Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B02E2D21CA211F0A33AB27CDAE4EC9C.roa
File: 5B02E2D21CA211F0A33AB27CDAE4EC9C.roa (raw, json)
Hash identifier: q9nJDO8/6xgNfp2Suc3f4HwDKotw/CsDNFBtGnpuHCc=
Subject key identifier: 4F:5A:86:28:1E:6F:DE:85:8F:1B:68:97:C8:52:B0:CD:9B:CA:13:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0179F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B02E2D21CA211F0A33AB27CDAE4EC9C.roa
Signing time: Fri 18 Apr 2025 22:13:29 +0000
ROA not before: Fri 18 Apr 2025 22:13:24 +0000
ROA not after: Wed 04 Jun 2025 22:13:24 +0000
asID: 398478
IP address blocks: 154.90.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96760 (0x179f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 22:13:24 2025 GMT
Not After : Jun 4 22:13:24 2025 GMT
Subject: CN=6802ce89-c63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b3:1d:75:cd:6c:97:e7:d4:19:5c:d6:0f:7f:
9d:9d:49:ea:fe:ed:40:ff:33:42:4f:3f:42:8e:fb:
da:1a:7f:c6:34:1f:71:25:4f:73:8f:6f:9d:5e:1e:
f6:fe:41:bd:bf:b3:a4:57:99:f5:d1:f7:f5:84:72:
79:76:42:51:cd:76:8f:42:ff:87:37:f7:4b:ce:70:
23:4d:11:41:0a:ad:9e:67:c0:05:6d:8d:d6:db:88:
36:b9:20:91:fb:c4:90:56:c0:af:98:39:b4:76:0b:
9f:f4:3c:05:15:54:1e:73:9d:d5:e0:5e:80:08:91:
6e:e2:27:2f:59:04:53:4b:60:87:44:b5:71:85:47:
db:5c:83:da:63:54:c4:46:db:f9:02:c1:5b:63:17:
f9:df:36:7f:42:ba:6a:8a:91:21:28:38:e3:93:ae:
17:dc:d0:07:b4:e8:4b:bc:b7:1e:94:56:33:df:07:
5f:70:63:ed:b4:81:c3:a8:d6:d0:b3:b9:ca:d6:3b:
6f:ad:6a:95:42:85:e1:12:22:7a:39:36:33:c4:c8:
f3:3a:c9:c3:1b:73:2a:9f:bf:8a:ee:a7:df:76:de:
21:2c:6f:28:1e:fe:36:27:ec:bf:fc:11:4c:79:36:
fb:dc:55:ae:a5:b6:0c:9a:72:01:d4:5b:63:21:66:
a7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:5A:86:28:1E:6F:DE:85:8F:1B:68:97:C8:52:B0:CD:9B:CA:13:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B02E2D21CA211F0A33AB27CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.224.0/19
Signature Algorithm: sha256WithRSAEncryption
c5:bf:97:3a:12:1b:c4:1d:94:f3:d1:3f:c5:13:7c:3e:66:74:
aa:cf:89:98:fc:c8:66:5d:19:57:31:12:09:5f:a8:7e:d1:b2:
61:f2:ba:ac:04:e6:b6:30:d5:dd:5b:e9:a4:77:4f:ec:ab:a0:
f6:f2:e1:cc:56:f9:73:eb:d9:af:84:62:2c:d9:57:f2:eb:7a:
e9:a9:cd:b6:33:15:87:22:d1:32:1d:c6:e0:c6:79:5f:2f:10:
09:ed:89:21:fc:55:c4:f1:70:6e:b9:77:80:43:1d:63:1d:5c:
97:f5:15:1c:0b:a8:38:73:c9:71:ea:e7:fd:38:60:c2:7c:bc:
89:6a:db:b5:11:62:10:c4:45:db:c5:83:f8:e6:3e:64:4a:bc:
cc:ce:8b:8b:f3:25:72:7c:45:92:ec:32:3f:d9:01:4b:85:21:
a5:6b:45:f3:43:44:00:7d:3a:da:66:c9:c9:67:09:e1:63:06:
59:1d:09:bd:c3:68:43:0c:d1:84:6b:a5:92:71:4c:52:5a:89:
97:c7:7b:76:ff:cc:cf:1d:ed:ad:b9:6f:92:38:2b:20:43:4b:
7c:fd:93:47:0e:80:93:e4:28:77:67:7b:04:1d:df:2f:06:c1:
8a:39:20:a7:97:72:c8:cc:94:ae:37:6b:b5:2c:2b:76:23:da:
e9:9b:75:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:57:35 2025 by rpki-client