Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A73A5B72C61611EFA19E8CB2762E951A.roa
File: A73A5B72C61611EFA19E8CB2762E951A.roa (raw, json)
Hash identifier: iFTWwkMt7h0X0wFSGaN7Z0lXK809Om8DgN3Nz09Meb0=
Subject key identifier: 98:14:7A:9C:B6:07:B7:47:C6:46:A9:BE:A3:BF:99:26:A9:01:18:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012F16
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A73A5B72C61611EFA19E8CB2762E951A.roa
Signing time: Sun 29 Dec 2024 18:56:47 +0000
ROA not before: Sun 29 Dec 2024 18:56:43 +0000
ROA not after: Sun 12 Dec 2027 18:56:43 +0000
asID: 17561
IP address blocks: 154.217.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77590 (0x12f16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 18:56:43 2024 GMT
Not After : Dec 12 18:56:43 2027 GMT
Subject: CN=67719b6f-cead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f2:08:82:8d:66:0d:9e:83:84:e2:c9:2b:65:
dc:4d:66:f7:94:74:66:ea:5a:65:12:d1:11:97:75:
8e:28:ab:9a:3b:0c:ed:90:1a:3e:b7:fe:76:1a:66:
6f:e7:20:14:d9:1b:f7:04:5d:2a:d2:26:85:79:39:
8d:5a:39:40:29:9f:f0:a7:b5:23:3d:e3:26:7a:33:
19:19:a8:18:be:3b:3f:70:46:0f:8c:23:86:2f:14:
68:8f:92:f1:a8:9e:b6:43:3d:58:cd:3b:d1:0d:fb:
fe:0b:57:0b:a3:2c:5e:a3:09:25:70:39:3b:09:04:
32:50:0a:68:62:1c:66:9a:eb:22:0c:35:25:d7:df:
02:ec:cd:28:df:c5:a8:b6:a9:35:17:ee:e6:a0:fa:
d1:5d:d5:e1:23:e1:a6:5b:25:34:4c:b9:46:b6:ac:
6d:ff:a5:78:19:7b:d9:20:4d:18:e4:a4:08:4a:33:
9a:5f:bd:ff:b3:cd:90:5b:d9:b8:3a:77:4b:ff:da:
17:b3:f3:ae:76:9d:b5:8b:94:0e:2d:41:d9:13:b0:
e2:60:b5:62:3e:e1:c4:2e:01:53:e7:55:81:26:23:
64:0c:06:32:59:f6:f8:bc:3f:f1:cc:64:9d:27:96:
b8:32:98:5e:a9:b0:cc:ea:2e:b2:d5:73:f4:af:33:
39:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:14:7A:9C:B6:07:B7:47:C6:46:A9:BE:A3:BF:99:26:A9:01:18:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A73A5B72C61611EFA19E8CB2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.110.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:02:3c:55:23:3b:f6:a0:27:56:fd:77:19:a0:f7:94:13:0e:
b0:0a:f3:cf:3f:6f:2c:ce:5b:15:cb:8c:a9:65:f8:2b:a8:b4:
bf:b2:66:a7:4c:52:75:54:9d:eb:1d:44:5d:d8:01:94:2e:bb:
62:63:46:df:5d:5a:89:1b:cb:72:23:f6:c5:5c:66:15:d1:e9:
71:9a:61:6a:11:15:fb:df:c9:18:b3:77:11:17:63:f6:fc:81:
e8:95:44:9f:cc:2e:60:77:15:43:0f:8b:63:72:01:dc:b8:10:
36:fb:6a:83:d4:fb:b6:49:78:c9:b3:a3:b1:0b:9e:ae:31:4d:
f7:e7:da:5c:a3:83:3d:99:a8:e3:ee:fb:82:0e:ee:98:55:fa:
68:73:02:7b:63:f1:d9:9f:c3:e1:21:87:c0:92:0d:e5:d5:34:
20:cd:7b:3c:cd:f5:3d:f1:58:06:5c:f7:5e:db:83:d7:08:cb:
4b:62:3c:5f:0c:e7:96:f4:69:bf:64:fb:2e:0d:ac:1c:13:8b:
61:a4:a7:c6:e0:52:ff:fe:34:3b:34:3f:74:2d:b9:9e:d2:28:
41:27:be:0d:a6:8a:e5:0e:f7:92:e4:12:25:c1:e2:70:41:33:
37:60:73:fa:bf:53:ad:36:76:29:be:4b:6b:07:13:55:43:20:
f0:23:07:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:18:36 2025 by rpki-client