Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEFF603EC25511EFB69E4153762E951A.roa
File: EEFF603EC25511EFB69E4153762E951A.roa (raw, json)
Hash identifier: XS7nE3diaOoEkvC+HcbHEmPZ8n2E9hLA0EUWGPtqAXw=
Subject key identifier: A3:FD:21:1E:51:F9:2B:1F:7B:74:AC:10:0C:4C:F6:69:58:8B:6D:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012331
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEFF603EC25511EFB69E4153762E951A.roa
Signing time: Wed 25 Dec 2024 00:19:41 +0000
ROA not before: Wed 25 Dec 2024 00:00:37 +0000
ROA not after: Wed 10 Dec 2025 00:00:37 +0000
asID: 984
IP address blocks: 154.199.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74545 (0x12331)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 00:00:37 2024 GMT
Not After : Dec 10 00:00:37 2025 GMT
Subject: CN=676b4f9d-6498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4a:77:68:1c:cf:c2:84:00:69:b8:01:49:c2:
29:29:7b:45:b4:60:07:d3:17:a4:c2:db:01:ba:15:
2e:3e:32:6d:4b:7a:ce:62:2b:ca:81:de:08:04:0d:
0a:d7:42:84:12:bc:6b:62:b3:ed:bc:b7:ec:07:c1:
80:33:8c:0b:58:60:a9:6f:7d:13:a3:ad:f6:06:58:
23:16:c2:29:62:f5:08:fd:d0:db:3b:75:20:6b:8e:
e7:94:40:6e:a1:6f:49:23:f8:fe:7a:1e:2c:87:06:
34:45:35:6b:72:ac:35:b8:63:aa:8e:6a:79:59:90:
91:5b:8e:61:c0:1b:bb:7b:06:6a:c8:89:e5:81:1a:
89:13:dc:5a:14:f3:8d:7e:d4:83:72:3b:2e:2f:15:
17:01:91:c7:98:d9:9c:e2:07:63:19:56:e3:8a:47:
7f:e7:e4:7d:79:5f:4a:10:bd:b3:b7:44:47:0e:4f:
4c:40:00:96:88:65:1d:d7:74:32:da:1e:5d:55:e4:
eb:01:90:51:42:df:99:a2:85:7c:4e:db:c8:7f:ef:
18:c8:bc:7d:11:30:54:0c:f3:d9:5a:8d:35:7a:c3:
a8:13:c8:c4:b0:77:be:56:67:56:5e:c0:b6:30:72:
a6:5f:9d:7a:33:16:35:75:64:90:af:cd:1c:26:c9:
d3:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:FD:21:1E:51:F9:2B:1F:7B:74:AC:10:0C:4C:F6:69:58:8B:6D:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EEFF603EC25511EFB69E4153762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.37.0/24
Signature Algorithm: sha256WithRSAEncryption
75:e6:55:7b:65:e0:17:ac:08:31:ed:bd:4d:97:7c:e5:20:61:
80:f1:65:6e:00:04:3a:3e:ed:f0:1a:fa:34:92:43:f6:0c:e6:
74:c8:d0:9c:87:24:c3:34:8b:37:3d:b6:f5:9c:2c:24:b6:33:
3b:dd:31:d2:be:10:99:c2:39:53:3b:6e:54:fa:a2:d4:7a:d9:
e6:28:b0:7b:6f:e6:55:c6:c9:98:09:a7:cd:62:e0:89:e7:2a:
40:63:d8:9a:34:3c:54:2f:4a:0d:89:f0:20:59:00:ae:f6:a6:
10:fa:31:d7:e9:a0:b8:3c:2c:1d:7e:3f:65:01:cf:39:2f:2b:
b6:c1:13:08:49:dc:d9:9e:26:85:0a:6f:35:12:70:f5:37:83:
78:22:33:03:e0:7e:c8:ec:33:eb:6b:a4:ae:a7:e3:11:89:2d:
e5:eb:02:b9:af:62:1b:7e:82:5a:b2:64:53:3d:db:f1:0b:8d:
36:ef:24:4a:c7:c2:bc:1f:9a:c2:fb:8f:07:17:22:9c:21:43:
03:27:5d:20:b7:84:88:f4:9f:dc:c1:e4:b3:9a:28:5f:8b:0e:
04:e5:0a:85:31:42:1c:8a:40:d0:19:7d:95:af:68:9a:49:e1:
6e:db:c1:95:52:7c:15:57:cf:54:6c:6a:a9:05:4f:bf:88:88:
a9:c0:67:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:02:25 2025 by rpki-client