Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFCF228C2F3011F0941D39ADDAE4EC9C.roa
File: DFCF228C2F3011F0941D39ADDAE4EC9C.roa (raw, json)
Hash identifier: 0adJSiBS8ZOLiU8bNCEzaWLsVenZfX4T1RMFByHYvRU=
Subject key identifier: AE:C9:9B:6B:1B:B2:A9:7F:5D:69:18:94:5F:AB:1B:9C:A5:09:F6:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018015
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFCF228C2F3011F0941D39ADDAE4EC9C.roa
Signing time: Mon 12 May 2025 12:59:01 +0000
ROA not before: Mon 12 May 2025 12:58:56 +0000
ROA not after: Wed 21 May 2025 12:58:56 +0000
asID: 209242
IP address blocks: 154.83.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98325 (0x18015)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 12 12:58:56 2025 GMT
Not After : May 21 12:58:56 2025 GMT
Subject: CN=6821f095-95b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:67:ec:ba:f7:ef:72:a1:04:35:f4:f6:fc:1f:
15:10:e2:00:f4:75:4d:ec:0c:23:b3:00:28:01:11:
9a:00:e5:1a:19:77:65:07:c2:12:0a:36:4b:0d:5c:
5d:c6:9d:73:b6:45:2a:96:74:53:47:ae:f6:e3:b2:
cd:b4:95:b7:47:68:d5:7b:33:13:60:2f:a8:93:f2:
dc:f5:6e:08:3a:86:63:54:98:09:d5:23:83:09:c3:
e7:c2:73:88:c8:41:d7:36:04:d6:8d:8d:e5:35:65:
d1:73:7d:d0:17:ab:0b:9c:44:92:0c:4f:42:ea:42:
80:fd:86:7d:84:38:0c:7c:b0:c4:42:7a:14:d8:8f:
4b:bd:1d:67:ee:13:96:33:29:39:9d:c1:e7:3a:d6:
d1:e0:97:72:fb:55:04:e3:22:3c:45:11:cc:29:9e:
18:76:83:d5:2b:e5:32:c4:d1:89:33:70:6d:c5:93:
75:1e:61:a5:f5:4b:bf:b0:28:fa:86:02:6a:2b:f4:
a1:7f:5a:cd:8f:4a:f5:03:95:7a:0a:e4:b1:ab:dc:
5d:41:32:d5:de:5c:c8:bc:97:87:ba:3a:53:01:ef:
ac:f9:72:6a:f8:7e:f3:a8:25:f1:ef:3d:02:cd:7a:
44:27:cd:b0:fa:1a:cd:2c:16:7a:7e:16:00:a8:2f:
c0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C9:9B:6B:1B:B2:A9:7F:5D:69:18:94:5F:AB:1B:9C:A5:09:F6:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFCF228C2F3011F0941D39ADDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.2.0/24
Signature Algorithm: sha256WithRSAEncryption
67:87:73:47:37:b9:08:e4:d6:42:1d:3b:00:14:77:cb:d7:5e:
e1:92:48:80:1d:0c:c3:93:af:a0:97:7d:98:b8:06:c5:db:51:
0b:7b:49:ff:bc:c5:0e:ec:cd:3a:72:e9:f3:f4:ec:08:10:9e:
1b:6c:c4:9a:37:59:b8:18:98:bb:45:ec:df:ec:03:24:4d:6f:
bb:02:0a:21:5b:0b:27:0a:75:eb:84:d3:90:d6:e1:97:38:e4:
4a:69:83:bb:6a:0f:2e:88:f8:01:7a:47:6b:1a:f7:8c:24:94:
ce:7d:cb:61:af:a8:a2:d3:2c:f3:a2:c7:11:be:9f:3f:5b:d5:
1e:b0:1b:fd:52:45:2b:e8:67:12:3d:9a:23:13:37:15:2f:78:
5d:2c:a1:b5:14:c5:81:2e:ff:25:8b:23:57:57:0e:5c:b9:48:
4c:f6:d3:a3:ce:3a:2b:ad:52:5e:84:a7:ef:ec:e6:93:59:97:
b6:21:7f:ca:9a:cc:73:08:2a:97:43:0b:7a:82:ea:3d:a3:d9:
8d:70:39:75:27:cf:87:14:a0:cd:07:18:d0:38:b2:c0:5d:32:
a5:3b:4e:85:64:f9:97:7d:fa:b1:29:d7:51:df:c3:c8:a0:1e:
03:3f:dd:6d:c8:cd:a6:4b:8f:a4:d7:02:c0:2d:29:b6:c4:88:
28:e4:9c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:44:04 2025 by rpki-client