Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C3347C02CBB11F08A7AD5BFDAE4EC9C.roa
File: 7C3347C02CBB11F08A7AD5BFDAE4EC9C.roa (raw, json)
Hash identifier: cCE1PdpEqNLyfn+Bl68qg7fY5G9mjtZZWcExq1qaLCU=
Subject key identifier: 17:A3:2D:7A:60:52:6F:FB:DF:31:8C:E4:72:5E:D7:86:F8:70:91:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017FA7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C3347C02CBB11F08A7AD5BFDAE4EC9C.roa
Signing time: Fri 09 May 2025 09:53:41 +0000
ROA not before: Fri 09 May 2025 09:53:36 +0000
ROA not after: Sat 14 Jun 2025 09:53:36 +0000
asID: 21859
IP address blocks: 154.194.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98215 (0x17fa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 09:53:36 2025 GMT
Not After : Jun 14 09:53:36 2025 GMT
Subject: CN=681dd0a5-9097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3c:d9:cf:d8:ec:47:55:9e:8f:88:34:9f:b5:
9a:97:2f:85:fe:8a:ca:e3:8a:22:02:92:01:75:16:
1e:51:d4:ff:f2:64:2c:c6:dd:6d:57:9f:dd:ac:37:
e0:46:d0:2a:06:a4:a9:f9:f6:ff:f5:02:1f:ef:f1:
82:52:85:9b:bf:e4:aa:cc:92:80:7d:54:24:bb:d8:
50:a3:61:fa:14:f7:76:85:20:3f:b0:ad:04:5d:27:
7a:95:f5:74:e9:95:9c:22:74:35:a0:40:7e:96:a3:
8f:84:66:28:e5:79:77:4c:a9:95:b3:9c:e1:79:09:
01:3b:80:e4:a7:32:91:81:f1:d1:c6:a1:f7:fc:5a:
92:52:e0:64:33:9f:65:c0:83:9a:5f:48:46:35:f1:
3d:1d:a8:a5:c4:ff:22:d8:c0:6b:f9:82:85:98:3e:
5e:9f:d9:46:e6:c8:00:84:56:b6:e8:93:31:cd:17:
94:ff:67:7b:e2:34:e4:fc:a4:32:d1:e4:22:a8:0d:
c0:0a:50:d7:0f:a5:ea:6c:39:4c:77:74:c9:9b:05:
96:a2:71:33:8c:19:40:c7:9b:c6:8e:1c:4a:fb:7a:
1f:43:86:c1:7b:60:d9:17:73:a3:bb:83:29:d7:74:
79:e2:ba:50:41:1f:b3:ca:5b:21:4e:bb:12:1c:06:
67:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A3:2D:7A:60:52:6F:FB:DF:31:8C:E4:72:5E:D7:86:F8:70:91:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C3347C02CBB11F08A7AD5BFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.56.0/24
Signature Algorithm: sha256WithRSAEncryption
12:38:ff:b5:5f:11:3d:de:58:18:27:95:d1:e1:fa:43:d2:6f:
28:f3:a7:9d:43:de:47:05:f2:eb:f0:32:72:6f:df:38:2f:6e:
a5:32:d6:80:13:27:63:72:1e:60:da:ba:f0:49:2e:9c:b9:69:
7c:b7:69:9a:2c:53:e5:2a:e6:61:67:87:cb:26:0d:72:93:0b:
16:70:28:92:9c:74:8c:f8:13:90:11:ee:ae:4a:79:da:60:5f:
1d:36:f9:2e:3c:d3:98:2d:53:4b:86:7f:ca:f7:56:78:2f:87:
e0:ee:af:78:20:31:a2:61:68:a9:be:41:96:5e:a0:79:75:14:
43:38:8c:45:6d:48:44:41:1c:28:01:75:63:e7:e7:a1:06:83:
88:a9:e0:c5:4d:19:38:4e:2c:ae:26:9b:cd:5f:24:05:8a:9d:
8f:e4:aa:65:f0:5c:7f:9a:c0:d8:cc:d7:6c:1e:7c:d6:cd:93:
f8:20:64:16:67:f2:b1:cb:09:c4:55:ed:0a:2d:d2:21:f5:2b:
8c:9e:23:a3:00:ff:ea:ab:7b:a6:b2:88:d8:f7:91:96:ee:91:
4d:3c:69:c8:3a:66:cf:7f:8a:d6:06:a3:5e:b1:c4:c2:92:49:
b0:5c:9d:42:5a:fa:20:28:cf:c5:89:ce:87:6a:ce:80:13:ab:
e3:9a:c7:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:54:55 2025 by rpki-client