Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A27B42FEC0F311EF9DCB0294762E951A.roa
File: A27B42FEC0F311EF9DCB0294762E951A.roa (raw, json)
Hash identifier: xaIbFK30yIvVZpDbfMPYSzkuX5E11wSmQIWyENZBnWQ=
Subject key identifier: E6:5E:77:CF:C4:61:69:17:AE:1E:31:53:58:75:15:2F:3F:D3:1A:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011F76
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A27B42FEC0F311EF9DCB0294762E951A.roa
Signing time: Mon 23 Dec 2024 06:03:31 +0000
ROA not before: Mon 23 Dec 2024 06:03:27 +0000
ROA not after: Wed 10 Dec 2025 06:03:27 +0000
asID: 984
IP address blocks: 154.90.113.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73590 (0x11f76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 06:03:27 2024 GMT
Not After : Dec 10 06:03:27 2025 GMT
Subject: CN=6768fd33-d1b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2c:20:c7:0b:ad:04:91:42:34:fb:46:3b:d6:
d2:bf:83:a2:16:90:56:53:4e:45:5a:9a:ab:ca:d8:
95:dd:ca:da:07:cf:57:f6:93:70:25:c5:2e:93:34:
56:08:ff:5c:a2:af:89:68:ab:08:05:2e:33:2f:8b:
1b:41:12:3f:39:0f:47:96:d5:7c:cc:44:23:1e:c4:
7e:13:e0:d6:38:7f:7f:21:03:35:ab:60:76:a2:00:
52:21:e4:0f:e9:e5:84:cf:b5:cf:77:dc:de:e2:9b:
10:98:35:31:32:de:5f:d6:4f:d2:a9:f8:7b:61:bc:
56:cf:86:b3:24:c6:16:c4:10:e5:d6:a1:4a:2d:f9:
7d:ad:ef:6c:ce:6f:ca:97:ed:ad:24:ac:ed:64:70:
8f:3f:39:2e:10:4c:92:3e:62:b3:f2:77:9c:ed:e3:
13:db:75:e6:f4:56:4d:3d:7e:a5:da:09:ef:a0:cf:
9b:85:85:9e:0a:ce:20:b7:cd:54:81:44:7e:56:f3:
48:86:24:49:6b:ac:06:a7:43:0b:c2:55:06:9f:10:
74:9c:d1:3a:93:77:18:09:50:64:c0:1c:3e:06:e6:
08:9a:05:0e:07:8c:d6:22:54:fc:80:b7:33:bd:4a:
0a:e4:db:e6:4c:cb:fc:b4:ad:fe:cc:36:19:a1:45:
44:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:5E:77:CF:C4:61:69:17:AE:1E:31:53:58:75:15:2F:3F:D3:1A:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A27B42FEC0F311EF9DCB0294762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.113.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:76:4b:b2:89:91:4f:ad:b5:ef:85:08:b0:50:a0:91:5d:4f:
c8:3a:b1:10:ea:f3:71:09:ed:b3:8f:ad:ce:e4:93:1c:13:51:
0a:19:cb:ab:a6:dc:94:c7:2f:4d:c9:8a:e2:c8:90:40:e6:3a:
01:1e:0d:dc:a0:eb:12:30:2b:49:18:43:8c:45:00:a3:c4:92:
c7:2d:0f:55:ba:e1:8d:45:ad:46:57:20:b3:d0:1d:90:5f:51:
93:b2:2d:bd:2f:c9:f2:65:1f:57:d5:dd:ef:08:5f:df:1e:80:
cb:9a:15:ae:36:80:11:36:f5:8a:96:e4:1e:97:15:81:31:5e:
44:b7:c0:33:78:e4:7d:d6:aa:51:b8:da:53:6e:2d:8d:85:c0:
22:db:ec:bb:97:d4:e7:99:81:fd:a7:0d:be:de:8e:93:64:ea:
05:81:a5:f8:c0:34:43:72:09:16:f2:79:cb:b7:ba:04:49:5a:
62:9e:88:7d:11:a5:49:00:6a:d5:b5:4f:fa:e3:7f:4f:c9:0c:
61:90:a0:f0:eb:60:59:f4:4f:d4:6b:12:09:60:a1:0c:00:f5:
c3:76:93:fb:17:40:2f:53:5f:da:3e:c3:c0:3a:5e:82:76:6f:
c9:36:61:0d:60:59:96:96:d3:98:f0:ef:db:fd:0a:bf:39:54:
9f:b0:68:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:08:42 2025 by rpki-client