Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B83C931ED2DB11EFA2C9F94E762E951A.roa
File: B83C931ED2DB11EFA2C9F94E762E951A.roa (raw, json)
Hash identifier: tWBVuLZttOrUY4KyWLljGC1eP17us9BAYMwmvWTkKpo=
Subject key identifier: F8:15:00:F3:43:6D:0F:F7:8E:02:8D:E8:63:49:A2:12:7F:FF:A7:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013B63
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B83C931ED2DB11EFA2C9F94E762E951A.roa
Signing time: Wed 15 Jan 2025 00:57:40 +0000
ROA not before: Wed 15 Jan 2025 00:00:36 +0000
ROA not after: Sun 12 Dec 2027 00:00:36 +0000
asID: 17561
IP address blocks: 154.81.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80739 (0x13b63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 15 00:00:36 2025 GMT
Not After : Dec 12 00:00:36 2027 GMT
Subject: CN=67870804-eeea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:5e:bd:83:3b:3c:31:4d:a6:2b:76:de:4e:a1:
99:86:2f:d0:9a:d2:18:98:31:72:24:ee:8c:20:c3:
30:b3:50:9f:d5:a2:e3:9b:b7:72:bc:ea:d9:1a:f0:
de:c6:58:db:0c:12:8e:ef:79:5c:e5:2d:4e:5d:25:
a2:5b:57:dd:bd:7f:de:cb:87:34:6e:81:11:78:01:
5b:85:1b:f5:27:b3:f0:d3:3a:33:3f:82:86:13:4f:
a4:41:c6:83:7a:a6:41:d3:dc:e3:7c:e5:98:38:98:
2a:1f:ea:bb:aa:f6:09:d0:e3:59:d1:24:11:d5:53:
72:64:88:8d:5b:e9:26:9f:a8:07:32:d7:a9:db:8d:
84:77:18:95:b7:98:d0:53:c9:5f:b2:08:34:a7:62:
8b:cf:47:ec:a6:6d:f3:da:c1:8a:e0:9b:fe:67:f5:
61:60:0e:03:91:70:25:4e:48:0d:cd:05:a5:f8:8c:
f5:ad:1d:aa:ab:93:9d:8e:bc:58:12:0c:42:9f:92:
80:86:1c:70:d0:6a:5a:13:d8:b7:6a:27:1e:09:a9:
15:fd:2c:ff:a4:9b:e2:c7:db:6f:c2:e0:1a:2b:39:
a9:f3:ed:de:29:43:9c:f2:60:33:fc:ca:02:d3:33:
7f:8e:35:3d:86:bb:cb:85:19:80:71:c6:05:3b:8c:
c7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:15:00:F3:43:6D:0F:F7:8E:02:8D:E8:63:49:A2:12:7F:FF:A7:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B83C931ED2DB11EFA2C9F94E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.183.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:35:79:c2:45:70:6f:13:3a:28:60:68:17:7b:fa:82:7d:84:
e3:2b:06:07:61:31:c0:74:a7:7c:61:9a:a2:20:5b:01:a0:33:
d8:5a:e6:96:19:fb:cf:0b:0c:b5:57:6e:fa:a7:4f:af:89:78:
1d:d8:ac:8b:e7:81:a9:16:0c:54:77:a5:36:28:30:c3:6a:d1:
48:3a:b6:2c:b8:cf:bf:9e:84:7e:88:8f:70:1f:80:e0:de:00:
21:95:5c:3f:7f:72:20:e3:97:4b:29:77:2b:03:27:d2:e6:10:
b7:91:1e:85:2d:8d:3f:01:bb:98:73:3d:24:8e:75:6e:49:6d:
63:7e:f2:aa:5d:1c:88:a4:c4:7b:a4:b3:46:2c:9c:a7:34:df:
13:48:45:a9:5d:80:c7:0c:b9:1a:c7:26:c6:04:ea:a6:11:fb:
09:0b:47:5d:50:62:07:ef:ca:ac:92:3f:85:0d:ad:86:e0:2c:
c9:69:01:4a:2e:d2:ef:cc:37:2d:46:17:92:d7:ad:b0:01:04:
d4:6a:c3:e0:45:ea:19:f8:23:95:16:23:3c:be:f2:43:f5:88:
a6:35:56:76:95:9f:e7:92:d5:c4:eb:e1:5f:1a:cb:0c:ee:0f:
ed:f7:27:30:f9:e1:65:50:84:ef:9a:4a:46:82:c4:a9:ba:fc:
94:1a:e4:9c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATtjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE1MDAwMDM2WhcNMjcxMjEyMDAwMDM2WjAYMRYw
FAYDVQQDEw02Nzg3MDgwNC1lZWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAp169gzs8MU2mK3beTqGZhi/QmtIYmDFyJO6MIMMws1Cf1aLjm7dyvOrZ
GvDexljbDBKO73lc5S1OXSWiW1fdvX/ey4c0boEReAFbhRv1J7Pw0zozP4KGE0+k
QcaDeqZB09zjfOWYOJgqH+q7qvYJ0ONZ0SQR1VNyZIiNW+kmn6gHMtep242EdxiV
t5jQU8lfsgg0p2KLz0fspm3z2sGK4Jv+Z/VhYA4DkXAlTkgNzQWl+Iz1rR2qq5Od
jrxYEgxCn5KAhhxw0GpaE9i3aiceCakV/Sz/pJvix9tvwuAaKzmp8+3eKUOc8mAz
/MoC0zN/jjU9hrvLhRmAccYFO4zHRwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPgV
APNDbQ/3jgKN6GNJohJ//6c1MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CODNDOTMxRUQyREIxMUVGQTJDOUY5NEU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlG3MA0GCSqGSIb3DQEB
CwUAA4IBAQALNXnCRXBvEzooYGgXe/qCfYTjKwYHYTHAdKd8YZqiIFsBoDPYWuaW
GfvPCwy1V276p0+viXgd2KyL54GpFgxUd6U2KDDDatFIOrYsuM+/noR+iI9wH4Dg
3gAhlVw/f3Ig45dLKXcrAyfS5hC3kR6FLY0/AbuYcz0kjnVuSW1jfvKqXRyIpMR7
pLNGLJynNN8TSEWpXYDHDLkaxybGBOqmEfsJC0ddUGIH78qskj+FDa2G4CzJaQFK
LtLvzDctRheS162wAQTUasPgReoZ+COVFiM8vvJD9YimNVZ2lZ/nktXE6+FfGssM
7g/t9ycw+eFlUITvmkpGgsSpuvyUGuSc
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:06:47 2025 by rpki-client