Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0912B0600C811F09117B57C762E951A.roa
File: A0912B0600C811F09117B57C762E951A.roa (raw, json)
Hash identifier: /jguIL+nTUu5SJwF78lk2DMc9EEMTKt5frbokwptFUU=
Subject key identifier: B0:26:FA:04:7E:C1:11:F9:EE:B5:B2:28:CF:64:D8:79:47:6D:54:D9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017454
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0912B0600C811F09117B57C762E951A.roa
Signing time: Fri 14 Mar 2025 11:36:53 +0000
ROA not before: Fri 14 Mar 2025 11:36:49 +0000
ROA not after: Fri 25 Apr 2025 11:36:49 +0000
asID: 401434
IP address blocks: 154.85.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95316 (0x17454)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 14 11:36:49 2025 GMT
Not After : Apr 25 11:36:49 2025 GMT
Subject: CN=67d414d5-c4c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:62:67:64:0d:62:6b:2c:98:7a:e6:6b:ac:c6:
2d:f4:de:64:d0:29:9e:8b:14:a5:ae:13:3f:7d:61:
ca:47:a5:18:1c:50:2f:3a:24:27:7e:24:16:e4:f6:
cf:86:f0:b6:fd:92:d9:37:3c:b2:50:6b:b2:c4:d8:
78:f1:2f:5d:f3:6a:0a:25:a3:86:bb:fd:d5:e1:3e:
29:8b:ee:26:96:3f:3c:7b:55:c6:0e:20:91:07:5d:
65:67:3a:17:65:e8:1f:ab:3a:a9:40:0f:e1:ab:bb:
af:75:6c:54:f0:94:72:2e:f4:85:a9:dd:1e:5e:a3:
36:5d:11:0d:2d:9c:c9:0f:70:cc:cd:55:ab:9c:44:
6d:93:de:9c:e1:f3:50:c4:09:55:08:23:0c:42:6a:
73:39:53:3f:bb:f1:59:96:dd:dc:ef:1e:ea:ed:4d:
87:d5:66:a2:6a:97:29:aa:7b:c7:a1:78:a2:53:70:
be:74:93:a0:2a:02:1c:2d:42:8e:52:46:da:10:5b:
eb:ca:b0:bc:5a:98:ee:e8:ad:79:b8:da:db:05:30:
1e:28:bf:aa:26:e8:9f:af:7d:0c:bd:f0:b8:e2:96:
80:c5:e2:0f:5e:18:26:60:e5:d9:9a:14:cc:76:06:
61:c2:cc:94:57:e0:fc:76:d3:aa:55:fc:6b:0d:01:
27:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:26:FA:04:7E:C1:11:F9:EE:B5:B2:28:CF:64:D8:79:47:6D:54:D9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A0912B0600C811F09117B57C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.16.0/23
Signature Algorithm: sha256WithRSAEncryption
44:a7:c7:9f:7b:01:17:82:2d:93:c1:4f:b0:00:92:10:02:6d:
f6:20:8d:e0:29:e5:93:37:79:20:cb:ed:43:9f:08:3f:a2:39:
e1:97:be:f6:c7:2e:04:91:e3:2d:f9:bc:93:fd:bc:f9:ff:ba:
cc:39:71:69:76:bb:1a:dd:8e:54:15:cf:3a:7a:79:bc:a7:0f:
0e:f4:01:f4:f2:81:d0:d9:10:54:a5:75:87:e4:84:bd:8f:94:
eb:c7:2d:5d:6f:b3:cb:06:c1:27:68:06:a2:39:5d:db:2d:65:
77:62:f8:09:cf:40:3f:8c:30:c8:c9:05:50:f2:39:c6:81:02:
ea:46:7c:7c:1b:80:cf:72:85:b6:27:85:5b:71:2b:50:89:2b:
54:64:8c:c3:7f:2d:94:90:99:f2:50:77:3d:98:e5:ab:02:36:
b2:56:c8:89:21:2a:cc:18:a9:a9:fa:2c:42:96:52:24:45:15:
20:a6:c9:b8:f4:09:72:7d:69:9c:36:a9:7a:60:f6:40:a2:3f:
6f:e8:d0:fa:37:ab:6c:e7:ee:74:e9:77:ae:15:46:89:2a:23:
33:39:09:f7:27:a5:23:c1:1e:de:a1:bf:b5:19:0d:e0:71:3d:
35:cb:3b:69:bb:1e:22:43:90:64:43:c1:15:4f:73:09:84:31:
0a:63:f5:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:00:41 2025 by rpki-client