Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B959266EF44F11EF9C47C0B2762E951A.roa
File: B959266EF44F11EF9C47C0B2762E951A.roa (raw, json)
Hash identifier: fE13vTFdZWXdT/YhwFkM4MXSZvv9Eic8GtlvZ2esL8c=
Subject key identifier: 55:9B:C0:CD:65:CF:BA:1A:DB:7A:31:BF:70:C1:A8:FF:D9:3F:0A:7F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01646C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B959266EF44F11EF9C47C0B2762E951A.roa
Signing time: Wed 26 Feb 2025 14:41:12 +0000
ROA not before: Wed 26 Feb 2025 14:41:08 +0000
ROA not after: Sat 19 Feb 2028 14:41:08 +0000
asID: 17561
IP address blocks: 154.82.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91244 (0x1646c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 14:41:08 2025 GMT
Not After : Feb 19 14:41:08 2028 GMT
Subject: CN=67bf2808-bac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a5:04:5b:cc:6b:c6:c8:89:ba:90:72:9b:ca:
f2:51:7c:58:3e:67:9b:93:0f:30:6f:5d:94:0a:a4:
12:d5:d8:67:d6:4b:88:09:59:db:e3:e6:21:f8:ed:
48:70:6b:16:b8:40:48:f8:ac:46:fd:26:57:65:ab:
9c:01:79:18:98:18:72:f4:61:5a:51:ba:e2:58:47:
a2:20:0d:d8:bd:62:6f:ca:12:bb:5e:8f:b8:e0:9f:
ea:cd:7d:52:12:f1:a2:c5:1d:7d:4a:f9:b2:01:39:
9b:37:40:9a:f2:fd:12:30:94:bf:82:31:ac:ef:e8:
35:1b:c7:29:3b:31:72:d9:38:a0:60:bf:98:77:9b:
b0:5e:3a:79:f5:2d:c3:c4:12:b6:92:32:27:9b:fc:
2d:97:3e:c7:60:cf:0b:39:be:15:03:02:7c:5d:28:
60:dd:a4:71:4f:d0:ec:97:b2:a4:4a:04:60:57:76:
e2:75:b4:fe:98:9a:d6:bd:ac:09:7a:24:c7:33:77:
ec:ca:11:fd:e1:12:13:a4:ef:60:7f:f6:92:0c:e4:
87:6e:3e:8c:4d:3d:94:e1:6f:b4:37:8e:79:2c:ad:
be:a0:52:b7:68:dc:9f:6b:82:03:cc:15:45:05:41:
95:c7:19:97:b6:c2:8d:4f:0b:7c:8f:2e:37:a1:4b:
c1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:9B:C0:CD:65:CF:BA:1A:DB:7A:31:BF:70:C1:A8:FF:D9:3F:0A:7F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B959266EF44F11EF9C47C0B2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.215.0/24
Signature Algorithm: sha256WithRSAEncryption
34:9b:47:57:69:50:6f:09:04:69:28:c0:ae:76:15:de:0b:17:
35:55:f7:35:52:90:6e:d1:ea:25:d3:40:3e:97:51:45:a9:bf:
20:99:c4:eb:58:63:68:e1:28:05:0c:57:04:34:57:04:35:37:
54:c2:21:72:01:2c:cb:0d:2d:2a:68:1d:d2:75:4e:bc:7e:0a:
78:80:b3:b3:d5:d3:f6:b0:3f:33:34:be:a7:77:24:87:8e:07:
55:6b:6a:28:b6:27:df:3b:e5:97:03:84:f0:44:66:5b:12:af:
ae:fc:47:f1:00:db:1b:9f:38:5a:da:86:e6:93:72:06:a8:7d:
f3:9a:1a:e5:b9:04:31:33:01:7a:12:1f:e5:c2:4d:cf:8d:bf:
c0:32:af:52:e9:4a:83:21:22:33:d9:a8:cd:78:13:86:b9:6b:
d6:01:c4:34:40:cb:7a:98:24:d4:0d:ee:ba:4d:96:95:cb:df:
3a:82:38:29:8f:ff:6d:37:f3:4a:85:5b:49:08:1f:0d:37:3b:
c6:61:44:93:e8:a1:18:d1:0a:76:83:7f:fd:5d:92:bd:f0:22:
61:ef:25:35:7c:83:81:4b:54:29:72:29:04:d2:5b:8f:8e:cd:
1c:ef:10:9b:fc:b3:d7:25:4f:93:0b:ac:b6:17:56:ed:f7:bf:
6c:7e:fa:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:46:17 2025 by rpki-client