Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2F0034ABE9211EFAF760D9B762E951A.roa
File: A2F0034ABE9211EFAF760D9B762E951A.roa (raw, json)
Hash identifier: i+XDIw1kNWQ1jtrOeUSXcaxANtJmOdyon/H2zgtcfN4=
Subject key identifier: B6:36:A2:07:E9:EC:88:BC:60:28:29:70:FF:F3:5B:7A:70:B4:E6:45
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011C22
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2F0034ABE9211EFAF760D9B762E951A.roa
Signing time: Fri 20 Dec 2024 05:24:08 +0000
ROA not before: Fri 20 Dec 2024 05:24:04 +0000
ROA not after: Wed 10 Dec 2025 05:24:04 +0000
asID: 984
IP address blocks: 154.82.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72738 (0x11c22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 20 05:24:04 2024 GMT
Not After : Dec 10 05:24:04 2025 GMT
Subject: CN=6764ff78-ff86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:7a:3c:64:67:7e:9e:f1:89:89:a1:98:e7:f7:
d9:6d:6d:1b:64:22:9c:a1:66:c4:73:27:70:22:70:
61:20:a7:f0:65:db:7a:b3:11:fc:86:a4:e0:5d:a4:
77:cb:70:49:63:fb:60:c1:06:97:5f:00:40:28:5b:
f4:f9:f0:7d:5c:87:ae:76:02:b7:21:4a:bb:58:58:
b2:8b:80:3e:b9:7b:2b:19:a8:7a:7f:59:49:6f:bd:
c8:68:f4:41:b3:2d:cb:c1:18:a3:17:2d:20:9f:7f:
f4:d3:07:f6:a3:0c:8d:66:b5:b6:8e:5b:60:cb:03:
9b:4f:db:dd:c8:f5:64:d4:d4:d8:23:52:2a:3f:c8:
7f:02:d0:37:b7:b1:00:68:bb:a2:59:c0:c7:33:82:
e2:b0:2a:56:bf:c6:b6:5f:e3:d2:3e:a3:62:32:e7:
ef:11:ca:ea:90:58:92:46:52:9c:ca:c1:15:1d:f7:
09:b0:04:9e:36:59:71:3e:9e:cb:39:78:fc:a8:08:
4a:da:f6:94:97:c5:ea:9a:70:1d:b1:bb:29:26:95:
01:0d:2c:51:b3:2f:c3:40:18:5d:8b:85:ae:55:fb:
e1:9a:a9:83:67:bb:4e:a0:95:4a:cd:ee:90:df:db:
09:76:67:2b:18:a2:44:0e:1a:4d:da:2d:cf:0a:47:
12:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:36:A2:07:E9:EC:88:BC:60:28:29:70:FF:F3:5B:7A:70:B4:E6:45
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2F0034ABE9211EFAF760D9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.190.0/24
Signature Algorithm: sha256WithRSAEncryption
11:24:2a:bc:31:2d:4c:da:a5:9b:87:9f:73:73:c3:d1:43:a5:
52:bb:12:03:2c:04:28:11:dd:2e:64:48:1c:06:0b:92:9e:b5:
41:19:fe:5d:ba:2d:bf:79:03:69:34:16:e9:d5:0a:87:18:b6:
52:bf:bf:16:4d:33:1e:3d:8a:2a:b2:32:d3:99:1b:9e:fb:89:
41:41:66:71:5f:38:3f:20:e3:41:5e:a8:2b:81:62:60:08:d1:
cb:db:fa:90:e0:f5:c4:8b:2d:dd:e7:a4:3b:0f:55:a3:88:4f:
b3:f6:5b:fa:ac:e7:ac:4a:40:24:60:22:3a:21:56:93:39:a3:
05:af:a2:35:8b:b8:15:dc:2b:ea:37:77:76:cf:50:76:49:84:
02:59:49:fe:40:67:ac:53:44:e0:7f:f0:c0:bc:b4:98:ae:3d:
dc:02:74:0d:03:09:1a:8d:ae:d2:db:e0:96:51:b8:de:ed:5f:
b7:b4:ff:8e:da:7e:c6:74:e9:e1:3a:f5:c4:7c:2d:39:d9:2f:
df:ca:90:bd:9d:0c:e1:79:81:f2:92:be:93:f5:b3:16:cb:9c:
19:3f:00:9d:80:4d:bc:48:6f:b8:d1:45:18:cb:47:a9:9b:d8:
dc:84:5d:cc:f7:61:c9:3e:5f:2a:eb:5f:d5:24:12:3e:8d:c5:
f9:ed:f9:ff
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDARwiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjIwMDUyNDA0WhcNMjUxMjEwMDUyNDA0WjAYMRYw
FAYDVQQDEw02NzY0ZmY3OC1mZjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA43o8ZGd+nvGJiaGY5/fZbW0bZCKcoWbEcydwInBhIKfwZdt6sxH8hqTg
XaR3y3BJY/tgwQaXXwBAKFv0+fB9XIeudgK3IUq7WFiyi4A+uXsrGah6f1lJb73I
aPRBsy3LwRijFy0gn3/00wf2owyNZrW2jltgywObT9vdyPVk1NTYI1IqP8h/AtA3
t7EAaLuiWcDHM4LisCpWv8a2X+PSPqNiMufvEcrqkFiSRlKcysEVHfcJsASeNllx
Pp7LOXj8qAhK2vaUl8XqmnAdsbspJpUBDSxRsy/DQBhdi4WuVfvhmqmDZ7tOoJVK
ze6Q39sJdmcrGKJEDhpN2i3PCkcSWwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLY2
ogfp7Ii8YCgpcP/zW3pwtOZFMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BMkYwMDM0QUJFOTIxMUVGQUY3NjBEOUI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlK+MA0GCSqGSIb3DQEB
CwUAA4IBAQARJCq8MS1M2qWbh59zc8PRQ6VSuxIDLAQoEd0uZEgcBguSnrVBGf5d
ui2/eQNpNBbp1QqHGLZSv78WTTMePYoqsjLTmRue+4lBQWZxXzg/IONBXqgrgWJg
CNHL2/qQ4PXEiy3d56Q7D1WjiE+z9lv6rOesSkAkYCI6IVaTOaMFr6I1i7gV3Cvq
N3d2z1B2SYQCWUn+QGesU0Tgf/DAvLSYrj3cAnQNAwkaja7S2+CWUbje7V+3tP+O
2n7GdOnhOvXEfC052S/fypC9nQzheYHykr6T9bMWy5wZPwCdgE28SG+40UUYy0ep
m9jchF3M92HJPl8q61/VJBI+jcX57fn/
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:55:34 2025 by rpki-client