Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D07A899AC8B311EFB6FB195D762E951A.roa
File: D07A899AC8B311EFB6FB195D762E951A.roa (raw, json)
Hash identifier: EFf9o+RG61eumnZ09LD39Q4B9Up5w8CA7KJYPiLytIE=
Subject key identifier: D4:1E:93:BE:8A:14:B7:DF:86:DA:AD:90:5A:B3:B3:29:B2:A3:CB:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0131C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D07A899AC8B311EFB6FB195D762E951A.roa
Signing time: Thu 02 Jan 2025 02:46:49 +0000
ROA not before: Thu 02 Jan 2025 02:46:46 +0000
ROA not after: Mon 13 Dec 2027 02:46:46 +0000
asID: 17561
IP address blocks: 154.220.188.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 09 Apr 2025 17:37:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78272 (0x131c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 02:46:46 2025 GMT
Not After : Dec 13 02:46:46 2027 GMT
Subject: CN=6775fe19-9488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1d:5c:97:9b:2b:cd:09:0d:fe:f7:e1:d6:fe:
04:eb:e7:dd:08:8d:03:02:03:1f:22:7d:77:c6:94:
b1:3a:12:33:72:01:7e:a5:bb:1f:66:e4:af:04:13:
7a:c7:37:d9:9c:90:1c:1f:65:15:30:c8:76:a1:6e:
42:28:ad:e4:43:33:3d:91:6e:17:9f:b1:ea:39:61:
52:8f:79:50:7c:0b:dc:8b:55:47:31:86:d0:0f:70:
61:7a:b6:ad:2d:cd:43:d5:75:d0:15:30:66:76:96:
54:a3:5f:80:ee:f6:a1:24:8b:d0:51:ee:70:6b:d7:
57:f8:c6:41:56:3d:5c:9b:0c:70:3b:50:af:12:43:
32:77:e1:f0:00:e3:bb:5d:80:fb:fe:09:83:63:e8:
f9:16:f2:70:96:1a:db:42:7e:65:b4:33:ce:3f:7c:
fd:10:6e:db:5d:44:1c:93:f6:37:1b:de:a2:d7:37:
71:fb:68:f9:64:30:d3:3c:a8:5b:0c:9b:68:ec:d1:
1a:2f:0d:95:31:35:f1:d8:49:ca:7e:6d:e9:51:0a:
f6:ce:f2:50:1b:b6:f6:b3:55:c7:62:52:dc:19:35:
01:a6:33:de:68:2f:e5:4f:ea:c8:86:1e:5c:8e:bc:
d5:60:a2:53:ee:40:e6:86:c7:58:e5:c6:7d:3a:e1:
bf:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:1E:93:BE:8A:14:B7:DF:86:DA:AD:90:5A:B3:B3:29:B2:A3:CB:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D07A899AC8B311EFB6FB195D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.188.0/24
Signature Algorithm: sha256WithRSAEncryption
20:12:0c:68:7a:6e:e3:fd:e4:0f:c1:49:63:70:ec:e8:1e:78:
49:8e:67:66:d1:95:86:31:f6:52:bf:55:50:5b:7d:c3:2b:44:
79:37:fd:8c:34:5e:5d:81:84:91:07:ec:06:a8:2a:a0:5c:c6:
96:58:5f:2f:b6:28:d7:5a:5b:4b:43:00:a6:18:91:2c:59:91:
2b:0b:13:f2:35:bf:a1:a9:ee:dd:e1:09:34:fb:6f:f2:2c:80:
a4:83:34:f1:ac:13:38:59:3b:74:19:14:78:06:ee:fd:84:90:
0e:3b:0d:be:e7:85:51:e0:07:e9:6f:99:6e:82:86:65:aa:76:
5d:67:96:81:14:5c:d9:80:d4:e2:22:35:e1:68:ba:3c:8f:91:
5b:30:6c:0a:63:9a:ea:b8:f9:76:4d:9a:f1:91:f8:bf:ab:0c:
5a:8c:5b:10:7a:88:1d:a2:bb:03:b0:5a:0b:aa:fb:a7:a4:68:
f6:d1:98:50:e8:f5:95:ce:df:94:a0:ef:05:2f:f7:ba:8f:40:
e8:2d:63:85:45:46:42:59:3f:09:30:e0:d9:7b:66:42:ce:eb:
95:b6:49:d0:c9:eb:76:84:b1:5f:60:2f:0d:33:1b:c6:60:e6:
b0:2e:e8:14:97:48:dc:e0:c6:96:fc:64:e0:f4:48:2d:3e:5f:
0f:1e:f3:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:15:09 2025 by rpki-client