Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF7025F6C47711EF8F159471762E951A.roa
File: FF7025F6C47711EF8F159471762E951A.roa (raw, json)
Hash identifier: jZ+kI04qGA3n++oUyRQSoiWkWsjby19YPpCXb0Kgr+8=
Subject key identifier: 51:F4:4C:77:ED:2D:82:D0:4B:EC:C8:4D:9B:AC:94:15:14:0F:C0:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012AD4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF7025F6C47711EF8F159471762E951A.roa
Signing time: Fri 27 Dec 2024 17:28:34 +0000
ROA not before: Fri 27 Dec 2024 17:28:30 +0000
ROA not after: Wed 04 Feb 2026 17:28:30 +0000
asID: 150812
IP address blocks: 154.197.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Apr 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76500 (0x12ad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 17:28:30 2024 GMT
Not After : Feb 4 17:28:30 2026 GMT
Subject: CN=676ee3c2-86d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:97:df:67:4a:55:c9:56:09:66:e1:ef:f2:11:
10:c9:83:13:f7:bc:58:1e:aa:b3:b9:74:f7:44:b2:
41:56:ad:c3:87:ac:50:e9:6d:9e:1e:8c:73:0e:bd:
42:bb:24:f4:e7:67:da:35:24:bc:72:85:f1:7f:4e:
fa:ec:14:fc:0f:90:15:ba:23:2f:ce:3b:62:74:f5:
ae:53:95:d1:55:6d:c6:8e:84:1d:78:9d:96:71:e0:
c6:70:96:09:0f:26:2e:0d:a8:07:45:4b:61:c1:a6:
61:68:c3:8b:8e:2b:21:26:68:71:21:6f:60:1e:ca:
73:db:0b:f7:7d:93:0b:f8:c2:a7:81:b3:23:c2:0a:
14:a7:5f:34:a4:aa:2b:29:f9:63:5a:22:da:d2:13:
46:cd:27:98:26:5d:47:48:fb:ef:20:a0:32:be:6f:
21:b7:aa:03:88:2f:bf:7c:93:7a:c5:db:a7:6d:97:
3e:8a:04:c3:80:0e:5c:cc:26:95:0a:68:26:d3:c0:
cc:15:b4:ae:50:96:20:31:96:3f:ed:b5:85:56:10:
02:8a:95:8e:7c:2c:35:be:33:06:96:b1:76:a4:f7:
e3:d7:55:39:7c:f2:05:51:fa:c4:2e:7f:ba:06:5b:
ae:2f:99:0d:01:cb:95:e5:e1:9b:c6:ea:61:7b:e8:
a5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F4:4C:77:ED:2D:82:D0:4B:EC:C8:4D:9B:AC:94:15:14:0F:C0:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF7025F6C47711EF8F159471762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.54.0/24
Signature Algorithm: sha256WithRSAEncryption
82:b7:bc:5d:5a:20:84:72:69:b8:52:45:2e:35:c0:58:67:83:
1d:e7:0f:dc:ea:9e:0f:bc:b4:65:0e:07:44:fe:35:7e:29:02:
9a:80:ce:35:6f:2a:7b:0c:45:2b:ec:b2:84:2c:eb:8e:31:68:
85:e0:28:f8:f7:00:0e:69:da:26:79:53:be:f8:93:74:2c:eb:
8a:27:e0:26:e9:52:c8:69:ae:fb:d0:d3:5f:31:d7:9a:f8:1a:
68:c6:03:be:1e:75:16:09:e2:80:14:8c:bb:21:3b:ce:2a:bd:
e3:1c:ac:3a:05:37:48:de:01:0b:22:69:61:10:46:e9:7c:c6:
09:c7:de:05:ba:22:a8:9b:fa:90:91:2a:bf:43:c8:d7:6e:0a:
06:be:fe:91:af:7e:2a:65:f3:f1:3b:1e:a7:14:ac:d7:1d:16:
1e:cf:16:6f:f6:bd:ff:57:0d:4e:f5:06:c4:15:1e:49:cb:82:
b4:ab:24:7d:92:d2:76:91:6b:84:29:1d:90:41:64:46:67:53:
4d:75:86:dd:fd:6d:78:f2:ed:d8:30:e2:c2:a0:62:52:e0:df:
7b:25:d8:37:b2:28:dd:30:ef:bd:cf:a6:e9:47:57:da:16:17:
57:aa:e0:b1:58:c2:43:7a:f2:59:be:04:99:02:fc:b8:6b:6c:
37:93:f4:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:14:38 2025 by rpki-client