Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A604B07CC36411EFADA2499B762E951A.roa
File: A604B07CC36411EFADA2499B762E951A.roa (raw, json)
Hash identifier: aUaGkAcYPiPRm2S+FOyAIw07urunEuEfH2hcGNAxShU=
Subject key identifier: 85:9E:B3:8D:DA:C6:5A:7A:AC:43:D5:38:82:97:F1:19:09:BA:28:59
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01269A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A604B07CC36411EFADA2499B762E951A.roa
Signing time: Thu 26 Dec 2024 08:37:32 +0000
ROA not before: Thu 26 Dec 2024 08:37:29 +0000
ROA not after: Sun 12 Dec 2027 08:37:29 +0000
asID: 17561
IP address blocks: 154.93.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75418 (0x1269a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 08:37:29 2024 GMT
Not After : Dec 12 08:37:29 2027 GMT
Subject: CN=676d15cc-9899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:41:76:b0:bb:fb:11:03:24:59:e8:b3:5f:8e:
28:19:fb:0e:62:ca:fa:f6:93:34:ee:7a:5a:75:c4:
ca:92:ee:99:54:24:86:0a:96:f0:9c:84:82:ea:21:
dd:53:50:5e:f6:09:18:3c:3d:c2:6f:46:2d:39:b1:
7d:28:82:0c:7b:04:4d:45:4e:3e:00:75:1e:fe:17:
68:10:20:5d:f9:5c:29:4d:b6:c8:94:80:f3:7f:59:
5a:94:8b:d2:81:38:f7:d3:c4:33:54:1f:82:c2:41:
7b:c3:af:d3:de:90:26:d0:0c:d6:a9:1a:5e:3c:75:
f9:87:82:f0:75:46:35:15:59:44:26:15:52:ac:1a:
4e:bf:a5:14:7e:50:69:cf:d3:d0:92:62:27:60:05:
3a:9c:9c:ba:fb:39:2d:9d:2c:c6:8e:54:af:e9:f7:
b1:55:61:c8:bf:eb:4a:8a:1b:ab:03:97:02:90:6b:
26:58:0d:68:b9:82:6b:b6:0d:98:28:3e:f9:0c:c5:
b9:90:91:f5:3e:34:f0:4e:2a:93:03:f5:45:77:8d:
e7:3e:ed:8f:ce:b4:1d:7e:94:ba:bb:88:40:21:9a:
d8:c9:b5:7a:e3:cc:1a:f6:31:9e:32:1b:dc:11:eb:
fb:89:b0:e2:8a:59:ea:86:0f:7d:30:eb:8b:76:b5:
4f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:9E:B3:8D:DA:C6:5A:7A:AC:43:D5:38:82:97:F1:19:09:BA:28:59
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A604B07CC36411EFADA2499B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.29.0/24
Signature Algorithm: sha256WithRSAEncryption
84:c2:f4:93:a1:a0:f3:eb:a1:ab:66:58:4b:6f:e2:92:5a:b9:
bd:31:02:74:94:78:5e:fa:0f:57:2c:2f:40:1b:d7:08:57:58:
62:ea:2f:a7:ca:54:dc:36:96:c0:51:be:4a:e2:06:5c:e0:21:
ab:17:1d:78:0b:e3:73:66:4b:e7:30:67:48:27:d0:40:d5:47:
f0:25:f6:cc:7f:5e:6c:a9:84:13:8a:a1:7e:4a:11:1c:a9:22:
2d:31:82:76:3c:53:47:17:5e:dd:4a:e7:f3:7f:6f:37:57:98:
e0:ab:b3:0a:fa:f8:0d:2e:9f:3e:9d:c4:ca:85:53:21:5d:56:
fb:82:7a:6a:ff:a0:ac:df:b5:ea:bb:3f:82:6f:98:0d:f2:93:
cc:52:83:ac:e1:a5:f4:98:ba:17:54:a4:b4:14:f6:37:7d:ae:
b6:72:b5:9d:0e:b8:0e:0c:a2:68:34:78:7f:df:45:14:52:4a:
5a:a9:3e:8b:9b:e1:e4:fa:c1:61:e2:33:7a:b3:c9:65:76:2e:
83:4e:ca:6a:86:bc:a2:8f:4c:25:46:a7:dc:c6:26:1e:53:af:
0b:45:23:e5:86:a1:fe:c5:5f:3c:b4:5b:fd:1e:4e:91:53:4e:
a7:ba:92:85:a7:94:92:85:b6:05:15:b8:ff:6d:c6:76:c0:8e:
47:60:2e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:50:42 2025 by rpki-client