Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0212C23816AC11F0AB5236D56DB8BCC6.roa
File: 0212C23816AC11F0AB5236D56DB8BCC6.roa (raw, json)
Hash identifier: muMmCS1CC9tBz6vibhU4ZO9pZWhadjNxbaFur5meLzM=
Subject key identifier: B7:1D:57:FA:8C:1E:4B:9B:52:E3:EB:81:A4:3E:38:1E:9F:72:C2:C5
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1A7F
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0212C23816AC11F0AB5236D56DB8BCC6.roa
Signing time: Fri 11 Apr 2025 08:07:27 +0000
ROA not before: Fri 11 Apr 2025 08:07:23 +0000
ROA not after: Tue 11 Apr 2028 08:07:23 +0000
asID: 212238
IP address blocks: 154.16.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 01:18:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6783 (0x1a7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 11 08:07:23 2025 GMT
Not After : Apr 11 08:07:23 2028 GMT
Subject: CN=67f8cdbf-7c19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4d:01:c1:3f:11:22:4b:03:4c:77:e5:03:b7:
da:ad:24:a0:65:c8:17:b0:60:19:7e:38:06:ad:dd:
ec:0f:91:40:1f:65:bf:95:13:30:47:0d:64:25:08:
92:57:0f:5a:2d:25:93:03:b9:68:a4:dc:2b:30:bc:
b0:1c:5d:dd:26:be:c9:61:76:0f:0a:8e:a1:ae:48:
a4:ff:e2:9d:64:c3:f7:58:01:59:a7:22:f2:a5:fd:
4c:48:82:d2:f5:d8:a8:93:b9:32:80:cc:50:20:85:
99:99:eb:4b:0d:55:4b:c5:e7:0b:86:f7:6f:12:2d:
ed:f7:47:c6:b0:21:4f:26:2f:aa:92:6d:15:49:1e:
75:ef:b9:db:2f:44:34:0d:e2:d9:83:15:36:43:41:
e6:b3:6c:40:df:65:df:92:5e:e5:b6:fb:54:e0:c5:
55:f4:4d:2c:3f:9b:e5:5c:fa:e0:8d:e2:10:fa:44:
2a:f4:15:db:3a:c9:ac:89:0b:ac:d7:8c:1d:b1:58:
3c:71:cd:af:3e:2a:36:7f:a7:9b:b0:59:73:94:61:
98:46:fc:c1:5c:5d:73:8e:e4:b1:f0:ff:2d:2e:09:
6f:f4:14:e2:40:04:4e:0c:d3:41:0a:06:cc:8f:6e:
9c:c6:d9:c6:ae:b4:b1:80:da:9f:20:b9:3f:e0:c4:
eb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:1D:57:FA:8C:1E:4B:9B:52:E3:EB:81:A4:3E:38:1E:9F:72:C2:C5
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0212C23816AC11F0AB5236D56DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.246.0/24
Signature Algorithm: sha256WithRSAEncryption
72:f4:f1:cd:13:9c:09:94:65:18:ab:b9:51:67:b9:34:59:07:
9f:08:ce:41:9d:bf:8a:37:f6:ad:09:52:fa:66:d4:60:3b:e6:
60:46:11:33:b3:6d:0c:45:2b:5a:77:2a:20:a5:3c:85:6f:05:
b9:9b:ec:02:c1:2f:89:ac:49:af:69:90:43:c1:2c:b1:c9:9d:
03:e6:0f:af:83:62:2f:47:ed:b5:ad:43:9f:3f:d5:c9:9e:ea:
00:97:ec:bf:a8:e1:72:6f:e5:60:ce:ed:75:0e:30:b6:24:86:
c6:1f:6c:05:27:ea:59:fb:fa:3b:69:b5:c0:7f:6a:e2:15:d3:
53:dc:cf:45:88:1d:55:8f:ac:05:6d:ae:5f:a5:a8:65:4b:f9:
dd:0e:ba:cf:ed:d1:63:bd:64:3a:66:6c:bb:bb:38:f3:1a:32:
40:e0:29:0a:64:bc:e4:a4:12:c4:29:b8:cc:a1:8c:66:58:a8:
14:61:f5:c1:b4:c0:f4:37:73:21:36:53:b4:6b:35:92:ba:31:
d3:93:42:36:60:ff:d3:97:82:11:1e:ff:49:33:20:f9:46:be:
58:fe:ae:79:9b:80:83:62:0d:24:38:c9:b5:7f:98:ca:1e:53:
6d:db:c7:a6:f8:ec:13:60:ef:da:66:01:be:71:7c:b4:66:25:
d8:a9:95:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:55:10 2025 by rpki-client