Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F4990F4A29B611F085CADA8CDAE4EC9C.roa
File: F4990F4A29B611F085CADA8CDAE4EC9C.roa (raw, json)
Hash identifier: 3uyCpe1BgjGjQ7QB7Mh1WzNYvKbh9Mj/85E1IRkyrJs=
Subject key identifier: 97:02:17:27:DE:57:AF:E7:85:C6:D2:D7:87:D3:62:6C:67:B6:CA:54
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1AA9
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F4990F4A29B611F085CADA8CDAE4EC9C.roa
Signing time: Mon 05 May 2025 13:43:42 +0000
ROA not before: Mon 05 May 2025 13:43:37 +0000
ROA not after: Wed 05 May 2027 13:43:37 +0000
asID: 212384
IP address blocks: 154.70.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6825 (0x1aa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 5 13:43:37 2025 GMT
Not After : May 5 13:43:37 2027 GMT
Subject: CN=6818c08e-8a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a5:e6:e6:65:17:c3:12:76:70:27:c8:31:a4:
1b:00:ee:2b:00:cf:0a:eb:f4:f5:36:df:8d:38:30:
55:11:24:e1:93:95:33:0e:f9:ad:31:50:40:c2:7f:
e6:f4:8c:0c:6a:31:57:80:82:c5:6d:2f:86:f0:aa:
c7:c3:c7:d3:9c:a0:be:ad:b7:7c:a0:40:e7:75:59:
25:b5:b7:82:60:21:a9:45:30:98:e3:e7:0f:cd:e4:
5b:16:6e:f0:53:8e:3b:de:91:1c:22:59:ff:65:19:
7f:eb:53:b4:50:de:19:e6:29:ac:d3:5a:76:01:80:
77:ee:0a:9e:c3:0b:f9:8c:0e:f4:51:d3:36:03:d6:
78:37:b7:48:a0:6e:02:c2:fa:8e:10:70:26:55:25:
08:f7:cd:66:b6:4d:f2:aa:e7:9e:1f:cb:88:49:44:
d6:a0:f7:2d:83:61:70:64:bf:71:78:16:b8:ae:75:
4c:7e:fa:07:8b:24:85:4b:d8:13:26:bd:84:5d:d2:
c1:19:75:ca:0e:cf:cb:34:cb:e1:d9:89:f9:e8:74:
ef:2d:79:1d:62:c1:fe:e3:ea:8e:dc:68:5f:25:51:
47:bd:3a:38:d6:55:a5:4f:f7:0c:d8:d2:c9:0f:b6:
1d:47:6e:34:7f:b1:9e:23:f8:08:5c:08:a5:d6:54:
55:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:02:17:27:DE:57:AF:E7:85:C6:D2:D7:87:D3:62:6C:67:B6:CA:54
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F4990F4A29B611F085CADA8CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.70.155.0/24
Signature Algorithm: sha256WithRSAEncryption
16:72:6d:b0:5b:a4:23:a9:89:aa:a4:4a:8f:f3:0e:14:38:0d:
fb:47:95:90:9e:b8:09:08:3a:bb:6d:1b:51:bf:d5:ce:d4:da:
5b:e0:cc:84:1b:70:95:26:ca:44:c6:c3:6e:b8:db:de:ee:1c:
41:3d:80:f5:ce:b9:97:40:b5:84:54:c3:c4:64:06:8d:8c:06:
f7:ea:42:04:cf:43:a5:e4:1e:68:fc:dc:ea:77:7e:28:b3:41:
0d:25:ce:b3:67:cb:60:41:dd:57:a0:71:6d:62:d9:de:78:eb:
a6:80:a1:5e:5b:62:6e:6c:70:26:22:8d:e8:85:44:7e:31:70:
42:92:43:da:1a:cb:87:32:df:ac:e8:77:e5:03:7f:95:f8:56:
66:9f:e2:76:f1:5d:a6:1f:32:11:3e:c9:8e:1f:8b:95:98:3b:
19:14:c2:98:5e:5c:34:05:3c:bd:b5:c7:4e:af:c4:50:8b:89:
81:90:d1:dd:85:87:a6:9b:b7:0e:3f:30:f1:50:e9:ca:76:d8:
2a:87:a5:fe:f1:e3:e1:73:f7:a8:45:ae:0d:5c:ca:bc:7d:19:
fa:d7:e7:66:33:3e:3b:ce:06:88:07:05:e8:cd:af:aa:aa:21:
b3:0f:e4:66:23:0c:17:58:12:e7:ad:b9:da:f6:d4:af:21:7a:
cf:4d:30:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 12:10:39 2025 by rpki-client