Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/345B52BA58EB11F0B67895AADAE4EC9C.roa
File: 345B52BA58EB11F0B67895AADAE4EC9C.roa (raw, json)
Hash identifier: PeGoSCq9S+SOF2sto561QcOjjH3KprmZ50bDD0Xjqtw=
Subject key identifier: 47:EF:DB:46:BA:F1:3D:56:D4:3F:D8:40:5E:A2:E6:9A:60:EE:77:3A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018A72
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/345B52BA58EB11F0B67895AADAE4EC9C.roa
Signing time: Fri 04 Jul 2025 15:26:07 +0000
ROA not before: Fri 04 Jul 2025 15:26:02 +0000
ROA not after: Sun 24 Aug 2025 15:26:02 +0000
asID: 138195
IP address blocks: 154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100978 (0x18a72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 4 15:26:02 2025 GMT
Not After : Aug 24 15:26:02 2025 GMT
Subject: CN=6867f28f-6ff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:63:12:03:34:45:99:e9:69:a3:41:eb:ec:67:
cc:ef:e6:fe:b0:5f:52:5f:72:83:53:58:72:57:7e:
6b:27:02:7d:d9:01:b1:c7:a3:3a:61:ac:80:b3:cc:
81:de:df:ab:e0:f8:04:02:4c:cf:29:13:80:a3:fe:
a7:7f:53:90:f5:55:fa:ea:de:fa:70:d6:79:18:9f:
89:81:e4:4a:70:f4:18:cb:2e:05:7f:c8:ae:ac:b5:
f1:9d:f9:dc:11:ff:e0:b2:00:55:a8:2f:65:e2:93:
25:b3:9d:3d:a2:07:d2:f8:45:b4:cb:96:39:93:d5:
3a:6f:7a:e8:e1:99:04:d5:84:2e:2f:bb:5a:56:11:
10:62:fd:18:e0:97:b0:c3:8a:96:81:5d:8a:ee:cc:
94:2e:6b:b2:22:18:ef:f5:23:a8:11:5b:98:c8:e1:
95:ef:93:28:9d:52:7d:60:32:7c:d4:88:69:fa:e4:
68:e2:2b:ad:c0:de:8b:86:25:e2:0b:25:25:6e:d8:
9a:3f:83:ce:eb:68:ac:60:c4:cb:5f:ce:42:bf:e7:
f9:b1:e9:11:77:39:0e:16:10:2d:c1:1e:eb:7a:97:
6c:9b:52:12:e1:09:b8:da:d4:1d:ce:6a:34:2d:b1:
46:82:c4:43:f2:1c:3c:b2:5c:b4:90:24:b9:34:bc:
a4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:EF:DB:46:BA:F1:3D:56:D4:3F:D8:40:5E:A2:E6:9A:60:EE:77:3A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/345B52BA58EB11F0B67895AADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:69:58:8c:74:fe:0e:d6:5b:84:40:7f:05:7b:f3:8a:58:49:
a5:29:df:1e:5e:9f:c4:bd:91:4d:09:1d:83:64:9c:b1:73:87:
41:d8:d4:84:d8:01:3f:4f:14:bf:46:e4:9e:2f:7a:37:73:87:
e8:c0:50:11:30:5b:47:ab:0f:c8:fa:c4:58:e0:8a:d9:ca:2a:
e3:be:cd:cb:8d:f0:18:8d:02:cd:04:3f:64:39:5f:8f:4b:60:
42:01:fe:95:8f:a3:30:51:00:1b:5f:a8:74:09:85:75:08:96:
15:78:fb:bc:7f:a8:9b:c4:0f:b2:c1:0f:df:03:1f:40:10:63:
e3:7f:7a:68:f0:e5:d8:db:9a:85:24:1b:4f:3b:40:3c:d4:3a:
c0:92:92:1f:92:2b:5e:8f:7a:2c:7e:14:8a:b1:b7:6c:64:21:
9c:ad:88:d2:c6:d3:5a:9d:20:f3:80:37:cc:ff:cd:f3:99:81:
cc:e9:74:d2:12:76:a9:bb:40:b1:d3:b4:40:2b:ba:e0:5b:ac:
20:d6:39:ad:59:41:43:8c:29:b5:bb:42:34:f4:77:5b:6d:e6:
fc:82:64:c3:12:80:b3:ae:89:6d:58:a5:40:87:5a:ee:65:3e:
77:5f:bc:5d:3d:70:4e:bc:c9:52:3d:6a:e1:70:72:b0:fa:50:
8d:25:19:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:03:17 2025 by rpki-client