Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3143C68BEDE11EF99470873762E951A.roa
File: B3143C68BEDE11EF99470873762E951A.roa (raw, json)
Hash identifier: tS8FaQacwh+5NdGu6vxYnRjIqAnKLWG5agnz4tX/8ZM=
Subject key identifier: A5:77:38:44:11:65:6D:7D:61:70:1C:44:C2:A9:67:9C:49:6F:80:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011D4C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3143C68BEDE11EF99470873762E951A.roa
Signing time: Fri 20 Dec 2024 14:28:37 +0000
ROA not before: Fri 20 Dec 2024 14:28:33 +0000
ROA not after: Wed 24 Dec 2025 14:28:33 +0000
asID: 393559
IP address blocks: 154.199.26.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73036 (0x11d4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 20 14:28:33 2024 GMT
Not After : Dec 24 14:28:33 2025 GMT
Subject: CN=67657f15-9f48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ad:ac:fa:bb:d4:bf:9e:de:80:3e:58:41:56:
ac:3a:b7:9b:53:49:91:c8:e4:d7:9b:85:8a:bb:4c:
42:d2:9b:73:aa:54:9e:e4:fb:02:63:f4:50:b6:f1:
8d:fe:41:eb:f9:08:09:28:b6:b0:b8:e7:36:af:38:
c7:80:9d:d8:79:ab:01:41:1c:c3:ff:bb:29:48:71:
73:aa:44:1a:b7:be:01:bf:cc:4d:06:16:08:d8:e4:
13:1a:c9:f9:3c:3d:0a:30:69:bd:e3:f7:f8:1f:d4:
c4:ce:bb:2d:7e:08:03:f6:34:f3:a9:29:73:90:74:
4a:e9:5c:d7:47:02:bb:8b:6c:7b:e3:30:4f:6c:3f:
ad:0a:62:aa:6b:ee:11:e3:0f:e8:82:32:0d:e0:98:
87:7a:cc:94:19:b6:74:e3:8d:f9:fe:82:47:ae:97:
07:99:07:bf:a1:a2:6b:d7:a9:89:18:36:48:fb:44:
92:ea:a4:0e:79:e0:93:81:6d:d5:74:51:b7:53:59:
3d:24:05:cc:6c:ff:df:14:49:f9:64:54:18:1f:a7:
40:36:84:50:3e:b5:11:e0:04:c3:98:d3:fa:98:bf:
34:e5:b3:d9:85:aa:b9:74:14:ca:34:27:d4:24:d6:
29:d9:1b:4f:8b:66:40:2a:31:62:38:fd:5c:c9:d3:
9c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:77:38:44:11:65:6D:7D:61:70:1C:44:C2:A9:67:9C:49:6F:80:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3143C68BEDE11EF99470873762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.26.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:ee:83:30:21:38:21:f8:64:af:c8:73:61:fa:c6:5b:bc:20:
66:85:6d:fa:94:be:bd:b7:9c:ae:69:40:c5:48:73:1e:07:df:
21:5e:97:e6:25:5c:25:34:f9:f6:72:48:74:26:85:6b:c4:43:
1f:81:5b:ed:c2:0d:18:c5:99:66:a9:38:29:62:05:d3:8e:7e:
4c:99:e8:89:93:cf:fe:73:8b:ee:42:eb:5f:7d:cf:5b:60:87:
98:8d:69:b0:f6:8c:25:4b:55:18:84:d5:90:9f:18:a7:9b:85:
28:17:26:79:c4:ee:07:08:c1:34:33:3f:04:a9:d9:5e:37:8a:
cb:5d:9b:4b:8f:65:57:5f:74:05:86:5d:47:ea:84:0d:8a:ff:
c7:ff:20:a6:63:dc:bc:5d:99:9c:a4:65:15:30:20:b0:66:7e:
5c:0b:33:66:68:4f:08:db:28:43:ef:28:45:72:fe:0a:c7:e0:
31:3d:db:82:62:46:80:48:5a:0b:27:26:5e:25:4d:b9:8d:70:
cb:69:c4:36:8d:95:0f:52:40:06:b4:47:5a:b2:c1:a8:3d:e5:
d4:a3:55:32:99:cd:9f:47:88:68:e3:00:c6:cc:ce:8b:40:5c:
c9:3d:12:52:06:82:72:a0:f5:8a:d8:1c:3d:5e:17:0d:57:49:
fd:90:16:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:25 2025 by rpki-client