Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D0B967741F5611F0B1A276A3DAE4EC9C.roa
File: D0B967741F5611F0B1A276A3DAE4EC9C.roa (raw, json)
Hash identifier: 3d1MQhwYLBEom9ymfhcW+a7vRrlt5Op+GMVDQDONv/c=
Subject key identifier: DD:89:06:D0:C8:63:A6:B5:67:60:8C:4E:95:41:DA:8C:60:E3:F4:E2
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1A8E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D0B967741F5611F0B1A276A3DAE4EC9C.roa
Signing time: Tue 22 Apr 2025 08:50:18 +0000
ROA not before: Tue 22 Apr 2025 08:50:13 +0000
ROA not after: Sat 22 Apr 2028 08:50:13 +0000
asID: 46337
IP address blocks: 154.16.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6798 (0x1a8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 22 08:50:13 2025 GMT
Not After : Apr 22 08:50:13 2028 GMT
Subject: CN=6807584a-1ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9e:73:8f:c3:06:a2:e5:c4:5c:0c:25:25:e2:
21:21:69:f6:e0:0d:02:a0:6b:23:95:8e:be:21:45:
73:98:be:9f:33:85:3c:d8:73:fc:4d:34:da:17:df:
67:54:38:c8:cd:21:40:f7:dd:be:f3:67:e6:63:fe:
e3:6f:ad:35:63:7e:72:13:cd:19:ea:d1:b5:15:81:
89:cd:28:06:f3:44:cd:88:ba:f8:41:b8:ea:15:72:
b4:52:d4:d0:32:46:e9:92:82:e9:6a:ad:c6:18:89:
1f:6b:88:76:ca:88:9f:5e:e9:ba:56:cb:06:22:6c:
5c:3e:f8:ac:c4:4a:9c:bf:81:fe:90:db:91:ef:7a:
55:f5:65:5a:aa:4c:ab:47:4c:3f:94:ac:2b:69:5e:
8e:f7:09:2a:19:0f:4d:9a:86:44:93:26:e5:6d:15:
98:fd:e8:97:ff:09:fd:98:f4:af:21:17:b9:f3:24:
ef:28:4e:3d:d6:8f:de:45:96:89:c4:92:bd:99:94:
b8:e3:c3:98:1f:c6:63:d2:65:78:bf:e5:bc:48:16:
27:7e:77:e3:7a:42:40:22:8f:18:df:b3:97:3d:8a:
d0:9a:67:d8:ce:8e:81:8c:56:b9:c1:56:bd:e6:9c:
22:51:5e:ad:73:5f:32:ae:1d:e5:c4:83:2a:6d:5b:
58:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:89:06:D0:C8:63:A6:B5:67:60:8C:4E:95:41:DA:8C:60:E3:F4:E2
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D0B967741F5611F0B1A276A3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.116.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:87:e3:e3:24:13:6b:17:53:bf:f9:7a:06:2a:6f:32:bd:12:
e0:a9:ab:c6:5b:4a:29:6e:77:c0:50:af:4f:97:64:62:9e:73:
86:f0:fb:41:76:12:d4:f4:65:5b:36:7b:76:1b:88:66:c4:62:
2f:0d:5d:3e:ec:ab:4a:f3:19:f4:cb:d7:c9:18:14:21:7f:95:
4a:38:95:f3:bd:d3:ca:3a:a1:ea:89:9b:90:11:70:19:40:b5:
30:a8:0b:06:9c:a7:1d:f7:f5:f4:e2:ca:59:ae:75:8c:05:a6:
d9:3a:4c:6e:10:25:3b:7d:b0:e6:71:06:98:3e:95:53:e8:a6:
8e:7c:33:c3:b8:6e:96:ff:ce:35:38:e0:1d:39:6e:b7:0d:27:
f7:b1:98:33:1e:78:e9:95:7f:a3:23:a3:d1:09:ff:0e:90:09:
c1:4d:04:4a:59:e6:9a:af:de:26:07:16:a8:ee:c0:3b:3e:b6:
bf:1f:7f:ec:4a:9d:3f:a2:be:b3:ad:96:38:2f:30:31:55:70:
8f:22:cf:75:fb:bd:bc:ab:15:66:44:1a:d5:ab:15:8a:9b:80:
c2:2c:5a:e1:b8:c2:9c:64:aa:37:d6:62:98:72:7f:ce:bc:14:
01:e5:11:f5:19:b8:12:86:be:9a:eb:a0:7d:f7:cb:09:5e:a9:
06:ec:78:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:55:59 2025 by rpki-client