Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE0353C2C3D011EF97202E44762E951A.roa
File: DE0353C2C3D011EF97202E44762E951A.roa (raw, json)
Hash identifier: /KEV9Ov9rXJt5AUT2U8Uxc0ptqfLEiEAxfBLboRkf8Y=
Subject key identifier: 78:54:64:4A:D7:41:D4:C2:66:21:F0:73:D3:EC:A8:5A:AC:B7:75:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01283E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE0353C2C3D011EF97202E44762E951A.roa
Signing time: Thu 26 Dec 2024 21:32:12 +0000
ROA not before: Thu 26 Dec 2024 21:32:08 +0000
ROA not after: Sun 12 Dec 2027 21:32:08 +0000
asID: 17561
IP address blocks: 154.83.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75838 (0x1283e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 21:32:08 2024 GMT
Not After : Dec 12 21:32:08 2027 GMT
Subject: CN=676dcb5c-72b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:79:53:e8:99:51:63:71:15:a3:ac:af:94:65:
cd:b6:b3:75:f3:ac:f9:47:28:9a:89:0a:56:4a:8d:
0c:07:18:2f:7d:25:04:da:62:e8:ac:32:2c:51:19:
f5:4a:03:bd:90:6b:ae:65:a1:3a:cc:4e:4f:be:cb:
ca:0b:65:69:6b:dc:65:bf:aa:6b:56:12:90:46:8b:
2b:56:f3:8b:68:48:7f:25:81:93:35:d5:43:3e:c2:
53:a8:01:91:2e:e2:f7:e0:67:9c:9b:13:ec:78:46:
90:33:14:db:b4:47:10:b9:6d:b1:d7:19:e6:3f:4a:
a7:47:50:2b:cd:1f:1c:e2:2d:1b:e5:c8:c1:9f:3e:
57:52:2b:09:b2:66:09:91:26:2f:6e:a3:75:8d:e1:
3f:60:6c:59:8e:5a:3d:bd:7e:0d:d6:2c:42:93:bb:
0d:79:ef:f8:e7:ca:ab:3e:22:95:df:5f:db:45:7c:
cd:f0:a1:c6:0a:b3:4e:1b:3f:2b:40:11:8c:ae:60:
d0:86:b9:ff:a4:57:47:c8:ca:d4:01:13:62:96:61:
5e:cf:af:50:ef:e6:7d:17:80:72:fe:60:d6:55:34:
20:5e:7f:ac:2b:12:86:41:e6:ac:f6:31:0b:33:70:
8d:9f:38:f8:89:74:83:e1:2a:19:26:5c:86:f6:f0:
cf:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:54:64:4A:D7:41:D4:C2:66:21:F0:73:D3:EC:A8:5A:AC:B7:75:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DE0353C2C3D011EF97202E44762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.181.0/24
Signature Algorithm: sha256WithRSAEncryption
90:e1:a1:24:06:72:91:19:dc:05:fb:20:17:28:ff:9f:a0:fd:
dd:53:02:35:1f:e3:5e:ff:1c:c5:38:14:26:e3:4d:55:fb:8f:
43:68:42:e5:25:7e:da:45:f9:ae:7d:10:ab:c1:8b:bc:73:4f:
55:87:6c:2a:98:3e:af:b1:2f:37:93:e6:a4:85:68:31:f8:56:
eb:8d:12:0b:1c:d1:42:d9:da:f3:a2:24:f1:c0:61:28:f6:81:
dd:d1:4b:11:f8:54:de:17:be:a9:ed:02:0c:dc:8f:0e:c7:37:
19:86:aa:f7:39:34:ad:ee:c0:da:e1:d3:9f:e8:66:2a:49:11:
99:2d:72:e9:bd:d0:40:aa:b3:3c:5e:76:cb:e5:4f:b3:0d:da:
a7:b0:96:9a:60:49:1f:c3:f6:63:61:a9:8d:17:d5:ff:0a:2e:
0c:a9:9f:7f:d7:97:cc:35:e6:b7:46:93:c4:71:6a:a0:63:a7:
85:db:5a:41:dd:80:b6:66:f6:f7:75:d3:b6:69:dd:21:59:76:
9f:d1:07:be:b0:3a:d5:11:76:b2:b5:61:ab:bf:56:82:d3:bf:
af:1d:74:9d:53:c3:03:d8:77:99:39:b1:80:67:35:fd:7f:6d:
b1:4b:8e:41:77:7f:58:57:1b:02:d6:ae:d2:af:32:a1:79:15:
15:44:5b:a6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASg+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MjEzMjA4WhcNMjcxMjEyMjEzMjA4WjAYMRYw
FAYDVQQDEw02NzZkY2I1Yy03MmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApnlT6JlRY3EVo6yvlGXNtrN186z5RyiaiQpWSo0MBxgvfSUE2mLorDIs
URn1SgO9kGuuZaE6zE5PvsvKC2Vpa9xlv6prVhKQRosrVvOLaEh/JYGTNdVDPsJT
qAGRLuL34GecmxPseEaQMxTbtEcQuW2x1xnmP0qnR1ArzR8c4i0b5cjBnz5XUisJ
smYJkSYvbqN1jeE/YGxZjlo9vX4N1ixCk7sNee/458qrPiKV31/bRXzN8KHGCrNO
Gz8rQBGMrmDQhrn/pFdHyMrUARNilmFez69Q7+Z9F4By/mDWVTQgXn+sKxKGQeas
9jELM3CNnzj4iXSD4SoZJlyG9vDPfQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHhU
ZErXQdTCZiHwc9PsqFqst3VDMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ERTAzNTNDMkMzRDAxMUVGOTcyMDJFNDQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlO1MA0GCSqGSIb3DQEB
CwUAA4IBAQCQ4aEkBnKRGdwF+yAXKP+foP3dUwI1H+Ne/xzFOBQm401V+49DaELl
JX7aRfmufRCrwYu8c09Vh2wqmD6vsS83k+akhWgx+FbrjRILHNFC2drzoiTxwGEo
9oHd0UsR+FTeF76p7QIM3I8OxzcZhqr3OTSt7sDa4dOf6GYqSRGZLXLpvdBAqrM8
XnbL5U+zDdqnsJaaYEkfw/ZjYamNF9X/Ci4MqZ9/15fMNea3RpPEcWqgY6eF21pB
3YC2Zvb3ddO2ad0hWXaf0Qe+sDrVEXaytWGrv1aC07+vHXSdU8MD2HeZObGAZzX9
f22xS45Bd39YVxsC1q7SrzKheRUVRFum
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:58:52 2025 by rpki-client