Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AB7B3F2C34D11EFACCCD289762E951A.roa
File: 9AB7B3F2C34D11EFACCCD289762E951A.roa (raw, json)
Hash identifier: ac0KodPNGXh1ekzPJZj2Vt/qv/t2O1kmZxuxIClOzGk=
Subject key identifier: D5:D9:2A:F5:11:5A:EB:9A:D4:25:92:76:67:D6:E6:D8:6A:3F:58:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012583
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AB7B3F2C34D11EFACCCD289762E951A.roa
Signing time: Thu 26 Dec 2024 05:52:35 +0000
ROA not before: Thu 26 Dec 2024 05:52:31 +0000
ROA not after: Sun 12 Dec 2027 05:52:31 +0000
asID: 17561
IP address blocks: 154.95.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 09 Apr 2025 17:49:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75139 (0x12583)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 05:52:31 2024 GMT
Not After : Dec 12 05:52:31 2027 GMT
Subject: CN=676cef23-5635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6b:28:0e:d6:53:5b:16:d4:21:d0:08:e6:f6:
ca:ae:ed:9e:6f:74:77:f2:c1:53:81:62:f9:d7:59:
01:d9:c4:b0:45:df:8d:c3:b5:1c:e0:db:d7:50:66:
26:cf:f3:3f:4e:de:aa:c1:8f:c2:68:85:ad:10:2b:
e0:72:3f:97:be:69:36:4c:c3:05:17:b4:dc:23:0a:
aa:e1:dd:91:1c:2f:eb:78:8f:66:26:49:6c:b8:e9:
e7:4d:6e:0f:a6:c3:28:65:2b:f4:03:b5:aa:8d:f3:
8c:75:07:0c:1f:b2:fc:31:bb:31:d1:ff:95:9c:e1:
12:a2:1d:e7:5b:4c:bc:27:f2:cc:1f:eb:c3:a5:20:
ff:16:1e:c1:2c:ee:a9:17:75:28:32:53:36:22:6a:
17:6b:79:39:89:34:09:85:b9:58:6b:43:8d:66:8e:
3f:9e:de:ab:e7:47:2a:19:31:fa:c1:cb:b6:9f:8e:
14:5d:ed:a7:73:70:33:1c:b9:52:a7:17:c2:8d:25:
95:f4:1f:76:3d:c4:4d:65:5f:6e:46:6d:9d:25:a7:
1b:b8:70:2b:6e:17:48:c9:8a:fa:78:82:93:c6:4f:
93:28:d6:e9:7c:40:17:84:3c:40:25:8c:1f:fc:de:
c0:e5:d0:93:ea:b9:81:6a:b2:47:92:b8:80:b0:fc:
88:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:D9:2A:F5:11:5A:EB:9A:D4:25:92:76:67:D6:E6:D8:6A:3F:58:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AB7B3F2C34D11EFACCCD289762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.2.0/24
Signature Algorithm: sha256WithRSAEncryption
30:fd:0d:a9:eb:e9:a0:be:15:93:ef:cd:69:bf:5c:70:eb:2e:
ca:dd:8b:ae:73:07:00:31:3a:8b:7d:12:7f:62:5b:ca:fa:43:
f9:17:19:62:5e:d7:13:74:4f:ad:61:b0:ca:29:93:90:c8:14:
78:31:f5:e8:a8:d6:46:50:13:6e:c3:44:59:e0:ef:1c:41:b1:
96:34:4d:c9:a4:f1:75:3c:09:87:f1:8d:c6:f5:a8:c0:84:66:
4e:3d:ac:82:a6:da:e5:e3:c3:00:9c:cc:f6:ae:51:29:ac:94:
2f:6e:5c:c3:91:ef:f2:b8:b1:ce:f2:52:7c:a0:89:79:e5:71:
74:29:62:c7:45:b4:00:d5:cb:26:3f:31:3e:ad:1e:d3:41:18:
d9:d2:67:38:a1:f6:84:0e:e5:2f:64:2d:f7:44:59:84:9b:43:
7e:37:fb:78:3f:56:69:a8:72:aa:ea:d8:e5:5c:1a:fc:38:25:
09:70:70:28:9d:db:7f:76:00:9a:e3:5c:4e:b7:73:0b:47:1a:
26:8c:38:c1:a0:7d:12:1a:ef:90:07:9d:e9:ea:6d:11:d1:d8:
3c:51:71:71:85:55:ee:8e:12:61:03:26:b7:08:c8:ea:6c:bc:
7f:e3:e7:7a:f0:c7:35:98:2b:aa:fa:57:b5:90:0d:f0:be:c3:
9e:38:49:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:55:20 2025 by rpki-client