Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/031AA812597D11F0AA2252E5DAE4EC9C.roa
File: 031AA812597D11F0AA2252E5DAE4EC9C.roa (raw, json)
Hash identifier: y6nuaxJoDc6RIcwqZpa46jBwzsLIA7T/ME6QospLN60=
Subject key identifier: E1:51:27:11:64:A8:C5:9F:AA:4D:4E:EA:EB:27:7E:3E:9C:38:77:8D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018AD4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/031AA812597D11F0AA2252E5DAE4EC9C.roa
Signing time: Sat 05 Jul 2025 08:49:51 +0000
ROA not before: Sat 05 Jul 2025 08:49:46 +0000
ROA not after: Mon 08 Sep 2025 08:49:46 +0000
asID: 61112
IP address blocks: 154.82.138.0/23 maxlen: 24
154.83.83.0/24 maxlen: 24
154.83.84.0/22 maxlen: 24
154.83.88.0/21 maxlen: 24
154.83.96.0/23 maxlen: 24
154.83.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101076 (0x18ad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 5 08:49:46 2025 GMT
Not After : Sep 8 08:49:46 2025 GMT
Subject: CN=6868e72f-c955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ff:9d:a2:ad:3d:a2:de:bc:74:aa:9f:4b:99:
e0:c7:b8:f4:80:a8:09:e0:3d:b7:41:c9:a0:e7:d0:
8a:89:b8:ba:ee:da:b3:f5:f0:18:72:cf:d7:cd:42:
bc:14:81:ab:ac:4a:63:8e:b3:f8:ed:e6:b4:0f:04:
ad:28:7c:71:65:74:65:ca:96:83:6e:dd:b9:43:eb:
fb:35:27:be:24:81:98:30:5c:d0:df:0c:f1:d0:79:
fd:81:88:c0:ab:d0:ca:83:65:ec:96:1e:cd:5d:e1:
90:48:bb:38:0b:eb:90:5a:b7:9e:31:1d:2c:73:e3:
b3:5b:1b:e2:55:a7:7a:ea:8c:e8:3c:6a:a7:1e:c9:
ee:70:19:11:db:24:3a:cc:70:7c:8b:7b:4d:9e:7b:
62:93:db:bd:ae:25:dc:29:cc:91:d4:93:60:85:d0:
13:6b:09:5a:42:24:fc:39:98:2e:62:1d:ea:85:94:
96:fd:12:71:d6:85:f4:2b:76:58:c0:d0:a8:15:0b:
8e:73:1a:60:59:d5:24:12:5b:a6:de:ba:a4:a3:0c:
39:67:f4:c2:d2:a8:29:29:c4:ae:90:8e:a2:98:f6:
59:80:96:f7:e5:c6:fb:c7:ba:48:4f:7a:96:8d:9f:
db:b7:a9:a3:f9:3b:4e:07:ad:85:f9:c0:37:fc:fe:
41:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:51:27:11:64:A8:C5:9F:AA:4D:4E:EA:EB:27:7E:3E:9C:38:77:8D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/031AA812597D11F0AA2252E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.138.0/23
154.83.83.0-154.83.98.255
Signature Algorithm: sha256WithRSAEncryption
b9:20:16:db:14:d5:a2:c0:17:9c:a0:c4:94:42:79:b5:32:53:
1e:89:19:11:df:80:d0:ae:48:0f:e9:e4:a0:45:13:27:94:49:
f6:25:0b:9b:40:0e:5d:67:86:bf:aa:97:fc:17:75:e9:cd:7d:
92:70:63:6d:21:b6:81:76:ee:8c:b4:aa:e8:e3:5e:f7:1c:ec:
5e:af:2b:c2:48:7f:09:11:3b:8d:2d:90:07:ab:89:13:dd:b9:
95:4f:c7:bf:1a:50:7d:6a:17:4f:92:d3:05:d5:2a:a7:56:9e:
0d:5c:56:55:d3:8d:97:cf:ea:d6:fd:32:9f:a1:0f:03:d1:c6:
7d:81:7e:31:a7:5a:e6:9d:5d:9b:45:55:82:e0:2a:28:72:6a:
7f:ce:36:9e:93:7a:e8:b4:05:45:dc:70:39:dd:48:80:26:4a:
1b:5a:24:99:d0:4f:c3:57:00:1f:fa:64:53:57:18:be:19:f3:
af:53:9e:0d:70:da:af:7d:ad:94:4c:e1:4f:f6:0d:dc:f3:b6:
a5:0d:b5:b4:a7:c8:4b:01:b0:b5:90:a4:7b:25:4a:18:40:37:
a0:d2:fa:00:df:50:6b:44:bc:82:5b:51:39:14:17:ff:8f:0d:
c2:79:4f:3d:83:03:c0:fe:26:60:6f:05:32:3d:ac:13:52:6a:
a9:2d:cf:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:03:17 2025 by rpki-client