Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB218B30C41711EFA892BF98762E951A.roa
File: FB218B30C41711EFA892BF98762E951A.roa (raw, json)
Hash identifier: GpWcMSTXsvaHEtJbN4nAULflIxjEu2RENnTgG3lHRbk=
Subject key identifier: 7D:14:0C:8D:C2:EB:2C:DA:F2:23:DC:03:A7:9A:49:EA:19:52:5A:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01296F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB218B30C41711EFA892BF98762E951A.roa
Signing time: Fri 27 Dec 2024 06:01:15 +0000
ROA not before: Fri 27 Dec 2024 06:01:11 +0000
ROA not after: Sun 12 Dec 2027 06:01:11 +0000
asID: 17561
IP address blocks: 154.197.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76143 (0x1296f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 06:01:11 2024 GMT
Not After : Dec 12 06:01:11 2027 GMT
Subject: CN=676e42ab-2b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b3:04:c7:1a:7c:29:75:35:4a:bd:19:52:f8:
e7:19:10:ab:93:cb:81:e5:13:b3:a4:f6:96:96:bf:
c7:10:8e:5f:61:35:0c:61:23:e6:16:19:0f:84:47:
e3:a8:12:a9:29:84:b0:d4:24:46:43:d2:eb:e5:30:
1f:70:96:14:a7:7e:04:39:46:b7:6d:dc:8c:78:a5:
2d:fa:1b:11:6f:69:6c:c7:f0:c0:b7:72:99:58:c7:
81:86:f5:ad:85:9e:51:1f:71:25:b6:ff:d7:69:a6:
af:8e:4f:d8:d8:f3:b2:cb:cb:32:1d:6a:56:84:11:
8e:4b:4a:d7:de:b5:29:a6:89:72:b8:f0:dc:f8:19:
4f:8e:76:7c:ef:ff:13:46:fd:5d:15:70:47:94:8b:
e3:65:0b:85:60:37:09:42:d4:ff:36:a1:a4:c8:2f:
ee:06:26:55:d8:a6:21:5c:bd:f3:fd:3f:1c:56:4a:
5d:28:ad:37:c4:b5:47:4d:46:6a:bf:d1:bd:55:b5:
b8:18:fc:1d:8a:7e:de:86:be:41:a6:cd:4e:a7:0c:
7c:04:57:df:8d:48:a2:22:c0:3d:1f:2b:49:71:5e:
5f:3d:83:f5:8d:85:a3:6f:1d:de:55:10:5a:e7:14:
8c:7f:ea:6d:35:c4:a9:d0:40:90:f1:4e:32:be:d9:
38:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:14:0C:8D:C2:EB:2C:DA:F2:23:DC:03:A7:9A:49:EA:19:52:5A:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB218B30C41711EFA892BF98762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.107.0/24
Signature Algorithm: sha256WithRSAEncryption
10:06:d2:14:6b:4c:be:ce:ec:a5:ad:d7:67:34:39:9f:5d:80:
44:13:c8:cf:8c:95:94:9f:e1:a9:b1:5d:cc:f8:75:06:b2:2a:
ab:b8:fd:10:7b:eb:cf:5c:76:1f:6c:05:c7:52:ac:6b:24:18:
39:f9:76:fb:c9:db:ff:66:1f:fd:0f:5c:89:7e:45:52:7e:27:
e6:67:1f:d5:86:cb:72:d5:75:66:81:de:61:44:c6:af:dc:16:
5f:01:5a:50:89:8b:d0:5b:a7:c4:8f:4a:a9:6f:9f:5c:a8:22:
1f:ec:52:81:9f:01:48:aa:56:5f:cc:44:b2:6f:2c:fa:1e:65:
dc:06:95:d6:89:d6:9c:3d:e6:c9:22:c1:d7:d9:83:d3:1e:45:
7d:f8:f4:40:a9:fc:6b:2d:27:69:7e:cc:30:3a:bd:5a:d3:59:
50:fb:38:8c:2d:c0:cb:f4:93:28:b8:64:fc:92:12:57:e7:f7:
26:0d:1a:f1:45:d0:6f:e4:b9:86:f5:0e:93:80:60:55:76:eb:
22:24:d0:16:1a:24:6c:65:3c:ab:f8:cd:c4:a6:de:7f:8c:bd:
fb:e7:fe:0a:f6:4c:52:37:cd:95:b8:0f:13:0d:1a:4f:f3:f6:
f5:e9:1e:32:a9:f9:fb:dd:57:68:3e:cd:ac:ba:07:50:d1:49:
04:4c:2a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:33:28 2025 by rpki-client