Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E829EE22C26011EFAE4D23A0762E951A.roa
File: E829EE22C26011EFAE4D23A0762E951A.roa (raw, json)
Hash identifier: WTt0B06D/iodsisYvVJsHT0jl+1XkAS47/m2/FBGTVw=
Subject key identifier: F2:43:DE:40:46:C4:6D:7A:17:65:BE:C5:9E:C2:B7:23:0D:CD:40:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0123B0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E829EE22C26011EFAE4D23A0762E951A.roa
Signing time: Wed 25 Dec 2024 01:38:14 +0000
ROA not before: Wed 25 Dec 2024 01:38:10 +0000
ROA not after: Wed 10 Dec 2025 01:38:10 +0000
asID: 984
IP address blocks: 154.199.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74672 (0x123b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 01:38:10 2024 GMT
Not After : Dec 10 01:38:10 2025 GMT
Subject: CN=676b6206-727e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d7:38:7c:3b:06:ad:b9:47:4c:f4:38:49:b2:
bd:a5:f4:40:f2:32:85:77:08:5b:76:d8:fe:e8:b8:
5d:f8:1f:4f:f3:e0:a4:a3:7b:59:ad:5b:b9:74:02:
6a:dc:00:2d:35:c8:a8:6c:24:bb:d0:60:a5:f9:99:
89:28:01:31:e1:ba:a6:50:56:8c:6a:cf:36:be:09:
40:bf:9f:b4:1c:15:5f:2e:0f:29:71:52:2e:63:63:
4f:7e:42:90:5d:00:e8:eb:c8:0a:7e:78:dd:12:3e:
72:6b:38:d1:0e:67:60:de:f5:ef:55:6f:5b:b0:db:
55:57:9c:2d:60:c8:19:4c:e3:fb:a8:8a:62:0b:66:
e6:8a:99:ec:cb:b4:bb:33:41:a1:cd:19:40:50:a2:
db:44:0b:b3:0c:9d:2c:f7:31:8c:75:54:03:06:38:
54:cf:89:7d:1f:10:53:a2:ae:dc:27:3d:4e:0b:d9:
b1:12:4f:f5:59:df:2b:5c:81:70:a3:e7:c8:00:fb:
4f:7d:5e:d7:36:92:fe:7e:c7:0e:c0:4b:9d:41:eb:
e9:68:bd:41:8f:79:88:15:12:02:24:fb:ba:4f:00:
50:45:1c:2e:d6:bd:cf:4e:75:46:90:2a:d1:ef:65:
97:2c:f6:9e:51:7d:03:46:fd:24:8d:f8:ce:11:4a:
9a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:43:DE:40:46:C4:6D:7A:17:65:BE:C5:9E:C2:B7:23:0D:CD:40:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E829EE22C26011EFAE4D23A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.101.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b5:c0:13:05:cc:83:90:69:38:4e:d8:22:c4:65:2e:bb:da:
57:03:76:16:95:65:a5:54:97:cb:eb:6f:aa:77:4f:4d:5c:97:
12:e1:d2:8b:1d:1a:bd:ed:c0:dc:af:b9:5b:45:3b:46:a5:4e:
93:b5:96:99:5d:87:97:f9:66:98:e5:04:4e:a9:38:64:95:f5:
61:c5:68:88:e8:78:ca:7f:d3:a7:91:1a:8f:a6:73:2a:b1:7f:
2b:5c:5d:26:af:76:67:f6:46:9d:ff:eb:68:c1:5f:1c:37:d4:
a7:a7:03:cf:3c:c4:b5:8d:e9:49:fa:db:c9:eb:d8:fa:6c:a4:
53:e6:ff:ed:38:eb:3d:78:2e:75:18:0d:79:ba:cf:43:37:a7:
91:21:50:f5:3c:9d:b1:1f:46:dd:fd:27:02:88:a4:9f:c3:ec:
da:e3:55:0d:0d:44:3e:d6:16:36:c8:94:d1:2e:88:f0:08:7b:
2e:89:00:1d:07:c0:ab:16:16:26:64:f9:ae:b1:9a:a6:b7:42:
de:6d:89:36:10:14:73:d2:1d:cd:77:40:f5:d7:6b:82:2b:c8:
de:e4:f1:d0:51:09:35:a0:e8:c6:21:6a:4b:94:87:ce:36:24:
13:68:1a:a9:af:3b:91:81:3a:60:11:de:22:af:26:bb:ff:26:
02:82:97:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:20:39 2025 by rpki-client