Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D17E536240B11F082536B9ADAE4EC9C.roa
File: 8D17E536240B11F082536B9ADAE4EC9C.roa (raw, json)
Hash identifier: RBGfqMuEs3LlrTiuo8jwlHyfL+c4djeOTVh5Nu7BP9g=
Subject key identifier: A6:8F:7A:0A:F1:73:8C:3B:AD:10:52:23:F6:E4:E4:38:05:46:3E:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017B4C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D17E536240B11F082536B9ADAE4EC9C.roa
Signing time: Mon 28 Apr 2025 08:34:08 +0000
ROA not before: Mon 28 Apr 2025 08:34:03 +0000
ROA not after: Sun 01 Jun 2025 08:34:03 +0000
asID: 271916
IP address blocks: 154.205.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 15 May 2025 07:24:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97100 (0x17b4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 08:34:03 2025 GMT
Not After : Jun 1 08:34:03 2025 GMT
Subject: CN=680f3d80-029b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:14:32:b7:ee:b1:6e:15:0e:a3:24:2d:6d:a5:
67:69:45:a9:a8:f0:84:5f:65:fa:17:a0:56:39:be:
9e:74:3f:a4:2c:db:85:ae:09:9b:d1:02:36:34:97:
8a:0a:72:46:dd:20:26:62:f6:3a:2b:64:a0:a8:9a:
30:5a:37:19:55:cc:f0:f1:d3:3a:b3:27:20:2b:ab:
8e:bd:56:db:a1:b3:c0:ec:29:f9:52:7f:ad:d4:38:
27:73:1f:2d:45:54:3d:a0:c3:68:af:52:e3:fc:5c:
f9:bf:c8:e2:50:a9:f0:95:bf:4f:c3:e8:ae:06:a8:
8a:cc:08:b9:a9:bb:ea:b4:6e:88:e0:1b:64:77:aa:
ef:eb:11:6f:1f:78:69:f9:fb:7d:60:0f:10:cf:88:
ca:9e:87:a9:3b:88:fe:c6:68:50:d7:35:bc:f1:dd:
dd:d5:98:0e:be:c6:66:8e:bb:a9:b0:c2:8e:e3:9c:
bd:23:9c:b6:dc:1a:1e:e4:b6:cc:65:79:8a:cd:31:
e6:d6:d3:15:32:fe:a0:95:68:b1:0a:00:b8:81:09:
aa:c3:56:56:06:13:31:f0:10:09:5c:95:7b:76:1c:
f5:d5:74:d5:15:06:1b:a0:f6:46:e7:3a:ac:1f:eb:
1a:0d:20:f6:6d:64:f1:75:12:9f:5e:e8:f0:77:51:
a7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8F:7A:0A:F1:73:8C:3B:AD:10:52:23:F6:E4:E4:38:05:46:3E:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D17E536240B11F082536B9ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.24.0/22
Signature Algorithm: sha256WithRSAEncryption
c4:f9:04:e5:0c:7b:f4:b9:b4:cb:fe:e1:b5:2b:18:2e:ed:c3:
4f:1b:cd:1c:06:e9:1b:0a:db:de:c7:31:dc:c2:5c:a4:0d:ac:
1f:dd:1e:6f:b7:34:d4:eb:15:5b:c0:bd:5e:b5:65:f7:df:8d:
38:c0:59:29:da:93:98:05:05:19:b7:20:3b:8a:58:90:09:06:
03:63:5b:34:4a:d6:a4:87:86:56:61:b2:3b:dd:30:2c:d3:95:
38:9c:0a:1f:c6:c1:52:8c:a3:b7:8c:55:61:de:c8:ca:b4:84:
e2:30:61:4f:ef:63:4c:ea:08:e2:b7:a6:f9:96:74:04:b6:9c:
50:0c:d5:6b:aa:f3:df:47:8f:90:05:f3:fe:49:80:51:71:98:
ce:72:cb:d3:95:d4:02:af:15:1d:28:49:d7:07:e5:b4:79:d3:
89:3e:a2:f0:ff:4b:58:80:af:89:65:d0:29:28:6b:00:c6:75:
55:b5:d0:4e:4d:d6:98:fd:c9:b9:c1:17:02:3b:e3:ce:6b:44:
0b:6b:f3:05:6d:b7:04:1a:32:ab:57:4c:c3:7c:6d:18:ba:2e:
04:10:0e:54:e3:db:52:be:32:0b:c2:62:95:fd:39:6b:d8:63:
a6:db:94:55:34:85:fd:2f:2b:51:d1:7c:87:ed:1d:e3:c3:68:
0c:c5:b0:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 13:30:20 2025 by rpki-client