Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC458256C53911EFA62560BD762E951A.roa
File: EC458256C53911EFA62560BD762E951A.roa (raw, json)
Hash identifier: C3z1LVME13Hk6pkPegkkaE0PywfurroS8O2Z2EwzP+0=
Subject key identifier: DF:27:47:2D:B8:E4:E2:7B:93:47:CE:57:F5:E6:B3:90:53:EF:CF:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012C3B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC458256C53911EFA62560BD762E951A.roa
Signing time: Sat 28 Dec 2024 16:36:44 +0000
ROA not before: Sat 28 Dec 2024 16:36:40 +0000
ROA not after: Sun 12 Dec 2027 16:36:40 +0000
asID: 17561
IP address blocks: 154.205.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 12 Apr 2025 00:06:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76859 (0x12c3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 16:36:40 2024 GMT
Not After : Dec 12 16:36:40 2027 GMT
Subject: CN=6770291c-c0e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:9d:ed:64:65:ba:7d:f5:d5:6e:87:1a:c7:f9:
8e:c2:0f:6e:23:bc:35:6d:bf:6a:f9:94:57:f4:ac:
89:25:15:41:77:17:ef:13:07:99:da:66:33:5f:da:
26:2e:b4:0d:fd:30:3e:54:e4:42:c2:b5:ff:09:e9:
15:f5:50:b2:e4:ad:e1:95:66:59:39:72:32:fb:4e:
44:e1:5b:15:1f:57:20:0e:a1:c6:66:10:4f:83:bb:
27:61:29:75:50:81:82:56:a6:ea:cf:f2:99:cf:c1:
3d:f4:38:0a:d3:77:7b:86:96:5a:ad:4b:b2:e6:8a:
5c:ba:b7:6f:9f:5e:82:59:46:8b:04:e9:99:48:e6:
75:18:79:a6:12:d3:d6:92:fc:d3:a0:dd:ca:55:01:
bf:2c:8d:b4:0f:a5:15:21:8e:d9:6d:b9:f2:96:91:
9e:48:11:c5:26:99:6f:0b:6f:3a:6e:81:0b:c8:1e:
8a:bf:d8:d9:70:16:81:25:91:af:52:9b:2c:57:70:
0d:7d:ee:da:de:fb:98:80:4d:e0:72:70:f7:2a:c8:
d7:a0:93:19:14:65:5a:8e:63:50:84:05:e3:76:a0:
21:35:1e:d9:f9:16:ee:39:75:1d:25:95:e8:84:3d:
4a:35:57:50:c1:5a:e2:13:e0:ac:78:b6:34:0b:35:
1e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:27:47:2D:B8:E4:E2:7B:93:47:CE:57:F5:E6:B3:90:53:EF:CF:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC458256C53911EFA62560BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.38.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:5f:fe:a1:65:c5:1c:55:94:b2:00:d9:42:94:ef:e3:83:9b:
4b:2b:66:ff:ee:b3:ca:8c:c6:91:a6:88:0f:3c:e1:29:1d:ea:
dc:35:e8:5c:0f:ee:82:23:5a:61:41:91:ff:f2:a5:5c:40:c8:
ea:c1:4a:80:e5:33:09:01:99:11:0a:05:64:ae:cb:54:29:aa:
2d:f6:2c:57:2b:dd:fe:46:a8:02:1c:75:b1:30:10:64:d5:d1:
1b:5c:0b:11:0e:32:b0:9a:04:18:9e:bd:fe:14:15:36:c3:f6:
c8:06:a7:98:d9:8f:8f:5d:5d:6c:80:53:4a:0a:d5:df:05:e0:
30:92:74:9d:bc:e0:dd:c6:56:7a:5b:d0:eb:6b:15:a2:b8:c2:
c6:ab:d7:62:8c:c0:ee:3b:56:ed:9f:ea:55:8d:ae:05:5f:16:
19:5e:9d:19:c2:65:63:29:e9:05:42:2f:5f:bc:d4:d7:2c:d2:
b3:28:37:47:86:2d:4d:5a:58:4b:47:56:e6:38:9f:57:c7:25:
c3:57:00:41:01:9b:4f:95:ed:9e:ed:99:8c:05:65:16:1a:ba:
f7:1f:0d:5a:55:e2:5b:45:74:82:64:5e:d6:e2:39:d8:af:44:
f5:31:26:5c:ec:08:43:4b:ab:d7:0f:99:43:fe:f3:ed:44:d9:
12:71:41:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 01:16:24 2025 by rpki-client