Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0578DBEF45E11EFB7CC609D762E951A.roa
File: E0578DBEF45E11EFB7CC609D762E951A.roa (raw, json)
Hash identifier: B8k5pztK3D9j2XQEqmnswsDLXm2bM9XAub1oWDnZFBc=
Subject key identifier: 99:D1:F8:C0:D6:E3:F5:E5:D8:FD:DA:EB:D5:F7:60:42:B3:FA:30:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016528
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0578DBEF45E11EFB7CC609D762E951A.roa
Signing time: Wed 26 Feb 2025 16:29:40 +0000
ROA not before: Wed 26 Feb 2025 16:29:36 +0000
ROA not after: Sat 19 Feb 2028 16:29:36 +0000
asID: 17561
IP address blocks: 154.82.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91432 (0x16528)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 16:29:36 2025 GMT
Not After : Feb 19 16:29:36 2028 GMT
Subject: CN=67bf4174-3287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:88:a0:a9:97:c8:f1:20:a2:80:25:89:31:e5:
b1:cc:e2:be:f2:06:a4:98:9b:5d:e9:c0:70:f0:ca:
1b:52:a2:f1:3b:2a:65:19:6f:1f:44:85:49:74:66:
e2:1e:7a:87:10:61:a6:ad:34:b4:7a:dc:45:95:44:
1c:98:15:b3:f5:1c:7f:02:6f:3e:de:9c:25:61:e9:
a0:9c:c8:20:3e:08:ef:9f:69:90:8f:1d:c0:50:9e:
b0:ad:5e:85:b4:ae:46:d1:24:d7:cc:13:cb:29:13:
5b:8f:6c:ac:af:ab:e1:9e:4d:ba:7b:29:7d:b4:12:
0b:ff:71:42:fc:4c:d0:fd:ee:71:11:ee:2f:a2:fd:
3e:3c:7d:8b:10:c2:4e:ae:87:c1:69:36:36:3d:de:
4c:96:65:49:2b:a4:5a:dc:1b:25:70:9d:90:bb:c3:
d9:28:ca:9a:19:42:5d:32:74:e2:ff:d8:6d:6f:10:
13:d0:ba:56:6c:0e:c4:33:ec:52:02:7d:b5:ce:ae:
75:42:3d:87:da:c8:48:d2:0d:31:4c:08:8c:30:f0:
1a:d5:26:5e:0a:90:7e:2f:67:eb:92:db:2e:20:dc:
36:c0:1f:4f:b7:2d:f9:4f:91:c9:53:eb:c8:43:83:
18:2d:15:42:81:1d:cd:31:36:15:ae:ca:c4:13:4b:
a9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:D1:F8:C0:D6:E3:F5:E5:D8:FD:DA:EB:D5:F7:60:42:B3:FA:30:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0578DBEF45E11EFB7CC609D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.255.0/24
Signature Algorithm: sha256WithRSAEncryption
95:f7:79:78:6f:f0:73:e9:ba:9e:a6:4b:8a:ee:d5:9f:2a:ad:
66:84:ba:89:97:90:f1:64:b6:08:ab:9a:9f:20:4e:c0:3e:57:
b1:f2:79:4f:75:87:81:d7:3e:a7:9e:b5:72:46:2e:45:7a:4d:
41:22:ed:ef:41:4d:7f:76:cb:70:8c:ea:2d:e4:e9:ad:cd:c4:
47:c2:96:28:3b:2c:23:9d:9d:8c:99:dc:65:30:d1:ff:18:58:
a6:1b:fc:b3:c8:9e:6a:bb:6f:6f:96:b4:29:de:68:66:b1:1c:
74:7a:f8:a5:1d:55:ad:50:12:37:42:b4:22:10:51:0e:33:3d:
78:07:d2:e4:ee:7d:bb:69:bf:45:c4:eb:46:e6:24:ea:af:1c:
cf:dc:f1:e5:bb:b7:8c:c6:ca:12:1a:45:17:ee:a7:98:c5:e4:
86:9f:4a:f2:5d:50:90:cc:a5:83:d5:98:05:5f:76:ab:b8:a7:
70:d5:54:d7:30:4f:cc:03:02:da:f8:8e:60:48:9b:3d:a8:a9:
88:df:75:03:eb:4d:98:55:4d:39:a7:3a:a5:eb:5c:24:73:68:
c0:e6:0f:f5:51:97:f2:e5:7b:76:a6:a3:a6:49:f3:fb:d6:b2:
5a:57:81:8c:e9:ec:90:79:f3:60:5b:47:f3:2d:c5:c1:27:01:
5e:75:7a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:26:25 2025 by rpki-client