Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECB9CA5AC54111EFB6C47970762E951A.roa
File: ECB9CA5AC54111EFB6C47970762E951A.roa (raw, json)
Hash identifier: MUeKLT7kJkz/TDJD/7Z9GoFi1q7RScM0v/+t3MrbGbo=
Subject key identifier: 89:5E:D2:02:73:D1:BA:04:1D:69:A6:75:EB:BC:76:4F:1A:F5:10:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012C85
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECB9CA5AC54111EFB6C47970762E951A.roa
Signing time: Sat 28 Dec 2024 17:34:01 +0000
ROA not before: Sat 28 Dec 2024 17:33:57 +0000
ROA not after: Sun 12 Dec 2027 17:33:57 +0000
asID: 17561
IP address blocks: 154.206.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76933 (0x12c85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 17:33:57 2024 GMT
Not After : Dec 12 17:33:57 2027 GMT
Subject: CN=67703689-bd09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8d:7a:7d:95:a6:90:b5:8e:ea:68:f7:91:68:
5e:92:fd:09:ec:8e:05:b0:11:ac:9e:03:4a:2b:f8:
3b:7e:4b:73:2d:d2:65:c0:86:51:0a:e9:38:f7:fe:
a5:6a:fd:f5:c8:81:53:a0:64:9e:69:57:28:d2:e8:
69:24:8b:49:e9:f4:5c:60:91:50:51:58:24:b3:e3:
91:31:5b:c8:df:53:2f:c5:e1:38:d9:8a:6b:d1:ba:
84:ef:b4:ce:c4:06:0f:bf:d4:3c:11:f3:cf:bf:d6:
1a:2a:8c:65:12:fa:ca:8f:26:16:ad:4c:cf:36:e9:
d2:7b:13:30:21:f2:0e:11:d8:77:03:91:96:52:a8:
55:76:7b:09:d7:b2:46:12:56:60:b0:14:62:83:47:
b1:8a:35:1a:a9:46:dc:5a:6a:f9:d1:88:36:f9:52:
0a:ad:7e:13:8f:bc:5c:25:e6:4c:c1:69:e7:ea:c1:
64:a2:2f:47:76:7d:d4:64:80:ad:5a:a5:59:38:65:
e6:69:bb:76:22:11:a7:b1:4b:31:fb:db:35:02:38:
24:76:60:7d:82:73:97:d6:71:35:1f:5e:e7:97:b9:
9e:bc:2d:d8:d6:47:0f:cb:a7:bd:63:9a:cd:7d:68:
e8:3c:3d:22:65:6e:7b:84:2d:63:c3:22:6f:2e:9d:
6e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:5E:D2:02:73:D1:BA:04:1D:69:A6:75:EB:BC:76:4F:1A:F5:10:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECB9CA5AC54111EFB6C47970762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.250.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:27:1c:ef:2e:d3:9f:80:9d:24:c3:67:16:a5:20:ca:ac:4a:
87:e7:62:0f:f4:23:58:e5:a3:13:21:fd:b7:fe:a7:5e:ac:2a:
b9:a8:bf:86:33:30:b3:48:3a:25:4d:8d:52:ad:f6:be:1d:9b:
e2:12:2d:66:5b:e1:d7:31:74:57:de:8e:cc:5a:4e:6e:33:50:
c4:50:63:e4:07:4b:7f:8d:9f:8e:cf:8f:30:91:e5:92:a6:ea:
df:0b:67:00:8c:f9:37:75:78:be:3e:75:e5:47:43:48:25:d6:
2f:16:46:3e:07:13:cb:42:91:8b:46:12:e5:8a:a4:a5:bf:53:
d1:84:0d:de:78:e7:9b:be:8f:f3:65:29:81:3a:0a:ef:6f:93:
82:aa:a0:00:88:de:43:7a:cf:54:71:b4:50:5e:b0:71:7b:7d:
06:28:0d:8e:8f:66:0b:cc:f7:19:34:35:e1:d8:ef:ae:a1:24:
46:65:e9:fe:d9:77:52:22:34:f5:36:a8:1b:8f:75:c9:3f:fc:
74:84:54:db:d5:41:3f:02:07:91:a9:4f:91:e8:86:2a:df:b2:
7d:11:9b:6e:6e:3e:91:8d:37:32:7a:34:ea:87:bd:c8:eb:90:
ea:76:2b:e4:5d:f3:c7:85:e6:f9:89:fc:64:1e:0b:38:17:b1:
6d:99:5c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:55:33 2025 by rpki-client