Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F635E3CCC1D411EFB91BB2A0762E951A.roa
File: F635E3CCC1D411EFB91BB2A0762E951A.roa (raw, json)
Hash identifier: Y12eZUcDJnhLaAc8Nm8kJyZWWV8sbdmxFuXvHka3OlU=
Subject key identifier: AD:C9:EE:84:40:B4:43:F8:BA:AD:3C:79:94:06:6B:3C:BB:C6:FB:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0122BB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F635E3CCC1D411EFB91BB2A0762E951A.roa
Signing time: Tue 24 Dec 2024 08:56:28 +0000
ROA not before: Tue 24 Dec 2024 08:56:24 +0000
ROA not after: Wed 10 Dec 2025 08:56:24 +0000
asID: 984
IP address blocks: 154.193.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74427 (0x122bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 08:56:24 2024 GMT
Not After : Dec 10 08:56:24 2025 GMT
Subject: CN=676a773c-240a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cf:b7:78:dc:b4:53:74:01:f9:b7:e3:e9:57:
a9:2b:30:18:0d:a2:2a:d1:3c:66:a3:02:7b:d3:0e:
59:a6:e7:ed:24:de:07:9c:ec:3b:60:7e:56:5c:ad:
83:f9:ad:91:d9:a5:ae:64:df:f5:bc:4e:ae:89:bb:
1e:aa:5c:27:89:03:43:4d:71:04:61:f8:8c:31:d3:
2e:ad:2e:ef:f8:8c:63:1d:1a:31:69:33:d7:9a:51:
7c:88:ed:12:b2:59:7a:bb:c8:df:24:d9:86:61:e1:
bd:2d:a8:61:79:d1:aa:94:c6:11:b9:0c:ba:72:fc:
8d:51:8b:12:bb:f9:46:03:1c:d5:05:a9:15:9f:5d:
6b:1b:57:6d:d2:71:be:ab:c8:58:64:41:f2:f8:8f:
41:5b:23:5d:eb:1c:82:26:66:b9:cd:da:d2:12:fd:
a3:45:4c:5b:b0:02:39:b9:a9:16:08:a0:a4:28:c4:
8c:24:70:cc:4c:f2:93:18:89:ae:6a:cb:d1:6b:6f:
34:24:82:97:ad:79:e7:11:72:01:84:85:4a:b3:3b:
7a:d5:1a:94:4a:48:8d:c7:e0:e6:6b:e4:f0:60:e5:
d8:8c:c2:73:4e:7d:44:6b:33:4e:ca:c9:f5:c9:f1:
a2:8d:db:4a:21:5b:16:12:8c:6d:10:54:ce:87:b3:
d4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C9:EE:84:40:B4:43:F8:BA:AD:3C:79:94:06:6B:3C:BB:C6:FB:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F635E3CCC1D411EFB91BB2A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.253.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:0e:f2:1f:79:fa:f3:54:42:c7:4e:83:47:44:c3:4e:bb:34:
1c:27:ad:53:69:a0:a0:80:eb:b6:5d:7c:a6:51:e1:32:a1:43:
3f:fa:37:79:ca:d8:ff:74:ec:d2:23:b9:de:51:42:27:d5:52:
a7:22:bd:d6:50:70:77:e5:64:a4:ea:4d:d9:91:09:7f:1e:92:
c6:3c:48:cf:51:5f:50:96:79:da:fc:d0:f8:64:21:03:2b:ad:
ef:b1:9b:19:7a:79:08:9d:7e:33:9f:e7:7d:10:a1:48:1b:74:
51:00:92:a3:69:f6:a6:d9:ea:6a:46:3c:7d:fe:fb:72:02:d7:
89:52:02:35:dd:0f:0a:88:2a:62:c2:7f:ca:92:1c:2b:d9:82:
cf:68:fc:a1:77:25:cf:0a:df:b9:77:af:ed:00:d6:23:b2:83:
a5:7c:b5:0b:63:8b:23:a8:87:27:1b:27:aa:98:cb:41:87:e0:
3c:c7:f1:ff:b5:aa:b5:70:b9:e5:36:fa:23:63:ee:67:d2:a1:
22:17:63:be:ca:06:e2:92:d6:bb:62:72:e0:e9:2b:1b:74:ca:
55:f9:ef:ee:f9:c4:eb:a7:43:d3:c7:70:2b:66:c3:a4:78:2c:
b9:d7:44:4c:09:88:d5:19:9f:73:23:19:df:14:a9:24:0c:a0:
46:72:d3:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:08 2025 by rpki-client