Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CCC2D98CF5CD11EF9A3C357E762E951A.roa
File: CCC2D98CF5CD11EF9A3C357E762E951A.roa (raw, json)
Hash identifier: 7xnbq5QkG/LVDBcltCeR0NxPsnu1pUDpfkFfm5uTOP0=
Subject key identifier: DE:87:75:10:90:B0:4D:D5:E1:51:37:8B:D2:BA:2B:A3:29:B1:EC:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016B18
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CCC2D98CF5CD11EF9A3C357E762E951A.roa
Signing time: Fri 28 Feb 2025 12:16:12 +0000
ROA not before: Fri 28 Feb 2025 12:16:09 +0000
ROA not after: Thu 20 Mar 2025 12:16:09 +0000
asID: 58460
IP address blocks: 154.81.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 15 Mar 2025 00:05:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92952 (0x16b18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 28 12:16:09 2025 GMT
Not After : Mar 20 12:16:09 2025 GMT
Subject: CN=67c1a90c-4e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:26:2c:55:08:c6:8e:11:cb:a2:db:bf:f0:da:
d5:6c:64:8a:74:a3:f1:40:0b:c2:b7:c6:29:f1:21:
65:c7:e7:be:e9:56:e4:ec:50:26:38:29:dc:53:3a:
e4:cd:60:1e:56:bb:a0:f0:af:84:4b:22:41:7e:77:
ea:8b:29:84:5e:1d:fc:ce:ae:77:da:b5:e8:9f:82:
dc:9c:55:50:e1:28:22:51:ad:e7:e9:16:34:9f:62:
00:61:1e:3a:e9:f1:82:86:b9:34:f7:98:d9:dd:08:
56:1f:85:04:8e:6d:56:00:e0:df:14:8f:81:4e:a3:
6d:75:25:dc:8e:b2:3b:cd:0d:cd:bc:d6:b7:d3:77:
80:32:33:4d:bf:17:96:fd:dd:4d:48:04:08:6f:8c:
bd:23:7d:14:b9:c8:2f:1c:62:95:a2:2f:81:74:82:
7b:2c:f2:74:be:33:99:8c:e7:08:f2:cd:62:80:30:
b3:87:dd:0f:96:50:15:36:29:3a:e2:cc:a3:85:70:
3d:1c:9e:57:34:06:c2:7c:8f:7d:df:91:9c:ef:98:
cd:f2:90:87:6e:32:9a:5d:5e:d2:ea:85:e6:21:9f:
62:2d:ee:a9:db:28:d7:39:da:25:5b:ca:d2:40:8d:
02:92:00:bf:2c:59:d0:53:c5:6f:83:9a:dc:b3:b1:
af:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:87:75:10:90:B0:4D:D5:E1:51:37:8B:D2:BA:2B:A3:29:B1:EC:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CCC2D98CF5CD11EF9A3C357E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.51.0/24
Signature Algorithm: sha256WithRSAEncryption
56:99:15:f1:13:ec:ce:a6:79:1d:f4:af:40:93:c4:e5:80:af:
2d:fc:a0:6f:02:2b:cc:d2:da:bc:69:96:c7:8c:5e:7b:5f:e4:
b5:22:00:1a:b5:e3:38:1c:76:48:e8:a8:6f:ce:9d:9d:20:a8:
ba:61:df:9f:11:6f:96:01:25:aa:cb:ad:ee:76:a0:1c:56:38:
61:5d:34:d3:e2:d5:d6:e9:66:00:2a:80:5f:f6:2b:23:cc:40:
d0:2c:7b:e8:4f:91:47:00:b4:ae:ef:f0:71:cb:a6:44:cb:9d:
a3:fb:9c:c2:f6:5c:dc:f2:7f:ad:e7:2f:0f:f7:0e:13:ba:fa:
ff:cd:7d:eb:08:cc:6d:76:39:d9:e5:01:9a:08:88:fd:f8:9e:
c6:57:82:63:d0:b4:1c:3e:dc:93:64:95:0d:32:63:2b:da:94:
1b:f2:93:b6:1d:59:68:1d:4b:4a:11:30:4b:04:16:d0:83:8e:
54:74:e1:c0:27:8f:e3:d3:9c:c3:64:7f:bc:40:86:2d:7e:ad:
33:ab:49:e4:10:6f:b5:a6:b9:7d:13:41:9c:a7:6d:fd:de:05:
83:32:7c:b1:74:7b:26:f1:d2:89:57:1a:ff:ee:34:cf:15:c8:
23:1e:1c:70:38:24:b1:0f:48:c1:05:3e:3e:4f:62:13:f0:21:
0c:35:f3:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 06:37:32 2025 by rpki-client