Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9012C0AC26511EFBC376444762E951A.roa
File: B9012C0AC26511EFBC376444762E951A.roa (raw, json)
Hash identifier: /k/KIFczpcJnREv1DoC/cQVmQC9ISGOy010aZRH5v2A=
Subject key identifier: 5A:0F:21:F4:95:FA:5D:1C:05:23:19:11:82:B8:CC:45:BB:25:D1:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0123E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9012C0AC26511EFBC376444762E951A.roa
Signing time: Wed 25 Dec 2024 02:12:42 +0000
ROA not before: Wed 25 Dec 2024 02:12:39 +0000
ROA not after: Wed 10 Dec 2025 02:12:39 +0000
asID: 984
IP address blocks: 154.199.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74726 (0x123e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 02:12:39 2024 GMT
Not After : Dec 10 02:12:39 2025 GMT
Subject: CN=676b6a1a-021e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:04:8d:51:66:65:31:b1:08:87:d9:5b:6a:83:
64:13:d1:9a:27:b7:c5:60:2f:25:60:3a:83:6c:4e:
e1:f4:00:2c:8b:68:d8:83:eb:60:2c:7b:df:61:30:
48:7a:28:65:56:16:bb:ac:ee:5b:84:01:12:52:bb:
c8:67:a1:3f:ca:06:8a:88:e6:30:63:97:ea:e0:5c:
4a:87:34:4a:e8:9f:69:94:e9:fe:55:3b:a9:dd:24:
b2:53:ab:58:cf:2f:f9:5b:c7:97:2e:ac:dd:75:17:
e0:c6:c7:f2:26:a6:ed:36:fb:f5:df:bc:55:2b:88:
32:fb:44:75:fe:be:6b:a4:59:04:8a:87:76:96:e5:
31:41:6f:ba:7b:a2:75:b9:ea:de:66:c1:cb:a0:3e:
95:be:6f:58:98:09:d3:5c:ce:8a:61:be:32:fb:e8:
8e:e1:1a:70:89:ea:6a:72:9b:b0:76:bf:e6:ac:1f:
a8:96:2c:18:aa:50:32:db:57:7d:fb:1a:8b:2c:2c:
cd:b5:03:52:47:ce:c8:c7:d8:87:fa:7b:41:02:f5:
30:05:03:18:88:09:34:7b:ba:13:90:33:7a:93:a8:
9a:8d:a2:d3:90:2e:51:85:94:ee:b2:ee:e8:48:5e:
46:63:18:48:e0:5d:5d:cf:50:3c:6e:d7:44:e2:1f:
ac:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0F:21:F4:95:FA:5D:1C:05:23:19:11:82:B8:CC:45:BB:25:D1:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9012C0AC26511EFBC376444762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.196.0/24
Signature Algorithm: sha256WithRSAEncryption
44:05:39:dc:d9:fd:9c:45:c6:49:77:cc:4b:76:8b:c6:1d:d3:
09:25:fa:34:0a:91:46:d4:b1:8f:92:6a:08:e5:b9:d8:e7:21:
28:0e:5c:86:13:dc:28:80:b5:81:ab:5c:9d:25:18:77:97:b6:
70:52:8d:0a:1c:72:f0:36:f2:92:b1:bb:c1:c1:e9:5f:2a:90:
0c:e8:25:ae:b1:00:a0:82:ee:4b:46:ec:f4:4b:d1:db:26:91:
73:bd:a5:4b:9b:bb:fa:b7:72:3d:db:e9:c8:3b:a1:6b:ea:50:
8f:61:73:53:3d:cf:4e:b7:23:8c:05:c6:5e:0b:df:91:27:bd:
f4:8a:99:63:a6:2e:ba:53:75:b7:7e:bd:02:d3:a0:8f:9a:93:
a1:d5:4c:95:da:d3:5a:a4:45:94:9a:9c:a3:26:e1:12:c0:af:
cd:65:f2:c8:7f:3e:1b:ea:bc:b6:d7:3c:4f:c1:30:67:80:ae:
a2:33:fb:8d:5d:56:b3:d6:5c:e1:bd:1e:94:fb:0c:61:b6:30:
b2:70:1d:8f:ef:92:cc:b2:f5:fe:81:b0:02:b6:dc:23:e3:1a:
41:cd:d8:13:de:93:43:35:2a:5f:86:89:f3:38:ae:2b:20:f5:
57:24:2a:5a:c7:9f:64:d2:3a:56:16:30:8f:1f:35:9f:af:da:
45:b3:be:e8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASPmMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI1MDIxMjM5WhcNMjUxMjEwMDIxMjM5WjAYMRYw
FAYDVQQDEw02NzZiNmExYS0wMjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxwSNUWZlMbEIh9lbaoNkE9GaJ7fFYC8lYDqDbE7h9AAsi2jYg+tgLHvf
YTBIeihlVha7rO5bhAESUrvIZ6E/ygaKiOYwY5fq4FxKhzRK6J9plOn+VTup3SSy
U6tYzy/5W8eXLqzddRfgxsfyJqbtNvv137xVK4gy+0R1/r5rpFkEiod2luUxQW+6
e6J1uereZsHLoD6Vvm9YmAnTXM6KYb4y++iO4Rpwiepqcpuwdr/mrB+oliwYqlAy
21d9+xqLLCzNtQNSR87Ix9iH+ntBAvUwBQMYiAk0e7oTkDN6k6iajaLTkC5RhZTu
su7oSF5GYxhI4F1dz1A8btdE4h+sxwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFoP
IfSV+l0cBSMZEYK4zEW7JdGWMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9COTAxMkMwQUMyNjUxMUVGQkMzNzY0NDQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsfEMA0GCSqGSIb3DQEB
CwUAA4IBAQBEBTnc2f2cRcZJd8xLdovGHdMJJfo0CpFG1LGPkmoI5bnY5yEoDlyG
E9wogLWBq1ydJRh3l7ZwUo0KHHLwNvKSsbvBwelfKpAM6CWusQCggu5LRuz0S9Hb
JpFzvaVLm7v6t3I92+nIO6Fr6lCPYXNTPc9OtyOMBcZeC9+RJ730ipljpi66U3W3
fr0C06CPmpOh1UyV2tNapEWUmpyjJuESwK/NZfLIfz4b6ry21zxPwTBngK6iM/uN
XVaz1lzhvR6U+wxhtjCycB2P75LMsvX+gbACttwj4xpBzdgT3pNDNSpfhonzOK4r
IPVXJCpax59k0jpWFjCPHzWfr9pFs77o
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:17:11 2025 by rpki-client