Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB4EDCE4C36211EF94AA1992762E951A.roa
File: FB4EDCE4C36211EF94AA1992762E951A.roa (raw, json)
Hash identifier: PFqovpLcAp2FPsxM0FvyQY8P0aQKtVg8p0G9cnpxVFc=
Subject key identifier: A1:52:58:DF:40:1A:4E:C5:88:3B:AD:C2:78:09:75:8A:47:08:08:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01267C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB4EDCE4C36211EF94AA1992762E951A.roa
Signing time: Thu 26 Dec 2024 08:25:36 +0000
ROA not before: Thu 26 Dec 2024 08:25:32 +0000
ROA not after: Sun 12 Dec 2027 08:25:32 +0000
asID: 17561
IP address blocks: 154.93.9.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75388 (0x1267c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 08:25:32 2024 GMT
Not After : Dec 12 08:25:32 2027 GMT
Subject: CN=676d1300-74d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:65:ba:a5:06:28:d4:e6:ca:4e:a6:22:57:ec:
02:14:ad:aa:57:ec:c4:36:50:b2:2b:6c:c2:3b:1a:
b8:f6:c4:18:33:21:80:26:01:94:a7:bb:7d:88:f4:
3a:66:64:7a:1f:4a:1f:7a:0e:01:92:ee:46:36:b2:
8d:11:4c:d3:80:bc:53:65:02:ee:a7:38:82:c3:d9:
1e:f0:9a:6b:2b:c7:28:5a:0f:52:a4:f3:c9:85:fc:
fd:2d:db:f4:a7:38:eb:c8:2e:56:e9:33:3a:32:ee:
fa:b1:5d:56:92:34:36:f7:97:25:aa:ba:5c:ff:7d:
d4:ff:05:9f:cd:c6:1c:ce:99:63:eb:b6:bb:3d:b0:
70:98:10:04:0d:1f:89:e9:1f:46:44:9e:cf:01:ef:
25:f1:a9:92:3d:68:df:a6:14:db:f2:26:54:ba:99:
a8:b2:45:38:9f:68:ba:53:4c:95:ad:05:e5:83:a1:
df:1d:a6:47:5d:b8:31:41:ed:72:ea:11:ac:01:ca:
0e:23:e6:2f:69:87:ae:03:e2:d1:0b:4e:8f:e4:a5:
b6:f8:46:ea:03:33:df:44:e3:91:94:34:23:78:31:
2c:b1:24:3e:c0:66:30:70:9f:48:22:61:43:2f:7a:
76:6d:01:9e:47:2b:01:72:93:c6:d7:c5:2b:d1:ba:
f8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:52:58:DF:40:1A:4E:C5:88:3B:AD:C2:78:09:75:8A:47:08:08:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB4EDCE4C36211EF94AA1992762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.9.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:87:04:8f:f9:6c:5b:5e:36:d3:92:a0:1c:ed:c1:93:53:3d:
0d:c6:92:1c:60:77:ba:76:1a:d6:34:34:29:7c:b1:65:89:22:
07:13:43:58:58:f1:37:d3:b7:c0:d6:02:70:bc:99:0d:c8:07:
92:ca:be:6c:f0:8e:70:73:b3:3c:0d:14:51:42:73:97:b3:36:
d5:dd:6c:c4:56:60:66:13:7a:29:03:27:bb:cd:2e:cb:ba:2a:
2e:b9:36:84:ff:23:02:11:97:92:49:4b:1a:a8:ca:7b:cb:d5:
9a:d0:28:e9:fe:1f:3f:57:e1:93:1e:29:76:6a:ab:64:64:af:
ff:9c:f1:14:09:20:78:2f:31:be:50:9d:94:9a:cc:9a:b5:4f:
61:32:09:d2:a2:ba:fd:2e:0e:09:8a:71:ec:8c:d1:16:2b:61:
b4:a1:0b:dc:98:f4:53:67:76:40:05:10:27:f0:68:d0:6f:29:
41:bc:b0:7f:7a:dd:97:53:97:c1:9a:7a:20:46:37:7c:19:6f:
c7:7f:ef:a4:10:6c:89:9e:ad:34:8d:bc:37:08:5b:d2:47:2c:
1f:0d:8a:71:98:e8:1d:57:07:86:9c:db:32:81:ac:4d:77:a8:
7c:aa:4e:07:1f:e8:3d:8a:2a:d5:d2:0d:c6:bf:b1:f6:cb:c4:
13:49:ba:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:59:23 2025 by rpki-client