Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6A11D7EF44811EFA8C37984762E951A.roa
File: C6A11D7EF44811EFA8C37984762E951A.roa (raw, json)
Hash identifier: upna3PNxWySvJQaSfDEOCL7jvWp42v9sIqZMt2efIIY=
Subject key identifier: 94:B6:61:91:89:2B:FC:C2:C8:FD:0D:2F:D6:4B:2B:6B:35:44:05:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0163F9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6A11D7EF44811EFA8C37984762E951A.roa
Signing time: Wed 26 Feb 2025 13:51:28 +0000
ROA not before: Wed 26 Feb 2025 13:51:24 +0000
ROA not after: Sat 19 Feb 2028 13:51:24 +0000
asID: 17561
IP address blocks: 154.82.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91129 (0x163f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 13:51:24 2025 GMT
Not After : Feb 19 13:51:24 2028 GMT
Subject: CN=67bf1c60-aaf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:67:9d:4f:27:2d:a1:29:ad:f5:93:2c:e0:cb:
e5:ad:78:6d:bc:01:90:52:52:0c:fb:47:09:53:80:
f5:0f:5e:f2:b1:20:9d:0d:02:70:f2:42:ca:d4:19:
33:74:08:23:62:0c:10:a5:3e:3d:78:dd:9b:4c:dc:
02:2c:ea:5c:63:8d:8a:fb:8a:88:12:4c:16:74:87:
8c:77:8c:5a:bb:b0:41:4d:cb:fc:be:38:94:7b:98:
9d:f0:c0:93:9e:01:f2:d4:67:09:59:3d:bf:8b:41:
bf:0f:0f:8c:2b:bd:13:a0:9f:9a:45:3d:f9:36:df:
13:22:28:8d:ea:e3:be:84:8f:4e:32:a2:07:d7:a0:
5b:8e:78:87:41:39:17:1a:4c:79:43:c3:9f:11:6f:
0f:17:3b:95:36:32:af:ee:ec:c4:10:be:23:9a:48:
71:d9:07:0f:ca:38:87:11:d5:a1:2b:f0:65:7c:b2:
e3:2e:1e:3c:04:0c:57:1a:34:2a:ea:78:c1:ec:e9:
d5:7a:9a:af:76:42:87:68:c6:55:21:92:02:72:dc:
bc:86:f8:83:90:5f:5f:9a:bc:5c:48:e2:a3:5a:64:
ae:7a:7b:cc:6a:8d:16:3b:d0:6f:77:7b:76:1f:56:
83:bc:b3:c5:6c:39:0a:dd:97:05:b3:f7:7e:90:46:
f9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B6:61:91:89:2B:FC:C2:C8:FD:0D:2F:D6:4B:2B:6B:35:44:05:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6A11D7EF44811EFA8C37984762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.188.0/24
Signature Algorithm: sha256WithRSAEncryption
27:69:e7:b6:7d:2d:15:4e:15:48:05:77:c3:b8:c4:ef:4b:0d:
58:ef:b3:6d:d7:72:58:9d:88:cc:96:4c:bb:a9:87:f8:f3:82:
f1:91:6d:52:2d:db:ad:87:77:68:e4:b8:f9:5f:9e:71:f1:e1:
b6:52:ef:8d:e0:48:2b:8c:cb:31:db:d3:6f:20:50:e8:15:ed:
a0:6f:55:fa:da:f3:da:83:28:82:00:85:85:b2:8e:10:32:74:
33:16:10:cb:e7:a3:be:ef:14:0f:2e:0f:58:35:9f:c2:0a:98:
76:87:3e:bf:c8:bf:67:85:9c:ce:19:1f:9e:64:51:b5:59:ad:
32:ad:2d:77:59:1e:9f:9e:c4:3b:e4:24:e7:ea:1a:45:62:aa:
57:0f:72:2b:ee:76:42:eb:ed:03:de:bc:12:6e:c1:8b:b5:d5:
76:c6:93:c8:fb:7b:fa:38:a2:86:4a:0f:60:4a:75:7f:e8:06:
e1:df:63:1e:b0:c9:93:37:53:87:27:01:2d:bd:3d:de:2d:e0:
37:0c:dd:80:a7:35:19:1b:cc:9b:74:83:b5:63:e0:0f:87:95:
84:35:0c:20:2b:49:8d:7e:1e:48:22:6e:94:89:f7:4f:ec:a7:
15:f1:81:6f:bc:93:a6:e1:ac:35:3f:55:0c:b2:cb:40:f5:3a:
c4:d9:32:63
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWP5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI2MTM1MTI0WhcNMjgwMjE5MTM1MTI0WjAYMRYw
FAYDVQQDEw02N2JmMWM2MC1hYWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqmedTyctoSmt9ZMs4MvlrXhtvAGQUlIM+0cJU4D1D17ysSCdDQJw8kLK
1BkzdAgjYgwQpT49eN2bTNwCLOpcY42K+4qIEkwWdIeMd4xau7BBTcv8vjiUe5id
8MCTngHy1GcJWT2/i0G/Dw+MK70ToJ+aRT35Nt8TIiiN6uO+hI9OMqIH16BbjniH
QTkXGkx5Q8OfEW8PFzuVNjKv7uzEEL4jmkhx2QcPyjiHEdWhK/BlfLLjLh48BAxX
GjQq6njB7OnVepqvdkKHaMZVIZICcty8hviDkF9fmrxcSOKjWmSuenvMao0WO9Bv
d3t2H1aDvLPFbDkK3ZcFs/d+kEb5zQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJS2
YZGJK/zCyP0NL9ZLK2s1RAUcMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DNkExMUQ3RUY0NDgxMUVGQThDMzc5ODQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlK8MA0GCSqGSIb3DQEB
CwUAA4IBAQAnaee2fS0VThVIBXfDuMTvSw1Y77Nt13JYnYjMlky7qYf484LxkW1S
Lduth3do5Lj5X55x8eG2Uu+N4EgrjMsx29NvIFDoFe2gb1X62vPagyiCAIWFso4Q
MnQzFhDL56O+7xQPLg9YNZ/CCph2hz6/yL9nhZzOGR+eZFG1Wa0yrS13WR6fnsQ7
5CTn6hpFYqpXD3Ir7nZC6+0D3rwSbsGLtdV2xpPI+3v6OKKGSg9gSnV/6Abh32Me
sMmTN1OHJwEtvT3eLeA3DN2ApzUZG8ybdIO1Y+APh5WENQwgK0mNfh5IIm6UifdP
7KcV8YFvvJOm4aw1P1UMsstA9TrE2TJj
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:02:19 2025 by rpki-client