Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4D77446C38211EFA104945A762E951A.roa
File: F4D77446C38211EFA104945A762E951A.roa (raw, json)
Hash identifier: 3WgqeDp4GCCX6QuBev4T60KIzkaXRSwIoT/mVkEqSsU=
Subject key identifier: F4:8C:0B:67:82:BE:C9:2E:06:C9:A3:A0:50:DF:F3:70:67:93:09:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012772
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4D77446C38211EFA104945A762E951A.roa
Signing time: Thu 26 Dec 2024 12:14:29 +0000
ROA not before: Thu 26 Dec 2024 12:14:25 +0000
ROA not after: Sun 12 Dec 2027 12:14:25 +0000
asID: 17561
IP address blocks: 154.94.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75634 (0x12772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 12:14:25 2024 GMT
Not After : Dec 12 12:14:25 2027 GMT
Subject: CN=676d48a5-1e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e0:6b:d1:d4:50:84:57:d4:7d:04:58:13:0d:
19:eb:cc:94:58:9f:da:3e:a5:bd:a4:27:c7:d9:7a:
b8:e0:d4:ed:c5:3a:55:e3:11:ef:e2:ba:5a:04:3b:
38:69:5f:df:9c:db:c1:fc:7f:75:d3:b1:61:ce:fa:
81:b8:b1:c3:3c:15:e7:c8:6d:2c:dd:66:06:5c:23:
c2:69:2c:ef:0e:bf:32:9d:05:dd:df:f3:a7:b5:2a:
4c:c4:03:15:13:2d:4e:ba:ff:cd:68:d6:92:89:75:
e7:bf:a7:f6:96:dd:ef:a7:6c:52:52:7a:93:90:4b:
90:a1:36:3a:1c:0b:b7:a3:75:3a:1d:ee:23:f0:2c:
32:b9:b8:0b:57:89:e2:b4:b7:fd:12:50:ce:41:b9:
e1:22:23:e5:42:46:86:cf:ec:94:bf:fc:b4:5f:a0:
8b:5c:c3:ac:90:cf:29:46:c8:9f:b4:2d:e0:c7:aa:
56:fe:91:98:fd:92:0d:e3:5b:59:df:d2:9c:ca:c8:
cc:f2:55:a6:3b:c6:b2:2e:65:2d:7f:0e:52:3d:14:
51:d8:d5:53:bd:12:f1:d2:7b:51:0f:3f:87:d1:48:
32:64:a9:03:89:e5:2a:37:bb:21:53:83:bf:e8:1b:
26:86:f4:27:2f:3d:43:eb:60:6a:b0:b0:1d:19:d1:
de:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:8C:0B:67:82:BE:C9:2E:06:C9:A3:A0:50:DF:F3:70:67:93:09:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4D77446C38211EFA104945A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.208.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:03:83:24:77:c3:58:69:ca:ee:d2:f5:2c:67:d5:5f:e6:34:
4f:81:47:f6:fb:2d:51:2e:0c:6f:7e:83:c1:76:09:a5:15:67:
3d:0b:c9:80:4a:82:79:0c:e5:60:f6:aa:57:a1:f9:41:c7:af:
21:b1:5e:6d:24:76:21:fd:a5:9d:d4:e4:ca:54:dd:f8:11:53:
d3:95:ca:a2:d4:2b:44:54:38:ad:0b:c7:3f:46:ab:46:13:ac:
07:ba:eb:96:ef:09:a4:d8:5a:f4:97:96:3f:c6:e3:d2:51:8d:
a3:3c:89:dd:cb:31:12:fd:ca:50:8b:fe:f9:b3:a0:04:04:e6:
e1:d9:48:6f:1e:42:a0:16:9b:18:64:63:d5:98:27:c8:f5:ec:
cd:03:85:e9:55:48:4e:c4:8a:c1:be:e4:a7:44:bf:a7:42:54:
f7:53:31:f8:14:97:21:85:46:0b:bc:95:95:5d:a8:22:59:22:
ba:c8:2e:5c:dd:b9:b2:f6:83:10:5b:9c:23:38:dc:ce:48:37:
96:15:22:58:0c:fa:25:18:5a:8c:ce:27:d9:1a:44:c3:8b:8f:
bc:9d:ff:cd:e2:4c:89:20:f8:b5:d8:52:b9:91:21:50:9f:aa:
6a:24:e7:50:dc:6b:c9:32:8b:97:ba:16:ed:0f:ec:36:31:c5:
b9:b4:b8:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:37:40 2025 by rpki-client