Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0BD510DE5CAF11F0B36847B5DAE4EC9C.roa
File: 0BD510DE5CAF11F0B36847B5DAE4EC9C.roa (raw, json)
Hash identifier: UdzX1+jJHPcTFbIIB/xYT7MtKNjDQQ8lQahMqn+s2ak=
Subject key identifier: 7F:73:59:9A:4A:5B:E2:D4:E9:18:FD:71:45:CD:B5:4A:E8:6F:DF:33
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018CAF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0BD510DE5CAF11F0B36847B5DAE4EC9C.roa
Signing time: Wed 09 Jul 2025 10:25:34 +0000
ROA not before: Wed 09 Jul 2025 10:25:29 +0000
ROA not after: Fri 08 Aug 2025 10:25:29 +0000
asID: 14315
IP address blocks: 154.196.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101551 (0x18caf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 9 10:25:29 2025 GMT
Not After : Aug 8 10:25:29 2025 GMT
Subject: CN=686e439e-559d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:95:b8:dc:6b:3c:1a:95:b2:a7:92:83:75:79:
1e:08:08:15:c5:45:77:e9:e3:1f:e1:92:72:a7:71:
64:71:cc:d1:66:3f:b5:e3:35:b3:8c:1c:a4:e0:18:
dc:f2:8a:32:1b:ed:17:f0:d8:b2:80:e1:57:7f:c2:
b9:e5:87:2a:3c:23:53:ea:17:bf:e9:31:62:80:81:
31:52:90:dd:66:13:d0:c5:0c:b9:bd:52:0e:d7:d7:
1f:05:c9:c3:96:d3:f5:b1:34:dd:92:5b:f5:e3:bd:
47:34:78:92:2f:55:4e:5b:5d:a6:90:bb:20:4a:84:
32:21:f4:e4:e7:5b:73:02:4c:12:d6:27:64:84:83:
a7:c7:aa:8d:21:a9:02:32:84:ea:16:74:ce:40:bb:
f8:30:15:a8:bc:8c:01:ae:43:7a:1d:9b:a1:75:18:
02:e5:6a:b3:4a:6a:7a:22:ea:ab:8e:45:6a:67:19:
d3:c0:d1:4c:1d:ed:6c:54:70:fa:ec:a0:fe:16:10:
74:e8:e4:15:a7:8c:7e:5d:95:89:8c:d8:12:39:72:
f6:d4:a8:ef:8a:5a:38:69:64:74:d5:fa:6e:b1:dd:
22:84:7d:d2:d2:af:f0:7d:88:cb:c7:97:08:29:57:
6b:0e:12:d2:65:ae:7c:ec:e6:1c:28:c8:1a:71:98:
29:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:73:59:9A:4A:5B:E2:D4:E9:18:FD:71:45:CD:B5:4A:E8:6F:DF:33
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0BD510DE5CAF11F0B36847B5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.8.0/22
Signature Algorithm: sha256WithRSAEncryption
c3:c2:b2:1d:9e:a9:5b:c0:7e:0e:a1:94:d7:2e:24:28:6c:6c:
78:9c:12:d2:12:91:97:60:2b:b2:a6:83:36:c2:db:55:36:5d:
a3:07:2e:01:f9:6c:56:5d:2f:be:47:5a:38:dc:d9:93:fd:17:
68:0b:af:9b:c5:af:e4:67:3d:fd:35:f3:b1:31:44:73:35:9b:
3e:ce:d7:2d:4a:29:85:ce:68:eb:bd:71:57:75:5e:a1:0a:3c:
2b:19:d1:ac:86:65:9e:95:ee:a1:73:08:19:9d:2c:5a:1d:45:
0d:4e:5a:cf:22:4f:ea:da:91:fe:8f:9c:e0:b2:7b:a3:07:97:
97:d6:f4:4c:91:4f:f0:64:06:2f:21:3f:28:3d:29:15:ae:a0:
fc:af:ca:86:9d:e6:4b:ef:15:f5:df:1a:50:86:6f:25:82:c3:
e8:a3:58:09:b7:5e:0a:35:7b:ed:75:23:68:8c:2c:b5:0c:77:
5c:23:d8:92:db:80:26:b3:0b:28:35:86:22:ce:7c:05:7a:0d:
01:97:82:51:84:27:e9:9e:12:ba:85:34:0c:63:be:77:0f:13:
78:4e:2b:34:86:2c:8f:d1:b5:a4:05:ae:1e:32:8b:4d:55:31:
37:f8:cd:52:2c:45:a4:0f:7a:71:1a:48:31:ba:bd:0d:4d:20:
75:f3:51:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 22:32:12 2025 by rpki-client