Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5966410E5E4B11F09ACF287BDAE4EC9C.roa
File: 5966410E5E4B11F09ACF287BDAE4EC9C.roa (raw, json)
Hash identifier: o6OKKv6OzT5WzTkCwg39HZhmeohOlQB3s3qUtZkZs9g=
Subject key identifier: 0D:75:8D:4B:06:2E:6E:02:0E:A2:50:3A:B5:3D:55:42:17:E2:6D:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018D66
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5966410E5E4B11F09ACF287BDAE4EC9C.roa
Signing time: Fri 11 Jul 2025 11:36:57 +0000
ROA not before: Fri 11 Jul 2025 11:36:52 +0000
ROA not after: Sat 16 Aug 2025 11:36:52 +0000
asID: 22773
IP address blocks: 154.85.106.0/24 maxlen: 24
154.85.107.0/24 maxlen: 24
154.85.108.0/24 maxlen: 24
154.85.109.0/24 maxlen: 24
154.85.110.0/24 maxlen: 24
154.85.111.0/24 maxlen: 24
154.85.112.0/24 maxlen: 24
154.85.113.0/24 maxlen: 24
154.85.114.0/24 maxlen: 24
154.85.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101734 (0x18d66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 11 11:36:52 2025 GMT
Not After : Aug 16 11:36:52 2025 GMT
Subject: CN=6870f759-a9b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:03:98:a0:46:26:60:bb:16:42:5a:37:96:06:
4f:21:f5:21:32:ee:9f:8f:1a:98:fa:5a:9f:26:f6:
77:c1:ff:6e:69:a2:0a:c8:dc:78:93:e5:d9:e6:e3:
c3:98:81:ec:25:59:35:92:57:5f:25:41:ed:59:61:
c7:72:b9:e5:8b:4e:f6:95:f5:fe:89:bf:d8:c1:23:
6e:03:0a:43:f9:8e:ee:e8:90:e8:22:e3:4e:a2:34:
fc:f5:15:97:5c:7e:5e:2e:95:8b:ea:64:7d:ba:40:
a2:0c:90:be:95:80:17:d3:03:f1:ac:89:38:49:97:
1a:8a:84:e8:76:3c:04:d6:f0:92:d8:81:28:7d:0b:
5b:b0:cc:d8:fb:2c:33:46:33:f7:a8:6a:ac:9e:82:
68:89:c5:c1:70:00:dc:5d:c3:29:e1:16:4e:76:5d:
74:98:e6:00:ce:4b:56:f3:d5:47:d8:50:77:c9:d4:
dd:5a:4b:66:44:ca:87:06:f3:0a:a4:5a:ba:b6:fb:
8e:b5:49:65:ad:c7:9d:ac:6e:21:2f:a8:d8:13:de:
df:0f:35:02:82:4a:87:ec:58:d0:82:62:4c:92:ab:
dd:19:6c:d6:0a:f5:78:ac:6c:90:ae:85:72:cd:8f:
f5:3e:74:cb:a4:83:46:93:e3:40:63:a0:db:16:46:
bd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:75:8D:4B:06:2E:6E:02:0E:A2:50:3A:B5:3D:55:42:17:E2:6D:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5966410E5E4B11F09ACF287BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.106.0-154.85.115.255
Signature Algorithm: sha256WithRSAEncryption
14:8f:f4:6b:c5:ae:1b:aa:79:98:20:05:67:df:a4:bc:59:75:
2d:66:84:ec:67:01:e0:e9:7d:d4:27:5d:5b:59:c3:fa:52:25:
fb:43:11:89:e6:db:fd:63:3e:cb:77:bf:bf:88:8a:bc:ed:82:
cc:f2:03:6a:32:3f:a9:54:0a:6a:63:31:9f:82:9d:23:67:8f:
4a:2e:52:f6:1f:9a:45:49:22:b0:80:fa:cb:7f:ff:64:30:95:
cb:91:cd:d2:37:6f:1b:e5:76:7e:87:77:d8:a7:f8:1c:81:99:
f0:ab:76:54:4d:b5:13:15:a1:00:dc:87:4d:a2:20:7e:d2:48:
43:9e:c2:e8:54:e0:ff:68:83:f3:f4:72:a9:34:5e:0a:f8:7b:
0f:fe:68:ab:af:c3:1c:6e:20:c0:b6:2d:be:aa:fb:83:c6:c7:
55:92:0e:44:73:a9:65:02:50:8c:06:d3:3c:40:07:c2:c7:6d:
b7:b4:d4:7a:b1:2f:9e:36:4c:0c:81:ee:1e:be:79:f6:64:d5:
e3:ef:bb:67:a2:e6:04:d3:4d:37:18:33:0c:0a:2c:24:ca:5e:
91:99:41:a0:87:6a:42:a6:2d:d8:a1:0e:d1:ce:d9:c4:98:ea:
5b:d3:96:57:03:76:4a:8b:3d:5c:51:a9:76:e6:a7:a0:fe:16:
a8:e7:3d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 12:58:41 2025 by rpki-client