Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AD43D82F42211EFBB892877762E951A.roa
File: 9AD43D82F42211EFBB892877762E951A.roa (raw, json)
Hash identifier: +UOOJKFfTF3cTvFb8q+T3793QIGJ9f1Z2MbfwTMbwnI=
Subject key identifier: A5:BE:26:23:A8:BF:DF:39:87:E2:06:4C:E3:A0:EB:4E:11:DB:DD:63
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0161B6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AD43D82F42211EFBB892877762E951A.roa
Signing time: Wed 26 Feb 2025 09:18:13 +0000
ROA not before: Wed 26 Feb 2025 09:18:10 +0000
ROA not after: Thu 19 Feb 2026 09:18:10 +0000
asID: 328608
IP address blocks: 154.200.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90550 (0x161b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 09:18:10 2025 GMT
Not After : Feb 19 09:18:10 2026 GMT
Subject: CN=67bedc55-3a51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:98:bc:2e:d7:ab:ee:2b:9e:e2:01:7a:95:82:
0e:55:3a:9e:43:7d:f8:d7:ad:f4:f8:b6:57:52:6d:
3b:ec:2f:39:55:d0:23:39:a2:34:82:19:34:ec:43:
26:fd:45:9e:a8:97:e1:9d:9e:11:10:9b:93:53:60:
2c:56:09:ee:30:e5:2d:47:c6:20:0e:64:39:c0:0c:
fa:7e:56:20:aa:5a:26:54:c9:1c:e8:40:9b:fd:93:
ea:2a:d1:29:e0:0f:5e:19:de:67:14:fe:c8:19:4e:
8e:fa:ac:e8:aa:e6:43:86:0e:b4:3f:5b:4e:d3:26:
81:cf:2d:c1:cd:55:af:e9:1d:fb:9e:7e:16:41:5c:
ea:b3:19:2f:e7:05:e1:15:6b:96:91:28:d2:90:da:
87:fe:10:9b:71:ff:bf:71:93:5c:6a:ed:3f:36:11:
2c:e5:b0:a6:39:5c:e0:bb:72:70:e8:10:e2:15:7e:
86:41:54:9f:5a:3b:17:8f:20:8d:f1:55:bb:2c:d1:
d6:34:20:35:6b:de:b1:8b:7e:fc:17:8c:b7:5d:77:
64:7b:f5:7b:82:80:91:cd:63:4a:29:da:39:0e:31:
50:f4:27:c2:a4:13:1f:c1:84:5f:80:8b:21:9f:24:
88:47:cb:1a:13:8a:26:97:15:3e:ff:ce:3f:7b:d8:
c3:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:BE:26:23:A8:BF:DF:39:87:E2:06:4C:E3:A0:EB:4E:11:DB:DD:63
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9AD43D82F42211EFBB892877762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.223.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:92:c1:5c:b7:06:ff:0d:05:16:88:9c:68:e0:0b:2f:39:5a:
56:62:5b:d8:a0:cd:74:f0:04:e5:80:24:fe:20:ef:67:5e:80:
ed:56:06:95:96:29:3c:a6:0d:8f:e2:39:4b:60:84:87:17:d0:
69:2e:86:7f:de:8d:7a:c7:e4:9a:13:a8:5a:91:aa:31:b8:bc:
bc:2a:b7:1d:cb:43:07:49:8e:30:6b:95:bb:bc:91:f3:1d:0b:
2c:f0:1a:97:5d:b7:40:eb:4e:40:0e:ab:da:4b:35:d9:49:10:
66:48:5c:80:82:87:fb:d3:22:a9:d7:8a:90:ac:f9:43:3e:4a:
a3:74:7a:88:dd:ce:9e:ad:00:3e:85:dd:80:7d:af:8e:54:49:
25:b9:06:ad:d6:9b:32:4d:a6:2d:b3:71:62:f1:24:f3:6c:20:
fe:b5:38:e2:f9:66:b9:8a:69:3d:20:f0:4b:56:99:74:b3:5f:
d7:be:7b:c5:8e:eb:ab:a3:57:02:a2:27:da:ab:6d:6c:63:4d:
36:03:d7:fb:6c:17:71:1b:84:a0:19:4d:50:4b:c7:9d:50:be:
ec:61:13:6d:8c:6d:88:ba:38:2b:58:6f:61:08:2b:d4:b2:f3:
1c:39:aa:49:06:ef:c4:75:ca:d6:26:69:9f:08:1b:23:f4:ed:
f1:cf:4b:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:50 2025 by rpki-client