Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5985D381A0D11F0AC2F16EB6DB8BCC6.roa
File: E5985D381A0D11F0AC2F16EB6DB8BCC6.roa (raw, json)
Hash identifier: WZI8QQ0kMP9bz3CFcamNvqw+kXKuiWjCPb8NEEbVqLU=
Subject key identifier: 99:45:A7:49:0F:20:B6:55:C5:7E:2C:68:8C:30:05:30:FA:AE:16:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01794B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5985D381A0D11F0AC2F16EB6DB8BCC6.roa
Signing time: Tue 15 Apr 2025 15:25:44 +0000
ROA not before: Tue 15 Apr 2025 15:25:39 +0000
ROA not after: Sun 25 May 2025 15:25:39 +0000
asID: 174
IP address blocks: 154.214.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96587 (0x1794b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 15:25:39 2025 GMT
Not After : May 25 15:25:39 2025 GMT
Subject: CN=67fe7a78-1285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:be:91:b1:c7:df:87:2e:20:68:59:0f:11:06:
1e:fc:31:d5:08:4d:f4:05:73:cc:73:e5:7d:60:43:
d4:e1:15:ef:64:35:68:54:e9:32:6a:80:ec:2f:86:
4d:f9:89:a6:dc:4d:0c:9e:98:ac:21:99:1c:bb:c9:
3b:cb:36:fb:71:37:1c:0d:51:8d:71:80:2f:32:13:
83:b1:31:57:f2:cd:84:2b:7c:45:13:1c:63:b5:82:
5e:d0:93:15:73:6f:40:87:f9:fb:36:55:a3:24:d1:
04:67:bb:29:fa:0e:8f:42:dc:35:c6:2a:78:21:b6:
2f:77:5b:80:c9:7c:a1:05:98:74:89:70:03:83:a8:
2c:95:66:b9:7b:46:27:fc:84:21:f2:f9:64:f2:7e:
1d:fb:55:e7:6e:61:ea:1f:d9:b1:fd:c0:9b:7c:4e:
79:9c:f0:d4:bb:db:a1:15:87:43:63:82:a7:6b:66:
97:54:55:38:30:92:d6:ae:6e:28:68:1d:df:27:18:
ae:6c:6a:a6:15:ec:9b:f6:b9:31:8a:f4:b0:4a:c9:
3c:2b:89:d3:93:76:21:6a:6c:94:71:14:d4:51:c4:
cb:a0:c9:7b:ab:7f:f1:19:26:07:cf:69:1c:61:0c:
2f:fc:bc:32:77:ce:01:7e:60:38:d0:5b:9b:d9:64:
b9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:45:A7:49:0F:20:B6:55:C5:7E:2C:68:8C:30:05:30:FA:AE:16:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E5985D381A0D11F0AC2F16EB6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.0.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:28:9c:da:05:b5:7d:52:c3:4c:69:b2:0b:f6:39:48:55:61:
5b:bd:01:37:15:47:78:3d:1b:bb:a2:39:e3:50:24:4f:90:38:
e7:b6:14:75:e6:a6:71:1b:9f:cf:98:fe:e2:be:5e:eb:8a:bd:
b0:83:a1:54:58:a4:ec:29:b1:9e:b5:f1:05:83:dc:8b:f3:0c:
27:cf:2e:7c:a8:92:d5:ad:50:72:5f:64:d3:02:58:24:e6:fd:
29:82:3b:98:53:e5:b6:a6:0b:b8:35:c9:6d:9f:48:b6:13:59:
79:ef:86:79:6e:71:57:22:52:c7:0e:58:80:f4:f1:2b:b7:a7:
f6:fd:1a:49:60:6a:b5:a7:3c:cf:ee:37:f0:af:8a:9c:d7:22:
9f:b9:9b:05:d3:bd:6e:04:58:b7:44:a1:d8:53:52:04:bb:58:
49:e3:d2:04:8c:89:70:27:44:04:d5:e1:f5:59:2d:05:43:22:
08:29:79:ab:d5:45:d1:07:5d:3d:e3:a8:aa:c5:52:30:c0:b9:
b0:4f:e1:2d:63:20:68:84:b1:e6:29:9e:c5:d2:0b:9b:fc:77:
7b:6a:50:22:44:c5:8f:b0:56:ce:97:dc:3f:9e:fc:f9:6f:84:
ac:a5:31:9a:c4:ea:fc:71:e0:47:66:7c:b9:27:2f:37:7d:1a:
58:6e:78:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:20:55 2025 by rpki-client