Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFA6AD36C3DA11EFBBC44B82762E951A.roa
File: EFA6AD36C3DA11EFBBC44B82762E951A.roa (raw, json)
Hash identifier: mwVdd+O0LI5/Znqt5gPKhXhldbrBohqhiAkO3KQNNSQ=
Subject key identifier: 6D:EB:71:75:1F:41:B7:42:EC:B3:F4:09:32:73:57:CB:94:17:22:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0128A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFA6AD36C3DA11EFBBC44B82762E951A.roa
Signing time: Thu 26 Dec 2024 22:44:16 +0000
ROA not before: Thu 26 Dec 2024 22:44:13 +0000
ROA not after: Sun 12 Dec 2027 22:44:13 +0000
asID: 17561
IP address blocks: 154.85.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75940 (0x128a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 22:44:13 2024 GMT
Not After : Dec 12 22:44:13 2027 GMT
Subject: CN=676ddc40-f11b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:95:e7:ef:cf:0a:64:0a:dd:77:db:e2:1d:7f:
28:26:07:44:bc:26:88:8b:45:c1:b2:60:b7:e7:a1:
4d:69:a0:26:ef:63:d6:cf:26:ff:7f:0b:af:75:2d:
ed:7f:14:de:5f:94:ba:a0:8b:65:0b:9e:6f:8b:39:
dc:ce:b5:2a:37:1a:84:6e:bc:dc:4c:d1:fe:e5:07:
d7:d0:10:59:50:21:94:1a:29:9a:e2:f3:81:24:6f:
78:15:0a:90:a3:f7:23:41:e3:26:5b:0f:f3:ac:51:
05:a2:4e:d2:bd:87:84:ca:6d:2a:c7:07:10:e1:25:
de:16:1b:00:d4:2f:02:bd:fa:7d:8e:31:71:64:32:
a9:92:83:6a:b9:c4:e4:af:ef:00:7d:da:1e:ad:08:
91:e3:7e:91:07:94:dc:46:e4:63:46:e4:2d:63:3f:
71:03:8c:f0:c3:08:1e:47:d5:04:06:ca:3d:ec:a5:
e2:2c:b8:34:77:01:9e:ae:77:7d:61:aa:93:43:13:
db:11:3a:ff:cf:d3:c3:70:c8:d3:b9:70:84:29:9c:
c0:c2:ae:1b:45:27:c6:e1:63:1b:4e:c3:9d:eb:45:
db:2d:25:f3:97:18:65:a7:60:1a:95:df:76:a0:32:
62:db:3b:b0:ce:69:30:2a:5c:c9:96:99:22:95:f7:
1b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:EB:71:75:1F:41:B7:42:EC:B3:F4:09:32:73:57:CB:94:17:22:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFA6AD36C3DA11EFBBC44B82762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.28.0/24
Signature Algorithm: sha256WithRSAEncryption
62:28:a2:a0:d5:08:fd:4f:dd:93:de:59:57:8d:0f:e2:99:89:
ee:f5:03:51:c3:16:e8:c4:4b:f4:40:21:79:c9:e2:75:71:65:
9b:47:ed:b3:38:76:6f:30:de:e5:9e:76:8c:02:88:08:1a:ce:
92:97:70:5d:96:0f:59:eb:ad:db:f6:c0:fc:7e:7c:c2:6c:ad:
26:a7:82:2c:36:e7:36:0e:f8:87:b6:69:d7:20:c9:71:30:9e:
72:8f:1f:89:0d:7c:90:63:3d:95:ac:87:cc:39:db:43:e3:c4:
b4:e3:25:24:c8:71:7e:c7:b7:73:83:4c:8c:8d:90:79:5e:39:
53:cc:ec:26:df:3e:c9:57:f6:0d:d4:95:89:11:86:12:93:ea:
83:05:4f:0e:e5:b5:a8:16:90:61:5a:29:32:77:81:7b:87:7a:
fd:ac:0e:a9:54:43:21:8c:cf:e5:9e:ae:52:76:2a:3d:31:3b:
3f:82:a0:0a:d2:f8:3b:22:34:86:ce:19:03:c7:63:27:de:81:
7e:a0:a9:7f:a3:8c:98:fa:ed:23:5f:ce:28:77:ef:3d:41:53:
e4:d7:d3:00:ff:4f:56:cb:a7:ed:a4:d1:31:ae:7a:f2:de:7a:
73:65:e6:8e:84:5f:23:71:a7:92:21:52:1e:e1:79:c7:92:ad:
7a:2e:52:b1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASikMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MjI0NDEzWhcNMjcxMjEyMjI0NDEzWjAYMRYw
FAYDVQQDEw02NzZkZGM0MC1mMTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy5Xn788KZArdd9viHX8oJgdEvCaIi0XBsmC356FNaaAm72PWzyb/fwuv
dS3tfxTeX5S6oItlC55viznczrUqNxqEbrzcTNH+5QfX0BBZUCGUGima4vOBJG94
FQqQo/cjQeMmWw/zrFEFok7SvYeEym0qxwcQ4SXeFhsA1C8Cvfp9jjFxZDKpkoNq
ucTkr+8AfdoerQiR436RB5TcRuRjRuQtYz9xA4zwwwgeR9UEBso97KXiLLg0dwGe
rnd9YaqTQxPbETr/z9PDcMjTuXCEKZzAwq4bRSfG4WMbTsOd60XbLSXzlxhlp2Aa
ld92oDJi2zuwzmkwKlzJlpkilfcb5wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFG3r
cXUfQbdC7LP0CTJzV8uUFyKbMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FRkE2QUQzNkMzREExMUVGQkJDNDRCODI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlUcMA0GCSqGSIb3DQEB
CwUAA4IBAQBiKKKg1Qj9T92T3llXjQ/imYnu9QNRwxboxEv0QCF5yeJ1cWWbR+2z
OHZvMN7lnnaMAogIGs6Sl3Bdlg9Z663b9sD8fnzCbK0mp4IsNuc2DviHtmnXIMlx
MJ5yjx+JDXyQYz2VrIfMOdtD48S04yUkyHF+x7dzg0yMjZB5XjlTzOwm3z7JV/YN
1JWJEYYSk+qDBU8O5bWoFpBhWikyd4F7h3r9rA6pVEMhjM/lnq5Sdio9MTs/gqAK
0vg7IjSGzhkDx2Mn3oF+oKl/o4yY+u0jX84od+89QVPk19MA/09Wy6ftpNExrnry
3npzZeaOhF8jcaeSIVIe4XnHkq16LlKx
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:35:41 2025 by rpki-client