Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C77D27ACC41D11EFB41721BC762E951A.roa
File: C77D27ACC41D11EFB41721BC762E951A.roa (raw, json)
Hash identifier: Pl80uYEMey0x/yjRErG1+hfGGsKLi2T64Gez+726tQQ=
Subject key identifier: B0:89:25:57:D8:D3:C3:0C:D1:96:44:89:3A:77:FD:42:43:35:74:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01299F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C77D27ACC41D11EFB41721BC762E951A.roa
Signing time: Fri 27 Dec 2024 06:42:45 +0000
ROA not before: Fri 27 Dec 2024 06:42:41 +0000
ROA not after: Sun 12 Dec 2027 06:42:41 +0000
asID: 17561
IP address blocks: 154.201.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 12:38:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76191 (0x1299f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 06:42:41 2024 GMT
Not After : Dec 12 06:42:41 2027 GMT
Subject: CN=676e4c65-6322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a4:9e:99:df:86:3f:8e:51:da:bb:91:91:c0:
43:b5:7c:92:d4:50:3e:6a:00:b0:e0:82:a5:d0:3b:
1b:76:a5:44:53:c9:f6:86:8e:a4:ea:b1:9c:a6:07:
00:09:bb:ba:7b:89:0a:d5:21:32:f0:e2:e8:4c:d9:
8c:90:23:27:01:93:0d:bb:4d:63:4c:ef:17:bc:4d:
1e:24:2a:c9:57:12:24:24:5f:47:5b:74:f4:c0:a6:
21:21:e0:89:07:b8:97:94:dc:b1:e9:d9:3b:52:64:
bb:b2:05:08:b7:6d:92:c5:95:09:43:ea:f7:a7:3e:
09:c0:42:f9:12:fa:00:ef:10:70:ab:3d:ea:2c:ed:
47:73:ac:3e:7f:73:f8:68:84:18:79:22:9a:d6:4a:
7e:fe:f5:ca:7d:0c:46:4a:63:08:80:39:67:7e:09:
90:6c:83:6f:f2:fd:8b:04:57:c5:da:de:3b:8b:51:
2f:fd:f9:b7:5d:6b:b4:1d:13:16:02:35:90:32:11:
9d:cb:8d:90:cb:90:a8:85:c2:73:40:42:da:d0:52:
bb:50:f4:f6:3f:fc:db:69:3c:ba:1d:1f:53:a8:9b:
99:5d:05:9d:7d:08:4f:15:12:e1:63:3b:3e:43:7d:
8f:d2:81:27:4c:0d:5c:47:c7:dd:87:db:c6:a7:81:
1f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:89:25:57:D8:D3:C3:0C:D1:96:44:89:3A:77:FD:42:43:35:74:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C77D27ACC41D11EFB41721BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.30.0/24
Signature Algorithm: sha256WithRSAEncryption
82:0e:44:cb:6d:12:4c:17:b9:69:53:6e:16:86:4a:62:9e:0f:
d1:da:aa:36:35:cb:35:de:fc:ff:99:03:22:71:74:ee:a3:8c:
4d:ec:f7:e1:e8:24:81:cf:48:75:71:a1:ed:09:ae:e0:39:40:
67:13:82:09:4a:49:9c:71:bd:79:e7:9e:f6:b7:1d:7c:ce:7f:
b2:28:f4:e1:81:3e:c2:18:5d:1a:d0:7d:e9:73:ad:0a:e1:d0:
4a:d5:97:ff:43:83:0e:cd:aa:75:3b:01:3b:1c:88:f4:69:51:
60:ac:82:60:e8:a6:14:d0:5a:06:d4:a7:cf:0c:f0:08:bf:a5:
ab:3b:1c:84:71:56:7e:01:27:94:2a:31:fe:d2:52:e3:eb:8d:
f4:ed:30:d2:2c:78:26:a3:18:04:10:2a:ad:8e:a9:93:77:be:
92:29:a2:12:7e:6d:40:9b:ab:67:7f:a3:43:25:78:07:2c:49:
d6:3b:da:cc:c2:e8:82:5e:6f:10:7a:d0:82:1e:9b:fb:e3:e6:
b3:1d:fa:bc:b0:59:70:1c:4a:63:73:4a:ef:aa:36:67:f6:21:
99:cc:be:93:ec:a8:9e:1d:b0:50:b7:8e:f6:12:2a:2e:1b:b5:
9a:00:86:3f:2c:12:2c:ef:c0:91:cb:11:09:fa:43:f2:fa:e5:
20:16:2d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:53:05 2025 by rpki-client