Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E32194B0F45211EF8F1DDD4B762E951A.roa
File: E32194B0F45211EF8F1DDD4B762E951A.roa (raw, json)
Hash identifier: kn+nNjzgUYnVPkb8Od8ZiVWMZybmxDbtf212SH0BCpo=
Subject key identifier: 61:AB:2C:1B:32:9B:A1:EA:0F:75:8C:44:F4:B6:E9:FC:AC:2D:00:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01649F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E32194B0F45211EF8F1DDD4B762E951A.roa
Signing time: Wed 26 Feb 2025 15:03:51 +0000
ROA not before: Wed 26 Feb 2025 15:03:47 +0000
ROA not after: Thu 19 Feb 2026 15:03:47 +0000
asID: 984
IP address blocks: 154.210.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91295 (0x1649f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 15:03:47 2025 GMT
Not After : Feb 19 15:03:47 2026 GMT
Subject: CN=67bf2d57-0621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a6:44:55:64:78:c0:ad:c5:71:a7:50:68:ac:
d9:42:5f:f7:b5:e0:81:d6:6a:c4:39:7b:2e:6e:26:
da:d3:8b:44:4b:f2:62:64:69:ff:bd:78:81:34:48:
d0:39:7c:31:d4:a0:0e:f8:9d:fc:94:5b:b7:94:01:
8d:89:27:0a:0e:c4:46:04:a2:7a:80:6b:c3:29:b2:
7c:0b:8c:e7:b4:e8:b0:4b:e6:8d:22:21:7e:97:04:
67:2a:cb:3d:ae:2c:17:a0:94:16:eb:10:a4:55:66:
27:8f:c9:3a:86:d5:6f:f7:f6:28:f0:47:7d:f8:15:
91:03:fc:16:e3:2e:d9:92:32:9f:cd:28:31:f0:ca:
3c:cd:38:bb:22:0f:41:0b:a6:88:7e:7c:13:93:ed:
0b:f8:3a:e9:54:bf:fa:24:c9:02:59:3b:c4:62:31:
11:ba:72:a1:b8:0e:33:c4:77:ea:fa:18:13:04:81:
d9:22:be:07:c2:21:94:9f:fd:22:8c:9f:78:97:52:
ae:4e:80:32:04:c1:d7:22:af:89:d9:3e:7c:44:b5:
80:46:c3:a5:fc:30:10:22:a7:2d:c4:5d:5b:1f:80:
94:fd:c9:62:27:a1:ef:95:19:f1:0d:c9:21:ef:16:
3e:81:02:3c:bf:f6:00:3d:e3:ea:ec:e4:a8:66:46:
72:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:AB:2C:1B:32:9B:A1:EA:0F:75:8C:44:F4:B6:E9:FC:AC:2D:00:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E32194B0F45211EF8F1DDD4B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.81.0/24
Signature Algorithm: sha256WithRSAEncryption
92:1f:d6:bf:ea:58:9a:fb:bc:92:ba:38:57:36:79:d4:d0:3a:
fb:a9:d2:bb:a9:fd:17:e0:e7:ba:2a:a3:81:ab:3d:40:72:14:
cb:5e:9c:3f:30:73:c2:94:81:9f:71:50:23:05:5a:aa:c8:9d:
75:73:32:5c:a6:28:30:b8:df:d9:92:0e:4e:18:c3:43:49:34:
8a:06:4b:a0:9d:1c:be:64:09:da:20:5b:4c:ac:c4:fa:48:b5:
7f:04:a5:72:7e:2f:71:5f:1f:6c:ad:5f:dd:ea:3d:37:14:04:
d0:b4:78:79:8b:9f:21:a4:88:03:2f:f3:ba:0d:35:16:57:e6:
4b:f0:79:a1:91:62:cb:2c:d9:88:f5:11:98:ff:5f:21:a7:d8:
93:51:bc:b0:4c:63:5d:14:50:12:0a:26:8f:24:4c:19:90:78:
17:4a:1d:db:0c:ff:ff:78:c8:e1:ae:3d:05:43:6d:af:e0:ab:
3d:6a:1d:15:51:ed:1f:cc:68:e2:37:65:ca:b8:a5:9f:68:b4:
6f:d0:00:9b:fa:e4:b3:35:bf:7d:0a:b2:c7:a0:33:97:79:1b:
04:54:14:fa:5a:c2:f9:03:cf:29:ac:0a:7c:a1:a3:de:5a:8c:
d7:d6:1c:8a:36:3c:e8:ac:35:9e:52:86:fe:61:59:7d:1d:b4:
0e:9c:6c:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:28:12 2025 by rpki-client