Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B985550242211F0BA5790B1DAE4EC9C.roa
File: 6B985550242211F0BA5790B1DAE4EC9C.roa (raw, json)
Hash identifier: tf7/yJvAqTXQ0ghBT8PSsXfhzsqD1x5QBJbCGWh5dv0=
Subject key identifier: B2:0E:48:3C:5B:19:A7:40:08:8A:82:0F:1D:DD:62:DA:6A:BD:5F:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017B79
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B985550242211F0BA5790B1DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 11:17:51 +0000
ROA not before: Mon 28 Apr 2025 11:17:46 +0000
ROA not after: Wed 15 Mar 2028 11:17:46 +0000
asID: 17561
IP address blocks: 154.94.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97145 (0x17b79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 11:17:46 2025 GMT
Not After : Mar 15 11:17:46 2028 GMT
Subject: CN=680f63de-e2ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9f:69:1d:64:2d:3e:50:15:8f:c6:25:43:9f:
f8:d0:31:8c:31:ed:35:a1:aa:f7:7c:51:8e:84:f5:
38:a3:32:9e:2b:36:e2:38:91:64:3a:c1:2c:48:69:
92:6a:62:f3:29:ac:86:b4:ba:bd:92:b8:c9:51:fa:
52:00:eb:55:73:f2:d1:95:c8:ba:d9:ba:6f:28:a6:
5c:0c:61:1a:77:81:43:d6:76:2f:36:5d:f9:9e:80:
f6:b8:a3:ae:d1:38:3c:3b:83:0d:06:b6:07:7b:f0:
2d:ca:54:b9:cd:13:48:45:42:33:54:db:52:ec:c4:
59:fc:20:25:39:70:d0:f2:1b:68:5e:8b:a9:d6:51:
cf:7d:1b:ad:d6:1f:36:79:6e:7c:ea:89:12:58:67:
8d:09:c9:d1:cc:4d:37:03:af:89:84:23:91:9d:08:
84:f8:60:87:ec:9e:35:17:01:13:88:8d:90:67:eb:
d1:ac:26:bb:8d:bd:ff:f2:d9:53:c2:c8:07:a4:e7:
fb:ff:fb:31:80:8e:55:20:93:14:6a:1e:06:70:51:
07:23:ea:aa:ee:97:04:f8:9e:f6:cc:de:d9:f8:c5:
25:4f:f8:bb:52:09:b0:87:f0:c0:d2:70:06:4e:07:
10:5f:cb:45:13:c2:0e:fa:af:c0:6a:a1:a9:31:22:
b2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:0E:48:3C:5B:19:A7:40:08:8A:82:0F:1D:DD:62:DA:6A:BD:5F:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B985550242211F0BA5790B1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.24.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:69:2f:aa:0f:fc:5c:27:8f:3c:5e:e9:b4:86:c9:5a:96:87:
77:67:e9:19:5c:99:54:13:9c:31:57:89:5a:6a:25:fe:41:94:
1c:d0:48:91:b4:57:27:ff:d3:ed:ae:b4:ea:94:3b:0f:28:c0:
5d:bd:f7:5c:8c:4b:bf:29:b3:0c:47:c0:5d:ce:e3:23:75:67:
ba:9f:34:6c:e5:6d:1e:ae:9e:6e:77:ef:f3:98:c4:bb:68:fc:
c5:f9:ff:a3:04:ae:c0:e0:e4:6f:6b:af:4f:5a:1a:43:72:8e:
95:40:3b:56:21:f6:b8:ad:00:d3:20:22:f8:2b:4e:92:48:e7:
f5:f1:26:17:38:90:a4:fb:39:29:33:72:e5:f3:6a:7f:8d:4c:
8f:08:a7:97:76:1d:87:29:79:4e:7a:5e:af:60:60:d8:27:24:
1d:e8:f5:98:3a:6a:dd:ab:e5:f6:ea:d9:47:cc:59:5d:1f:47:
ff:63:a8:27:9e:c1:a8:1a:27:fd:3e:8a:57:8b:68:2f:2c:1b:
d3:2d:f8:9e:14:8a:c1:43:dd:43:ba:48:86:48:41:e5:38:0e:
fd:1f:af:32:ed:45:12:83:07:e8:14:e3:2a:92:63:1f:88:d3:
a4:e9:b5:31:10:20:9a:20:9f:f6:5b:fe:f3:4c:9b:3a:7a:e3:
1d:c0:09:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:23:24 2025 by rpki-client