Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38B9FFF05ABC11F09D9E45F4DAE4EC9C.roa
File: 38B9FFF05ABC11F09D9E45F4DAE4EC9C.roa (raw, json)
Hash identifier: Nn7UmltWaJ94Ijz8m6dZv+L7Kl+RMqw55qWzMBQ6O48=
Subject key identifier: 8D:CC:B2:94:6C:00:15:93:D5:08:8B:C1:48:04:1A:11:45:30:9A:47
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018BD8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38B9FFF05ABC11F09D9E45F4DAE4EC9C.roa
Signing time: Sun 06 Jul 2025 22:54:51 +0000
ROA not before: Sun 06 Jul 2025 22:54:44 +0000
ROA not after: Wed 03 Sep 2025 22:54:44 +0000
asID: 6453
IP address blocks: 154.210.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101336 (0x18bd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 6 22:54:44 2025 GMT
Not After : Sep 3 22:54:44 2025 GMT
Subject: CN=686afeba-d483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:60:43:68:e4:1d:c8:7d:44:6a:3d:c9:82:b2:
d7:84:83:72:fe:78:a8:26:80:5b:4c:10:45:58:80:
fd:df:9c:05:ca:b7:6c:4e:67:7c:95:4a:01:e2:22:
a5:6d:ec:3d:5d:e3:f9:4b:22:46:eb:7d:aa:e7:d0:
fe:a2:2d:01:ee:1e:b8:84:37:71:9b:ec:ca:90:d2:
4f:4a:e9:3a:67:96:0c:41:e1:57:df:80:a4:a3:63:
a1:0b:98:00:14:46:ac:8b:41:4f:c6:5d:89:d2:09:
2f:0c:fa:32:f2:ab:e1:53:b5:f1:da:53:ef:5c:e2:
8b:cd:ed:0f:12:74:13:4a:41:bb:1e:ed:52:0f:d8:
44:64:c2:f1:8c:17:4b:8e:f9:1d:77:02:f6:85:fd:
2d:10:4e:92:d6:30:7a:60:be:cf:ef:08:10:31:61:
2c:0f:82:41:6e:c4:a2:fd:47:20:1c:5b:90:20:a3:
3c:81:8c:d2:31:71:d1:42:73:55:2a:b2:11:5f:fb:
d8:7d:32:05:bc:75:a5:d2:f8:61:35:45:df:ae:c9:
fb:79:95:c1:0b:7c:b6:00:14:26:79:b3:80:d0:00:
37:7a:e1:f1:f3:4b:68:4f:01:06:b6:00:1e:c7:32:
5a:06:44:2f:80:a7:3e:fc:a6:32:cf:3b:79:41:ae:
70:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:CC:B2:94:6C:00:15:93:D5:08:8B:C1:48:04:1A:11:45:30:9A:47
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/38B9FFF05ABC11F09D9E45F4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.222.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:30:a3:ff:fd:08:ab:65:51:3c:79:87:89:fa:6d:26:05:25:
77:5a:fd:a3:12:74:b4:c6:89:7a:9f:a1:49:32:47:a4:31:d5:
e8:ce:55:fc:a1:c0:a5:25:2a:dd:97:e7:cb:31:f9:ff:27:31:
5e:bb:80:28:b7:92:0c:52:d1:20:5e:71:fc:12:ba:e2:75:a4:
3c:3d:d2:8e:c6:bf:82:82:69:57:8f:24:92:78:84:b7:40:01:
2b:a9:de:a6:76:76:2f:bd:ed:8c:ed:ef:24:3e:34:27:72:de:
28:dc:e8:61:95:4e:e6:61:23:cd:80:20:dd:8b:31:5b:40:d4:
36:8f:00:b6:a7:44:98:05:39:35:58:fb:54:37:50:c1:8f:7f:
8f:c8:54:32:6a:34:0b:48:76:c7:3e:47:93:f2:b1:97:fb:ae:
d4:f6:cc:6f:fc:6b:f4:14:1a:df:9f:1f:3e:13:f4:75:29:ea:
e1:6c:99:d3:93:f5:91:ab:6b:31:13:f9:c2:54:53:81:77:b8:
2c:f3:07:ab:de:6f:83:9c:77:8c:07:0a:11:98:bd:b7:8a:7c:
82:6a:10:c9:e1:9f:da:a2:c3:54:85:cd:20:8c:e4:57:24:bb:
72:0a:59:47:f4:cb:65:11:a5:91:05:9d:be:0a:85:48:43:a8:
b0:f0:23:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 11:44:27 2025 by rpki-client