:18:c5:
1b:0c:dc:05:48:b2:4b:01:2a:bd:c2:a3:e8:a0:72:
67:56:8f:d7:b5:20:77:1a:08:1c:d0:5a:22:4f:74:
8f:bc:f9:d8:28:e0:5d:29:97:2e:b0:a2:7a:24:ec:
da:27:c6:86:dd:20:a9:e2:66:eb:38:26:4d:62:a9:
ef:ed:60:f7:f5:af:15:65:ba:9a:fd:47:f3:a5:c5:
30:68:7b:8d:2a:c4:b8:49:4c:65:e5:e7:1c:73:a0:
25:7a:7f:60:a0:bd:49:a7:20:79:28:67:16:36:e3:
2d:01:3a:cf:3f:4e:85:40:82:19:13:cd:87:89:e1:
71:30:a0:ec:89:3b:35:a2:eb:0d:2e:e6:47:66:28:
d7:5c:17:0c:5a:e9:4e:68:11:5e:de:a5:5b:59:b6:
ba:dc:25:ea:0b:c7:5c:b9:7c:28:53:03:46:5f:5a:
cd:f2:a1:f1:49:28:34:f6:97:29:10:6d:5a:87:a6:
0f:24:9a:6f:91:7d:0b:db:9e:0b:3c:82:bf:ad:9a:
23:59:9b:56:0b:14:d6:dd:46:af:da:b5:97:75:87:
41:50:65:52:a1:dd:39:a2:63:32:ad:9c:e2:7c:5a:
b3:7e:11:04:1a:d7:9d:31:27:af:6c:61:dd:da:13:
c7:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:AC:D0:1E:22:FA:BD:74:D4:13:4A:1C:08:87:4D:16:A4:5C:31:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95EDEDE8C8A511EFB6950074762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.0.0/24
Signature Algorithm: sha256WithRSAEncryption
09:36:ae:5a:df:01:55:25:d8:0d:e7:ba:a3:ab:74:8b:d5:a3:
0c:d4:58:75:64:c4:15:5b:6e:24:4e:ab:42:bf:d6:96:ef:ea:
35:c4:d2:d0:7d:c7:42:d6:a5:eb:1d:03:01:ae:47:33:cd:6d:
95:58:8c:1b:40:5d:27:18:88:99:41:20:92:50:e1:e0:e6:35:
47:d5:6b:7a:e5:b1:4a:32:7c:48:83:5a:6e:79:68:35:4c:5c:
b3:df:0b:2c:03:b5:68:31:64:76:e1:35:9c:ae:bc:64:a9:6e:
10:1d:8b:1d:52:5a:e7:e4:11:3c:68:ca:5b:0e:b8:a3:63:17:
a1:a9:c4:6f:f1:ed:58:70:20:6b:7d:7c:05:1c:43:e6:70:8d:
68:b7:fc:b8:78:0d:9a:5f:cd:59:58:d9:1c:56:36:43:4a:87:
ec:d6:a5:17:20:cd:2f:72:bf:2c:63:82:19:da:29:72:c4:02:
d6:84:ce:df:30:6e:77:ef:a3:60:ed:06:de:9a:20:fe:9d:6c:
4d:07:7b:09:fa:ad:dd:62:37:fc:14:b7:2f:64:8d:34:7d:18:
4e:78:15:3f:0b:ff:08:92:f6:d1:98:94:96:83:73:da:b1:c9:
a7:48:9d:b3:18:49:e5:be:65:fc:c0:e2:8a:ac:e1:a5:1f:61:
56:e2:8f:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:58:40 2025 by rpki-client