Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E93E6DF2C36311EFBD9EE696762E951A.roa
File: E93E6DF2C36311EFBD9EE696762E951A.roa (raw, json)
Hash identifier: FQhAuCtLnxuJYRoTHOJBWDxTMfZTJIFKFB4W70ClvOI=
Subject key identifier: CA:EB:5F:83:20:E4:53:A3:FA:83:0B:B6:BA:A7:C2:54:7F:C1:E2:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01268A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E93E6DF2C36311EFBD9EE696762E951A.roa
Signing time: Thu 26 Dec 2024 08:32:15 +0000
ROA not before: Thu 26 Dec 2024 08:32:12 +0000
ROA not after: Sun 12 Dec 2027 08:32:12 +0000
asID: 17561
IP address blocks: 154.93.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75402 (0x1268a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 08:32:12 2024 GMT
Not After : Dec 12 08:32:12 2027 GMT
Subject: CN=676d148f-b127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1b:5d:ba:0f:35:59:95:87:dd:ad:11:f5:93:
7d:2a:22:83:e9:28:77:b4:a7:9d:b3:7b:f3:c0:a9:
5f:ef:65:35:e5:69:64:1c:d6:b8:40:8d:10:c2:5d:
3f:09:e0:c2:4a:93:2f:d8:c9:62:30:54:59:9c:7e:
50:d8:ce:e2:b4:b7:b0:f4:02:a5:fc:f7:1a:70:05:
a2:59:3c:6d:72:b0:1a:ed:a5:a1:fc:4d:29:c7:f7:
97:76:4e:10:b3:e7:76:5e:ea:13:06:06:36:12:b1:
9a:5f:01:3c:61:01:28:a3:20:f1:69:7e:b6:9f:bc:
2f:a7:81:25:f0:86:a4:0d:1a:6a:e8:4e:37:bb:98:
f5:18:e0:48:a2:70:89:ea:9f:32:1e:b9:92:4d:3b:
2e:92:2c:94:3f:ec:d3:5b:5f:d3:23:ba:20:93:f1:
54:7f:3b:fc:6d:a1:06:fb:9f:70:2c:fd:53:0f:d5:
26:99:ff:b9:06:c4:b0:44:6b:fe:a1:c3:70:ed:ba:
5c:39:47:60:e6:52:4f:49:f8:48:c4:ca:98:a7:9d:
34:7e:c9:11:80:c2:61:22:de:d8:45:8a:24:d2:59:
b6:2e:7a:06:7c:82:53:e3:0a:63:31:78:cd:03:ba:
7d:c5:cf:02:a3:b6:37:31:32:e1:93:30:c4:65:23:
de:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:EB:5F:83:20:E4:53:A3:FA:83:0B:B6:BA:A7:C2:54:7F:C1:E2:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E93E6DF2C36311EFBD9EE696762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.14.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d2:f7:96:b0:0b:7e:81:9a:82:af:11:01:33:9d:f8:60:ba:
f6:cc:44:de:34:ce:b4:fe:56:a3:ec:0b:28:03:67:5f:42:b1:
38:8c:2f:91:04:94:bb:06:9a:db:4c:1a:24:60:bd:c7:a2:ea:
c9:08:65:77:02:95:23:f0:98:d9:d7:07:01:56:7c:17:22:44:
90:4d:99:fc:67:66:a5:c1:b8:50:85:9e:2c:6d:72:c2:67:91:
85:89:cb:13:4f:94:16:92:5c:9a:9a:e9:51:0c:f8:65:28:ee:
52:09:33:4d:d4:a6:67:0f:29:19:da:96:c8:58:da:56:fb:3c:
96:ef:d1:bd:c7:74:38:ce:aa:db:3f:e1:82:51:75:db:32:c6:
29:1b:cc:d1:ec:c8:aa:8c:d0:80:c3:73:9a:be:fb:ba:25:4b:
5b:54:3c:61:39:d3:66:9d:9f:a6:1c:e8:a9:7d:d3:3e:51:90:
15:50:48:49:5d:26:17:35:ce:be:9a:92:fe:b6:a2:8b:e1:25:
d5:2f:09:db:13:9f:c5:f8:e9:b9:a7:4a:a0:77:f4:eb:44:02:
ed:72:5b:a2:d1:04:01:fd:5d:d7:85:9f:4d:16:d1:b2:a0:d0:
b9:0c:4c:af:81:4c:17:5c:9d:b9:9b:81:ca:46:e0:46:87:18:
32:04:b4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:41 2025 by rpki-client