Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5C18C18F44A11EFB0B7C594762E951A.roa
File: F5C18C18F44A11EFB0B7C594762E951A.roa (raw, json)
Hash identifier: Wkj+L08MmYFX8UyqJ4RLb7l5iRrGUY/im9nOiMEDNTc=
Subject key identifier: 76:BA:DC:AF:F5:9C:D3:B3:C6:A1:6C:A6:72:41:23:8E:70:E5:7B:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01641C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5C18C18F44A11EFB0B7C594762E951A.roa
Signing time: Wed 26 Feb 2025 14:07:06 +0000
ROA not before: Wed 26 Feb 2025 14:07:02 +0000
ROA not after: Sat 19 Feb 2028 14:07:02 +0000
asID: 17561
IP address blocks: 154.82.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91164 (0x1641c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 14:07:02 2025 GMT
Not After : Feb 19 14:07:02 2028 GMT
Subject: CN=67bf200a-ab9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:47:fb:b2:e9:69:1b:83:10:26:7f:46:97:ae:
cc:16:b8:fd:a2:3b:e4:62:84:05:e5:4e:56:3f:61:
96:49:ea:ac:bc:86:4c:49:c6:ba:77:bd:27:01:bc:
ce:a7:f6:da:cc:b2:7a:d8:da:1b:66:27:70:e9:5d:
71:6c:de:9b:6a:74:b4:3c:ef:32:be:3a:f0:eb:91:
d3:ce:2d:86:38:94:09:bc:b5:7e:e6:ca:72:6b:0a:
60:2c:33:62:26:34:3e:33:cb:1b:b3:08:8a:56:71:
4d:dc:c0:3b:01:5f:10:93:33:a5:a2:0a:89:e8:ae:
e7:d0:96:0d:4b:d2:e5:ab:44:e8:5c:b1:5c:2c:b2:
29:cf:04:89:e6:a8:db:38:13:a9:58:c8:50:49:bc:
6c:ad:d2:c1:48:48:ba:7c:9d:80:49:85:c2:50:39:
0a:45:fc:59:3e:71:10:c9:1f:b9:9f:34:cd:ee:6b:
ac:4d:c6:9f:46:23:01:44:07:05:35:8e:22:31:11:
5b:19:35:6e:0a:64:b9:7a:fc:bf:6f:de:c5:69:de:
c9:d4:70:8d:55:67:6f:4a:8b:3a:45:9a:64:a7:36:
9c:ce:3a:84:e4:4b:42:b6:2f:73:1b:f6:da:dd:c8:
31:f7:bc:06:0b:1b:fd:db:a6:fa:24:76:26:85:f4:
75:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BA:DC:AF:F5:9C:D3:B3:C6:A1:6C:A6:72:41:23:8E:70:E5:7B:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5C18C18F44A11EFB0B7C594762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.201.0/24
Signature Algorithm: sha256WithRSAEncryption
64:2e:f3:84:d3:e8:31:e5:bb:6d:40:44:7f:c2:a5:80:d7:3b:
2c:1f:b4:0b:c8:b0:e7:13:94:c9:5e:a5:ff:71:ed:12:43:d7:
58:19:1b:7b:ca:b2:f4:62:e5:70:74:c0:c6:60:87:ab:4c:ad:
78:23:2d:31:c4:3e:30:d3:3c:24:a3:38:41:88:05:c9:7d:e3:
75:bc:45:3d:3e:30:77:46:84:b0:14:75:f5:a4:7f:33:59:94:
dc:ae:1f:3f:90:45:b9:c5:e1:6e:22:2b:cf:9e:a3:f3:79:9f:
cd:bf:57:73:a4:9b:90:c3:7f:20:dd:d0:90:b7:a1:59:e4:1b:
e9:b1:51:2e:5b:38:de:0e:7c:14:ba:be:28:de:a3:bf:70:85:
1d:fd:24:8b:ee:73:aa:42:a1:2d:f4:97:82:63:7c:d4:9d:24:
18:52:6e:30:78:1d:94:1c:4d:35:aa:9e:c9:3f:b0:31:0e:c4:
d6:5a:0f:ef:c2:d1:8d:b3:a9:0a:1b:3f:df:4c:ff:5e:eb:de:
05:c8:75:05:49:e3:22:08:f8:09:89:ac:9a:fd:5d:ea:e0:7e:
ca:2b:12:e5:6c:e0:d3:ba:c2:c8:07:02:06:84:a2:01:9e:16:
c1:cd:77:be:8f:0c:f2:da:6a:95:8c:d1:2a:1f:0e:b0:b0:63:
0b:ee:54:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:15 2025 by rpki-client