Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EECA9B96C60C11EFA7EBAB75762E951A.roa
File: EECA9B96C60C11EFA7EBAB75762E951A.roa (raw, json)
Hash identifier: 6lkRlo0Jmlzeo/OGA8pM6GhIj0BoNGcvOtfEePx42mw=
Subject key identifier: 95:CD:95:3D:AB:9A:BB:82:0D:B6:12:66:74:99:B6:42:C2:DF:56:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012EC4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EECA9B96C60C11EFA7EBAB75762E951A.roa
Signing time: Sun 29 Dec 2024 17:47:12 +0000
ROA not before: Sun 29 Dec 2024 17:47:08 +0000
ROA not after: Sun 12 Dec 2027 17:47:08 +0000
asID: 17561
IP address blocks: 154.217.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77508 (0x12ec4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 17:47:08 2024 GMT
Not After : Dec 12 17:47:08 2027 GMT
Subject: CN=67718b20-3971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c2:9a:bc:ba:01:04:90:0c:e7:f1:6a:64:3e:
74:e9:fa:55:83:e1:cd:6d:1f:11:5b:bb:3e:20:86:
09:17:8a:8e:87:a0:4d:47:17:07:97:ee:e3:bc:e7:
41:ec:cc:6a:14:3c:e0:9b:8b:c3:21:36:68:f4:e4:
cf:50:2d:d9:8b:93:a5:d5:8a:15:0d:65:73:a6:b5:
fd:e7:61:63:5c:c0:6a:3e:d6:7b:e5:96:62:0a:b5:
f6:cc:fd:d4:dd:63:82:0f:ca:10:0f:a1:f3:7b:d8:
75:27:aa:7f:c6:e7:d4:7c:8b:10:71:c7:cb:3e:9e:
1b:11:b8:ac:0a:ce:16:9c:0b:25:c1:c4:43:89:0d:
8c:49:11:63:81:7e:f9:dc:bd:62:f5:3b:c8:fd:aa:
32:26:ef:4d:ce:98:1b:9d:46:16:2e:21:fb:5a:ac:
d4:6d:62:d6:07:ac:e1:84:6f:49:d7:99:8e:b2:b8:
b6:3b:06:bc:05:4f:e1:1c:5c:e2:82:aa:59:cf:3b:
0e:75:b2:bf:65:99:68:bf:64:8a:d5:5f:a6:0c:58:
fb:58:da:30:09:fc:97:a2:ad:ac:26:1c:00:1e:d4:
7e:01:9a:8c:2c:23:fc:f5:03:d9:d9:47:dc:4a:b4:
22:12:dd:91:f7:bc:ff:e3:36:05:5b:fe:27:05:c2:
e0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:CD:95:3D:AB:9A:BB:82:0D:B6:12:66:74:99:B6:42:C2:DF:56:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EECA9B96C60C11EFA7EBAB75762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.69.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:3c:a4:23:6b:b3:23:2f:60:73:8f:dc:c5:8b:7b:c8:d2:88:
c0:36:2e:af:66:3b:e2:70:a6:a7:b7:73:a6:c1:eb:2e:6a:14:
72:42:73:4d:4e:72:50:6c:09:8f:06:dc:76:ee:a7:8b:e4:45:
62:9b:35:76:16:3d:4a:47:66:70:e4:ff:04:de:87:52:e6:a2:
c3:90:3b:fc:7f:51:4f:1f:ea:8f:34:42:3f:b1:54:3c:f5:7c:
32:ff:e2:c7:c3:78:49:59:0f:2e:58:c4:4a:f4:41:a8:2d:76:
81:24:e9:fc:53:4b:c6:1e:39:40:11:71:f8:c1:49:48:72:a9:
54:9a:1f:3c:ff:61:a1:53:b7:b2:fb:96:24:f1:d0:55:fd:b3:
62:70:c6:8c:e2:71:c6:9c:54:e1:12:e5:45:33:7f:56:39:ae:
46:1a:3c:3c:75:3e:74:03:b0:4d:78:d9:88:ed:cb:a9:9b:03:
de:f8:ab:98:3e:17:29:49:5b:5e:03:65:f0:60:7c:95:7d:2f:
43:23:cd:e2:31:f2:10:66:92:99:67:ec:d3:92:65:ac:8f:72:
20:9d:9d:e8:d9:e7:fc:50:de:79:e7:c1:e4:2d:bc:90:e2:2f:
73:81:aa:a4:50:52:a1:3c:97:0f:ae:fc:4c:87:c9:0a:f3:30:
b9:95:82:ec
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAS7EMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI5MTc0NzA4WhcNMjcxMjEyMTc0NzA4WjAYMRYw
FAYDVQQDEw02NzcxOGIyMC0zOTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwcKavLoBBJAM5/FqZD506fpVg+HNbR8RW7s+IIYJF4qOh6BNRxcHl+7j
vOdB7MxqFDzgm4vDITZo9OTPUC3Zi5Ol1YoVDWVzprX952FjXMBqPtZ75ZZiCrX2
zP3U3WOCD8oQD6Hze9h1J6p/xufUfIsQccfLPp4bEbisCs4WnAslwcRDiQ2MSRFj
gX753L1i9TvI/aoyJu9NzpgbnUYWLiH7WqzUbWLWB6zhhG9J15mOsri2Owa8BU/h
HFzigqpZzzsOdbK/ZZlov2SK1V+mDFj7WNowCfyXoq2sJhwAHtR+AZqMLCP89QPZ
2UfcSrQiEt2R97z/4zYFW/4nBcLg/QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJXN
lT2rmruCDbYSZnSZtkLC31afMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FRUNBOUI5NkM2MEMxMUVGQTdFQkFCNzU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtlFMA0GCSqGSIb3DQEB
CwUAA4IBAQDQPKQja7MjL2Bzj9zFi3vI0ojANi6vZjvicKant3OmwesuahRyQnNN
TnJQbAmPBtx27qeL5EVimzV2Fj1KR2Zw5P8E3odS5qLDkDv8f1FPH+qPNEI/sVQ8
9Xwy/+LHw3hJWQ8uWMRK9EGoLXaBJOn8U0vGHjlAEXH4wUlIcqlUmh88/2GhU7ey
+5Yk8dBV/bNicMaM4nHGnFThEuVFM39WOa5GGjw8dT50A7BNeNmI7cupmwPe+KuY
PhcpSVteA2XwYHyVfS9DI83iMfIQZpKZZ+zTkmWsj3IgnZ3o2ef8UN5558HkLbyQ
4i9zgaqkUFKhPJcPrvxMh8kK8zC5lYLs
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:35:58 2025 by rpki-client