Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2859044C5F111EF8603054E762E951A.roa
File: F2859044C5F111EF8603054E762E951A.roa (raw, json)
Hash identifier: kQki6nW69ud5i4knz2bJ6E2oh3Z8EWyJ4pnM8Fd/MKk=
Subject key identifier: F8:BD:3A:3C:40:C3:75:4E:05:B0:0A:91:84:52:3B:81:8B:AF:67:E0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012DDE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2859044C5F111EF8603054E762E951A.roa
Signing time: Sun 29 Dec 2024 14:34:02 +0000
ROA not before: Sun 29 Dec 2024 14:33:58 +0000
ROA not after: Fri 12 Dec 2025 14:33:58 +0000
asID: 984
IP address blocks: 154.211.57.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77278 (0x12dde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 14:33:58 2024 GMT
Not After : Dec 12 14:33:58 2025 GMT
Subject: CN=67715dda-cc75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:79:41:a2:60:f2:d8:f1:71:3a:0f:0a:34:e7:
4c:1d:a5:95:3d:3c:44:3a:c3:d1:0f:10:fb:b3:e4:
7e:82:6a:0c:14:a9:0a:25:35:36:ed:8a:80:82:0b:
d5:26:f7:3e:3e:9a:ca:bb:6b:e5:69:ac:80:aa:06:
17:91:ab:5f:0b:7c:3e:74:1d:3f:b1:a2:72:52:08:
bb:0d:3e:a9:26:06:f1:a5:0e:a1:7f:ca:b5:38:c6:
cf:2c:af:b4:2b:8d:ec:bc:1b:46:fe:e6:53:3e:a5:
ef:2e:12:bb:8c:78:86:7a:03:8d:5a:b0:db:c0:b4:
f4:ac:aa:25:4e:d8:1c:4d:10:0e:ec:e0:96:33:e3:
08:ce:8b:68:95:1a:b6:a2:ff:70:38:89:00:79:65:
de:21:42:50:0f:bd:6c:67:54:6d:02:5b:33:4e:a2:
b5:21:a8:1d:af:96:3c:cd:ad:95:d9:1c:01:6c:7d:
56:a7:d8:a0:80:47:b4:97:6c:41:a9:64:4a:e8:86:
5d:71:ae:94:91:66:9c:19:fa:5d:cd:1c:57:40:db:
13:7f:f8:5b:73:3c:7d:bd:7e:e6:ed:e3:26:b7:14:
94:92:ca:0d:b5:8e:b7:c2:70:05:e0:65:95:59:c8:
82:7e:e0:40:f6:73:90:34:ee:4f:db:23:65:cf:fa:
9e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:BD:3A:3C:40:C3:75:4E:05:B0:0A:91:84:52:3B:81:8B:AF:67:E0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2859044C5F111EF8603054E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.57.0/24
Signature Algorithm: sha256WithRSAEncryption
01:dc:59:5f:e8:ef:6e:47:88:21:72:b7:3d:e4:67:a9:b6:5d:
50:30:3e:6b:86:9c:e2:d1:6c:8f:a9:db:36:47:0a:6b:00:c1:
4b:97:aa:5d:1a:3f:e5:9e:f3:fa:bf:41:4d:cf:c1:c9:6a:23:
c1:bb:d1:00:c6:6f:07:23:70:ce:08:f4:2d:7e:fa:b2:54:d8:
b4:8a:51:47:ea:cb:91:ff:12:3e:da:24:ac:69:cd:a7:27:a7:
49:ae:39:0c:52:4a:b1:f6:08:7f:03:de:5a:c2:ed:6e:fa:96:
3a:2c:18:ee:82:a8:84:30:2f:ae:bb:b0:ae:9c:d2:18:c2:4a:
ee:71:7a:4f:a5:b3:03:47:4f:9a:7d:d4:49:9b:73:8e:0b:78:
56:26:e0:aa:bd:bc:b3:09:e6:a9:c7:43:9c:81:c3:5d:c6:92:
67:0d:0f:7e:0f:e8:c9:a9:96:54:4d:09:05:af:62:a5:cd:d3:
bb:d5:02:be:6f:35:7f:46:b0:b3:24:6b:c4:f2:05:eb:61:15:
84:68:77:3a:30:ad:e1:6a:b8:de:34:b5:55:b1:5a:77:c9:56:
73:cd:34:56:b3:d7:a7:71:45:16:d1:de:f0:b5:dc:8f:90:4f:
ad:ca:54:eb:80:52:4c:25:01:d8:ec:5b:a2:8a:86:8f:93:17:
65:78:e7:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:32 2025 by rpki-client