Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6E32576108811F0A650C4A6762E951A.roa
File: E6E32576108811F0A650C4A6762E951A.roa (raw, json)
Hash identifier: NxmK47tVA5KaAosMkvKiVDwKqXsEl67AOvVVOLmk4HY=
Subject key identifier: 67:C3:C6:6D:8D:54:7C:3B:95:4B:C9:42:DB:C5:FF:10:45:B4:B8:4F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01778B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6E32576108811F0A650C4A6762E951A.roa
Signing time: Thu 03 Apr 2025 12:41:02 +0000
ROA not before: Thu 03 Apr 2025 12:40:58 +0000
ROA not after: Mon 12 May 2025 12:40:58 +0000
asID: 57043
IP address blocks: 154.193.129.0/24 maxlen: 24
154.193.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96139 (0x1778b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Apr 3 12:40:58 2025 GMT
Not After : May 12 12:40:58 2025 GMT
Subject: CN=67ee81de-a5c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a1:11:ff:9b:a8:c3:37:7d:bf:77:38:98:fd:
1d:62:e1:8c:d3:fd:fa:b1:32:b7:ea:83:03:2a:76:
ec:bb:e3:cd:53:6a:08:8f:83:4f:ef:9a:01:5c:a2:
02:0b:74:aa:00:a7:c9:dc:e1:01:3c:27:6d:7a:01:
eb:5a:41:9c:51:7a:0a:53:ca:66:b2:aa:8e:55:89:
7b:9b:af:58:06:32:00:df:ef:b1:f5:02:02:30:c8:
69:29:f7:97:80:4c:50:f2:be:73:61:dc:8d:78:67:
39:f0:56:69:fd:35:38:63:0e:64:ca:80:55:cf:24:
c4:21:69:a9:58:d2:ae:3d:6f:20:5c:34:b0:5f:74:
68:bd:a9:b2:90:dd:eb:0f:7f:36:95:64:8d:0f:ca:
aa:f5:e4:1c:2d:27:b7:21:bd:69:1b:86:be:07:6b:
c5:45:87:69:97:2c:3a:35:2f:3c:a7:e1:b7:12:37:
51:83:e2:32:3d:ea:e6:36:2b:cc:cd:51:21:b1:44:
a3:6b:14:17:54:7e:3f:b1:6a:20:26:4c:48:e5:55:
dd:40:35:a7:91:ab:ae:c9:b6:0c:ce:86:c6:d6:c3:
5d:93:cc:06:60:f9:ff:0c:6d:f4:79:85:02:42:3d:
ea:3d:83:a0:56:06:22:02:d0:14:a0:20:04:fa:d4:
f6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:C3:C6:6D:8D:54:7C:3B:95:4B:C9:42:DB:C5:FF:10:45:B4:B8:4F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6E32576108811F0A650C4A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.129.0/24
154.193.131.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:bf:eb:18:a2:d3:e8:13:d5:0e:40:49:21:7a:aa:a3:60:e8:
49:13:e3:4c:5b:e9:f3:d3:91:fa:37:19:c0:52:22:02:8f:bf:
96:89:50:90:1f:ec:c0:45:b3:46:a3:47:8c:37:0f:fc:78:c4:
55:1f:87:d5:62:10:25:9c:66:11:c8:5b:72:2b:1d:b7:bf:04:
ab:98:5b:0a:31:b7:36:94:6e:b3:a3:5e:d0:1c:82:54:93:21:
9c:f5:80:ca:08:11:72:0b:66:9b:f1:39:03:f4:8b:16:e3:40:
a3:57:0d:35:5f:9a:6b:7e:0f:c9:a2:02:a6:96:f4:0b:19:47:
99:4b:07:45:de:f2:c4:1d:13:36:6f:f0:dd:f5:29:db:e0:88:
5e:22:3d:72:6a:f4:2e:4d:c3:16:6b:dc:99:4f:47:cd:2b:f4:
75:55:0f:4f:6e:bd:3b:f3:33:31:8f:31:ca:bf:94:4d:7f:2d:
98:2b:ec:b4:db:2e:79:17:c1:92:19:bc:d8:32:6f:0e:a5:27:
b0:10:b7:3a:93:31:fc:07:59:70:33:23:0a:ea:05:8b:53:9f:
0b:e4:68:31:b2:53:d4:9e:80:97:c7:7b:39:64:a2:7a:50:2b:
66:a7:21:8c:8b:9e:72:d0:b4:3c:7e:05:09:e8:b8:a3:1d:e3:
38:e5:62:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:38:17 2025 by rpki-client