Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8C410D0C3C511EF89E9D67E762E951A.roa
File: F8C410D0C3C511EF89E9D67E762E951A.roa (raw, json)
Hash identifier: 1BRWj/KfVAG68rkRw2/Q2ptV/iASqwb8HAzP09UiIZ4=
Subject key identifier: 36:AE:5C:BA:5C:23:C9:6E:80:F6:D4:E3:82:45:9F:9E:BB:F0:D7:A8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0127D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8C410D0C3C511EF89E9D67E762E951A.roa
Signing time: Thu 26 Dec 2024 20:14:12 +0000
ROA not before: Thu 26 Dec 2024 20:14:08 +0000
ROA not after: Fri 12 Dec 2025 20:14:08 +0000
asID: 984
IP address blocks: 154.83.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75728 (0x127d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 20:14:08 2024 GMT
Not After : Dec 12 20:14:08 2025 GMT
Subject: CN=676db914-6050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0f:76:a1:0d:3b:81:6f:66:78:83:cd:f2:cc:
5d:8a:c5:db:4c:b2:b9:65:f1:81:4f:ff:5f:34:6f:
07:ef:0c:1e:cd:40:5c:fb:fc:62:89:3a:16:df:2e:
26:64:8d:fe:98:93:1f:e9:a3:09:50:bb:34:56:1e:
3f:bd:48:17:47:23:8f:38:ad:c5:8d:3f:cc:c8:a6:
1a:01:d5:10:56:ef:2b:8f:65:24:38:a4:c4:20:83:
7b:5d:9c:08:07:45:e4:e1:b6:6c:89:b4:80:5f:3c:
20:c3:b9:67:b6:a4:ed:8c:da:b3:53:3b:96:8f:6e:
72:23:a7:28:ee:a6:2e:cc:b5:27:0c:08:f7:7a:98:
ad:98:ed:23:cd:62:3c:dc:95:f3:14:2f:5b:f4:67:
06:66:f0:8e:59:30:fe:91:02:3b:b6:57:76:62:db:
07:6a:90:a3:62:b0:7d:59:a5:fb:7b:08:fe:ff:34:
f4:15:31:c4:a8:ef:0a:e0:4b:55:0c:58:37:c1:6b:
5d:46:2d:ac:de:81:88:d4:d7:97:e7:c5:a5:60:2f:
ea:a4:3d:03:2a:77:8f:c0:ae:82:ed:73:33:1b:74:
e0:94:72:a1:26:ee:ea:7c:c8:ee:54:b0:85:e4:8d:
78:5e:d9:d8:df:87:05:3a:98:52:82:15:d4:48:56:
65:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:AE:5C:BA:5C:23:C9:6E:80:F6:D4:E3:82:45:9F:9E:BB:F0:D7:A8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F8C410D0C3C511EF89E9D67E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.41.0/24
Signature Algorithm: sha256WithRSAEncryption
95:57:9e:1d:4b:6f:7f:b3:0e:4c:34:ee:10:31:2e:20:50:1a:
b9:f3:de:e1:3c:6b:0d:5e:05:47:f6:fa:18:b7:80:67:fd:88:
01:c1:0e:a1:d3:4e:5b:8c:aa:e1:ed:6b:dd:24:fd:9a:40:e4:
c0:b2:ee:0b:39:79:e0:0b:35:77:00:30:04:1f:55:4f:15:00:
6f:17:b0:10:ca:2e:3c:6c:a0:2b:38:f0:69:24:a5:99:c8:ab:
05:3f:13:5c:28:39:90:7a:65:2a:0d:af:d1:03:96:0f:f2:e8:
e2:fe:78:8a:59:c5:b7:bc:49:93:04:c1:5d:16:a7:d3:0c:20:
b9:c0:03:07:65:44:3e:21:92:ac:44:0f:a5:33:f7:cb:9d:ac:
56:5a:93:ea:f1:69:c1:13:1f:7d:cb:b9:e0:92:3d:a7:df:2c:
b1:4d:89:51:31:2e:ea:50:76:aa:6b:5e:a4:6c:2c:70:12:49:
0a:07:5c:28:54:c2:2e:de:20:0c:13:7c:26:b0:08:6b:44:67:
9f:5d:d1:bd:66:b7:2b:b4:5b:95:16:73:ac:fb:a1:c9:41:04:
2a:ff:a3:38:c8:19:17:4b:f7:f6:a5:07:78:6e:65:5a:17:af:
43:e5:cd:32:1c:c3:84:31:47:8f:51:9e:cc:0a:d7:d3:9f:0c:
46:37:0a:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 21:21:02 2025 by rpki-client