Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FBA200A5D7111F0B69ED9A9DAE4EC9C.roa
File: 5FBA200A5D7111F0B69ED9A9DAE4EC9C.roa (raw, json)
Hash identifier: 6pzt1ZIFx5CZ8tMPq6bcaQlzZvP+ZIDahIj6ouHrHYA=
Subject key identifier: 43:C6:99:E7:AD:60:3A:B8:BA:DE:8B:8A:22:91:04:82:79:DF:64:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018D31
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FBA200A5D7111F0B69ED9A9DAE4EC9C.roa
Signing time: Thu 10 Jul 2025 09:36:37 +0000
ROA not before: Thu 10 Jul 2025 09:36:32 +0000
ROA not after: Sat 16 Aug 2025 09:36:32 +0000
asID: 22773
IP address blocks: 154.82.2.0/24 maxlen: 24
154.82.3.0/24 maxlen: 24
154.82.4.0/24 maxlen: 24
154.82.5.0/24 maxlen: 24
154.82.6.0/24 maxlen: 24
154.82.7.0/24 maxlen: 24
154.82.8.0/24 maxlen: 24
154.82.9.0/24 maxlen: 24
154.82.10.0/24 maxlen: 24
154.94.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101681 (0x18d31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 10 09:36:32 2025 GMT
Not After : Aug 16 09:36:32 2025 GMT
Subject: CN=686f89a5-0093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:56:79:bb:96:bb:c1:6c:0b:46:48:28:17:e6:
65:9d:7b:e7:75:54:a2:ec:07:58:36:99:f5:be:2c:
e1:1e:89:d3:5e:33:1c:da:91:0b:93:8a:6e:c0:4d:
b9:d2:cb:87:c3:48:d7:e1:4e:c6:8f:2b:e2:fa:dc:
3b:ee:47:74:c0:45:98:0e:2e:4e:8a:b4:48:88:14:
bf:18:d4:89:3b:4b:e9:b2:ed:7f:12:7e:1a:7b:de:
54:e1:2a:37:1d:e4:30:e7:38:37:71:1b:85:23:9f:
f8:e1:a2:f1:b1:63:a2:ca:a3:7b:ad:2f:a6:02:62:
e0:38:8b:48:22:3d:8d:64:0c:39:63:56:b6:e5:66:
f9:7b:38:af:cd:13:be:ca:10:7b:96:e8:d8:45:54:
07:61:25:e6:2e:f3:69:46:53:77:ab:9e:c8:1c:96:
eb:27:a2:0a:37:87:62:7e:d9:88:7c:07:06:2c:af:
7e:55:a5:b9:17:2f:26:11:77:d4:58:65:bd:d6:41:
b1:6f:6e:c3:ac:0b:a3:e2:e2:c6:43:26:6b:3c:2a:
0d:31:9f:ed:8f:dd:71:56:2a:bf:e1:06:8f:4a:08:
52:aa:99:c2:13:5b:cd:8b:3b:f8:f0:b6:7b:f6:56:
f6:27:0e:e2:13:51:fe:ec:2d:11:d6:ec:16:e2:9f:
b3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C6:99:E7:AD:60:3A:B8:BA:DE:8B:8A:22:91:04:82:79:DF:64:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FBA200A5D7111F0B69ED9A9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.2.0-154.82.10.255
154.94.192.0/19
Signature Algorithm: sha256WithRSAEncryption
ca:ea:fa:06:80:87:7d:77:55:e7:95:1c:77:6b:18:e5:17:09:
7f:f0:66:3c:59:53:49:f7:79:bb:a7:77:d8:81:8f:4c:8a:6d:
4d:8d:40:90:5b:69:fa:ee:34:1b:07:24:c8:67:c5:ce:82:de:
45:6d:91:f7:a7:b6:6b:58:cc:73:8c:c7:d4:5f:fb:21:62:02:
52:60:f5:0a:84:29:b1:43:d0:fd:8d:22:78:f5:8e:7f:bf:48:
7c:57:db:f1:b3:52:e8:16:9e:77:dc:13:89:5c:38:3d:fd:ea:
96:30:b8:96:07:c6:6e:54:db:aa:92:20:00:c0:89:cf:2f:b9:
e7:1e:24:88:f1:f8:56:8b:cf:46:4a:48:1f:a5:89:07:bb:5a:
9f:de:4e:74:73:96:e1:9f:e2:01:fa:1a:28:fa:ba:13:f2:dc:
5a:4a:17:41:41:76:76:6b:e4:3a:af:ff:3e:d4:c2:4b:e8:ee:
98:51:3f:67:5f:a6:b3:98:0e:79:d2:5c:c6:83:17:ac:f8:82:
3a:0f:74:fa:be:2b:19:e6:ea:b3:36:db:34:9b:b6:9c:d9:93:
36:c7:48:b3:23:c1:d5:86:19:28:64:6e:39:02:2b:86:5b:19:
cb:93:58:14:e6:d8:33:85:e7:07:6b:97:5e:72:34:bb:ce:d7:
f4:39:87:81
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAY0xMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNzEwMDkzNjMyWhcNMjUwODE2MDkzNjMyWjAYMRYw
FAYDVQQDEw02ODZmODlhNS0wMDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxFZ5u5a7wWwLRkgoF+ZlnXvndVSi7AdYNpn1vizhHonTXjMc2pELk4pu
wE250suHw0jX4U7Gjyvi+tw77kd0wEWYDi5OirRIiBS/GNSJO0vpsu1/En4ae95U
4So3HeQw5zg3cRuFI5/44aLxsWOiyqN7rS+mAmLgOItIIj2NZAw5Y1a25Wb5eziv
zRO+yhB7lujYRVQHYSXmLvNpRlN3q57IHJbrJ6IKN4diftmIfAcGLK9+VaW5Fy8m
EXfUWGW91kGxb27DrAuj4uLGQyZrPCoNMZ/tj91xViq/4QaPSghSqpnCE1vNizv4
8LZ79lb2Jw7iE1H+7C0R1uwW4p+z/QIDAQABo4ICszCCAq8wHQYDVR0OBBYEFEPG
meetYDq4ut6LiiKRBIJ532T3MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81RkJBMjAwQTVENzExMUYwQjY5RUQ5QTlEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAGaUgIDBACaUgoDBAWa
XsAwDQYJKoZIhvcNAQELBQADggEBAMrq+gaAh313VeeVHHdrGOUXCX/wZjxZU0n3
ebund9iBj0yKbU2NQJBbafruNBsHJMhnxc6C3kVtkfentmtYzHOMx9Rf+yFiAlJg
9QqEKbFD0P2NInj1jn+/SHxX2/GzUugWnnfcE4lcOD396pYwuJYHxm5U26qSIADA
ic8vueceJIjx+FaLz0ZKSB+liQe7Wp/eTnRzluGf4gH6Gij6uhPy3FpKF0FBdnZr
5Dqv/z7Uwkvo7phRP2dfprOYDnnSXMaDF6z4gjoPdPq+Kxnm6rM22zSbtpzZkzbH
SLMjwdWGGShkbjkCK4ZbGcuTWBTm2DOF5wdrl15yNLvO1/Q5h4E=
-----END CERTIFICATE-----
Generated at Sun Jul 20 18:48:17 2025 by rpki-client