Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7CAC114F3E611EFB7B53455762E951A.roa
File: A7CAC114F3E611EFB7B53455762E951A.roa (raw, json)
Hash identifier: Y996qH6quX+Zg5F4IWdRIfG66a/M1qiFiVcFIlz4rzg=
Subject key identifier: 19:4C:B1:58:C8:FA:64:59:0E:14:74:2B:B1:5F:F7:B4:97:80:11:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01607A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7CAC114F3E611EFB7B53455762E951A.roa
Signing time: Wed 26 Feb 2025 02:09:06 +0000
ROA not before: Wed 26 Feb 2025 02:09:02 +0000
ROA not after: Thu 19 Feb 2026 02:09:02 +0000
asID: 984
IP address blocks: 154.203.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90234 (0x1607a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 02:09:02 2025 GMT
Not After : Feb 19 02:09:02 2026 GMT
Subject: CN=67be77c1-5023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:73:9f:ae:db:ca:b4:10:3a:52:b7:e7:56:22:
8f:61:dd:b2:83:21:4b:5c:3d:52:f7:18:04:c4:5e:
e0:1d:9c:9b:c0:e9:c8:8b:9c:1a:6e:48:89:0b:65:
0a:95:b9:e9:d8:f5:e5:2d:97:f0:a2:5b:e5:59:59:
ba:03:58:64:e1:07:a4:70:09:2e:6a:bc:e6:ea:c1:
f5:de:ec:bc:b3:d0:9b:6d:3f:94:70:bc:c3:c2:e6:
c6:23:d9:ee:54:4a:8e:eb:8a:8d:d3:42:35:f6:e7:
13:36:b4:46:1d:34:cb:c6:db:85:b2:1a:ee:5e:9b:
37:b9:44:55:7a:26:8b:c4:e1:71:2f:c8:cc:f6:53:
55:8e:88:9b:93:f4:5e:52:d4:6d:e4:fa:82:c2:13:
8d:81:56:8f:56:20:fe:46:b9:31:41:db:55:73:1c:
8a:af:a7:8a:60:a8:ae:d1:48:7e:62:95:d7:a6:14:
5c:d2:8c:9b:7e:8f:9f:9a:49:34:5d:72:d7:8a:e1:
27:ed:89:fe:5e:15:ec:c1:01:87:71:b9:db:df:9c:
ad:8c:41:bd:db:b3:9d:48:b6:8f:9f:e9:d1:c3:c7:
f6:ca:79:55:fd:b1:dc:b9:4e:6e:57:77:9c:1f:fb:
76:93:94:2b:68:84:c5:70:4a:57:2f:63:66:8f:08:
f5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:4C:B1:58:C8:FA:64:59:0E:14:74:2B:B1:5F:F7:B4:97:80:11:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7CAC114F3E611EFB7B53455762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.8.0/24
Signature Algorithm: sha256WithRSAEncryption
72:f0:6a:a4:2f:1b:9e:42:26:21:5f:ac:30:79:70:b5:d7:42:
c5:4d:1b:68:88:24:66:f6:77:a8:c4:d3:0e:e7:65:36:2a:d4:
c4:e7:d6:b9:c5:d2:cd:0c:f9:58:f1:5e:db:6d:f1:19:ae:d4:
a5:c7:ba:36:df:12:6e:19:c9:1d:f0:a5:d5:ca:94:f8:a5:d0:
bb:ed:1f:a7:e7:2c:2d:fd:2a:61:86:2c:17:fd:c3:2d:c2:1a:
5f:5f:63:a2:2f:10:bd:29:52:ef:d9:76:0b:2d:4d:a2:86:c3:
0c:3d:f9:ab:ea:f6:c7:d0:d1:49:5f:9f:b1:9b:80:c3:6b:30:
b0:6a:85:0f:dd:68:aa:96:b9:62:10:6b:bc:a3:71:a3:2f:5c:
f0:8d:7f:06:66:c0:79:c6:f1:48:66:6f:ee:9f:33:27:94:52:
a2:27:70:90:36:7e:29:1c:58:88:14:74:e5:4e:22:cb:16:69:
d5:50:9e:9f:34:bb:2e:11:9a:37:2a:a4:12:b2:56:de:5f:cc:
4e:cb:5f:88:b1:ff:55:03:cf:75:6d:e7:07:2e:c6:0c:c4:cb:
3d:b3:e9:4a:25:d8:73:f1:55:80:d7:e8:1a:e9:26:9a:00:b7:
ab:12:ee:c2:7c:e8:15:41:78:cc:ed:d6:37:6a:f2:ee:18:81:
4d:3b:60:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:03:59 2025 by rpki-client