Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43779D3A242F11F0BC819B86DAE4EC9C.roa
File: 43779D3A242F11F0BC819B86DAE4EC9C.roa (raw, json)
Hash identifier: vMQNIjSZAFBs06//5sXhWLP5kkB221ve2SeDv4Nz8D8=
Subject key identifier: A1:B4:84:17:15:8E:D2:86:AC:E5:BE:D4:2C:E6:12:A4:0D:89:A8:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017BBC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43779D3A242F11F0BC819B86DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 12:49:47 +0000
ROA not before: Mon 28 Apr 2025 12:49:42 +0000
ROA not after: Mon 23 Mar 2026 12:49:42 +0000
asID: 984
IP address blocks: 154.90.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 11 May 2025 00:06:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97212 (0x17bbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 12:49:42 2025 GMT
Not After : Mar 23 12:49:42 2026 GMT
Subject: CN=680f796a-86fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bf:da:11:ac:80:57:2a:a4:78:8e:e3:e8:8c:
87:5c:f2:b4:35:c8:87:55:39:4b:3d:d6:d9:b3:c9:
a7:39:be:87:ee:61:10:82:bf:ca:c7:c8:bb:52:09:
07:37:e3:11:47:c6:00:d8:9c:5a:ad:9a:11:71:1e:
e2:64:c3:b1:96:ec:57:07:00:3c:29:f0:1f:40:23:
90:71:43:c1:07:e9:57:44:4d:df:c3:80:0b:6e:cc:
84:72:21:51:c6:02:ce:11:ef:78:89:75:c1:76:01:
4c:e8:07:72:fe:82:bd:11:67:2a:40:5d:ce:a0:b2:
38:26:46:50:30:a7:70:56:69:69:2e:bb:9b:ff:13:
69:71:3f:00:4a:0f:73:04:0d:b3:1e:43:8e:42:5e:
df:c4:51:cd:96:56:da:6b:b2:2f:d6:28:42:12:24:
6f:5f:95:0e:12:1b:fd:e3:3c:d6:c2:84:59:f7:55:
9c:94:74:90:fb:d0:b8:7f:20:d0:e6:57:2a:b2:9f:
0b:41:36:56:33:3e:98:ba:18:a6:e1:e2:b1:a3:93:
1a:42:59:ab:c9:87:ef:5e:fc:ac:f7:43:36:33:9d:
8b:77:d6:92:a6:84:4a:6f:dd:a0:e7:6a:9c:ba:8f:
94:0c:e2:98:e6:0e:48:7c:08:0f:68:70:1c:5c:c7:
eb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:B4:84:17:15:8E:D2:86:AC:E5:BE:D4:2C:E6:12:A4:0D:89:A8:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43779D3A242F11F0BC819B86DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.22.0/24
Signature Algorithm: sha256WithRSAEncryption
38:10:af:d9:be:72:c2:23:97:49:42:5e:eb:eb:32:aa:ba:9a:
df:51:74:a3:fb:57:38:50:98:ce:95:c2:97:0a:87:c0:ec:c2:
4e:83:b0:03:b4:56:58:20:e5:ba:05:ea:35:cf:ac:be:5e:ac:
9c:1d:bb:dd:dc:65:b5:ef:4b:c3:7e:72:17:60:48:38:38:65:
ff:71:b3:20:27:7b:13:8c:4d:94:c3:af:62:17:bc:0f:7e:d9:
0d:8e:b0:7d:23:25:f8:c8:49:8f:27:2e:c9:9a:bb:70:11:a4:
88:37:08:d1:f4:77:55:86:8e:e5:38:e2:8e:3a:bb:e0:23:59:
49:f0:77:32:27:30:3b:04:b8:3f:1c:dc:89:b3:7f:f5:42:d3:
8e:84:85:77:24:25:c9:65:25:b4:91:b1:39:1f:28:89:a3:9f:
5d:c8:af:1c:23:9c:a3:37:2a:d8:94:19:e3:6f:aa:a0:0a:f9:
08:3d:eb:5b:2b:3a:d4:5e:c6:87:37:35:3d:19:fa:75:f7:7f:
89:7c:da:21:38:c5:2b:ce:01:89:c1:07:da:51:41:8b:50:36:
f2:2b:2a:c4:a0:22:7b:a9:a1:fc:0a:f0:98:d1:df:58:36:07:
89:a4:ed:4f:87:7b:db:21:e2:5c:c4:ab:9a:e4:2b:55:6a:1b:
16:bb:12:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 07:59:31 2025 by rpki-client