Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F51A4F50C41811EF9D2F049F762E951A.roa
File: F51A4F50C41811EF9D2F049F762E951A.roa (raw, json)
Hash identifier: FhI2EV8TB95in4jcqYm4LIA2bqs7qThHML2oa160R+o=
Subject key identifier: CD:60:3F:53:BA:4B:E5:4C:57:54:BF:E9:78:BD:EC:F0:52:82:5F:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012979
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F51A4F50C41811EF9D2F049F762E951A.roa
Signing time: Fri 27 Dec 2024 06:08:14 +0000
ROA not before: Fri 27 Dec 2024 06:08:11 +0000
ROA not after: Fri 12 Dec 2025 06:08:11 +0000
asID: 984
IP address blocks: 154.198.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76153 (0x12979)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 06:08:11 2024 GMT
Not After : Dec 12 06:08:11 2025 GMT
Subject: CN=676e444e-4390
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:12:4d:3e:6a:13:cf:d4:f6:ab:91:a9:90:a7:
9c:a6:db:7a:24:98:3c:ce:e8:9c:68:e8:1d:da:35:
e9:f9:9c:d0:ba:f6:bf:72:32:73:2d:89:bd:f8:cc:
d6:b6:b9:47:3a:27:34:b5:ac:fa:1f:99:09:eb:89:
e3:aa:ac:6d:02:22:1f:3b:7b:09:79:54:4e:7d:21:
51:c4:f3:c6:47:40:21:92:f1:94:d4:64:27:53:c4:
64:2b:18:83:fc:ad:b4:62:15:d5:c7:00:98:d5:6d:
5e:ee:45:b8:69:c1:9f:3f:4c:47:7e:6e:5c:0d:33:
fc:20:b4:1f:3e:1f:44:11:13:7b:b3:32:95:dc:fb:
ae:94:b6:02:b4:54:3c:22:0f:a8:75:56:12:38:e2:
1c:b9:a0:17:30:d8:c0:46:59:00:8c:b5:0f:fe:6c:
c9:4e:b7:3e:6a:05:1b:b4:21:76:fb:33:c7:f9:b8:
e0:23:07:ff:2f:38:59:b1:c1:9b:4e:c2:9a:59:db:
f3:72:2c:96:2c:0c:8e:8d:5f:86:83:7d:39:b1:e4:
be:5b:16:1d:33:c7:df:24:14:af:ea:38:51:46:25:
2b:41:d1:38:44:06:7e:0e:d8:80:cf:91:ee:a8:c8:
8e:12:78:a4:74:07:c9:31:d7:74:64:e2:47:33:dd:
ab:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:60:3F:53:BA:4B:E5:4C:57:54:BF:E9:78:BD:EC:F0:52:82:5F:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F51A4F50C41811EF9D2F049F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.63.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:d5:e4:68:38:28:6f:e1:45:c5:2b:9e:31:1d:ac:a8:2c:fa:
6b:d9:f7:78:0a:14:f5:de:21:d8:be:98:81:9b:5c:72:86:65:
3c:5d:c4:76:59:62:a0:df:85:cc:f7:61:58:9c:a5:5f:ab:27:
0a:a6:9f:24:b2:17:3c:8e:5a:d5:1f:a7:6c:7f:aa:14:6b:f2:
41:00:78:3c:d8:df:ba:02:d9:18:02:8d:68:95:25:ca:bc:a4:
2e:50:2c:33:5c:db:0d:93:ca:b2:98:d0:2e:96:1b:0c:24:c5:
66:90:4e:88:98:c4:51:5c:e7:f8:e3:81:18:5e:2f:cf:89:98:
ca:0c:33:5d:4b:88:44:de:72:84:79:ef:f4:66:51:4f:e6:5e:
80:05:a6:01:ea:1b:8e:ab:0b:ec:0a:d7:08:73:7b:88:10:a1:
c5:d6:99:25:da:1c:ea:fc:5a:df:5a:8a:28:bc:32:e1:c1:d4:
0f:0d:04:d0:f9:66:59:95:4d:5e:74:b0:74:98:fe:5f:de:8e:
a8:58:2a:18:04:e5:a2:44:38:92:a9:24:d3:48:ae:e6:bb:37:
48:1f:9a:e8:e2:2e:0f:3a:cd:2a:52:b9:3e:05:cc:b0:83:26:
c4:52:ca:3e:d1:dc:2c:c6:f6:26:2d:ef:8b:5d:b8:ab:2a:32:
7c:65:43:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:55 2025 by rpki-client