Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2ED8FB4C53E11EFAB587D5D762E951A.roa
File: E2ED8FB4C53E11EFAB587D5D762E951A.roa (raw, json)
Hash identifier: ZWnAt3KLMoQCOsMenOg4RghzqpHgpcPXRYlUN9s/uw4=
Subject key identifier: B0:3D:29:D3:1E:1C:4E:AF:87:F7:EF:D0:20:85:02:F0:D2:85:12:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012C69
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2ED8FB4C53E11EFAB587D5D762E951A.roa
Signing time: Sat 28 Dec 2024 17:12:16 +0000
ROA not before: Sat 28 Dec 2024 17:12:12 +0000
ROA not after: Fri 12 Dec 2025 17:12:12 +0000
asID: 984
IP address blocks: 154.206.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76905 (0x12c69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 17:12:12 2024 GMT
Not After : Dec 12 17:12:12 2025 GMT
Subject: CN=67703170-cb7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ee:ea:50:43:73:d4:d8:34:59:72:54:18:19:
14:41:8b:85:48:f4:60:49:f7:2c:57:1b:2c:cf:1f:
64:ae:39:cc:91:0d:fe:0c:e1:a8:5a:73:de:ef:8f:
93:cc:77:2a:e0:e8:c4:eb:86:f7:7c:91:19:47:1b:
29:1e:aa:f7:b4:3d:7c:57:b3:09:ae:bf:75:85:4e:
30:36:93:6d:52:4f:77:44:54:bf:64:ea:70:c1:db:
a4:e3:2c:d4:18:94:8c:4f:d4:96:a8:a9:ba:69:b5:
1f:f3:4f:79:67:ea:41:c5:a9:a5:f4:10:27:2f:a0:
a6:e0:2e:0a:21:01:9c:99:57:2a:01:4d:65:9f:77:
2c:a2:07:2d:25:ba:2a:95:90:f0:8e:3f:ec:79:6d:
8c:24:43:e3:1c:b5:77:f2:40:b3:14:16:4f:44:12:
0c:5a:9e:59:ec:4c:43:3f:91:99:92:9e:da:70:cb:
1d:19:59:ec:9c:81:b6:57:a2:ef:33:c2:a1:15:f4:
78:6a:67:e8:ae:de:4c:61:d3:8a:d1:59:10:3a:a2:
26:56:e0:75:94:58:cf:b1:b1:73:d4:fa:ff:4c:12:
6b:f3:05:a4:c5:ad:e5:71:68:fe:c3:f0:12:92:39:
88:ed:64:f5:6a:14:bc:9d:d9:41:a6:2f:19:ec:ca:
fc:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:3D:29:D3:1E:1C:4E:AF:87:F7:EF:D0:20:85:02:F0:D2:85:12:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2ED8FB4C53E11EFAB587D5D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.236.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:50:ab:c4:cc:93:a5:8a:3f:1a:21:76:f9:d7:fe:15:b5:3d:
49:16:dc:07:ee:98:59:da:6c:58:3a:6f:4e:79:e8:30:40:3d:
b7:c0:6f:f9:b6:de:8f:08:d2:65:bb:eb:3f:4c:64:c9:12:00:
b5:fb:17:2d:e1:7e:f9:fe:2c:00:e8:11:fc:e9:19:44:ca:4c:
f7:a7:c4:a2:b2:0c:9a:45:e9:40:f7:e6:8b:1b:93:7e:d0:4f:
77:b8:07:81:e9:3c:8f:46:10:25:ff:67:84:ab:dd:3f:90:a5:
12:49:ef:eb:76:27:2a:03:17:ff:bb:b8:f8:9b:43:bd:57:f9:
f4:ee:7f:80:cd:52:7a:41:d6:95:91:82:45:ff:7c:77:15:d9:
52:6e:d6:12:6f:76:d8:b9:93:39:5d:df:5a:f0:10:67:5d:04:
7c:66:29:46:a6:c0:4b:47:51:42:3e:09:f7:8a:d3:18:10:d3:
2d:60:af:75:48:0e:70:04:21:60:5b:1f:09:24:4e:74:8f:35:
d7:0e:84:d4:10:96:3f:77:7e:14:61:d1:e8:62:46:25:66:29:
77:ef:f8:71:10:b4:8f:c9:ca:bc:64:85:8c:8a:9f:9d:0f:24:
d9:e8:4b:75:33:a1:1d:6c:f7:17:b4:06:57:c9:4d:e2:89:44:
a9:6e:a4:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:54:19 2025 by rpki-client