Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65199EFA632411F09419179EDAE4EC9C.roa
File: 65199EFA632411F09419179EDAE4EC9C.roa (raw, json)
Hash identifier: g27rUtSvdaq+ZbvAi+XqHQUrTskMQd0DsohooFqNnQA=
Subject key identifier: 65:B5:C9:13:55:98:65:92:7D:DC:D5:C9:7B:83:E1:8E:B6:15:22:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018E4C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65199EFA632411F09419179EDAE4EC9C.roa
Signing time: Thu 17 Jul 2025 15:40:42 +0000
ROA not before: Thu 17 Jul 2025 15:40:37 +0000
ROA not after: Sun 31 Aug 2025 15:40:37 +0000
asID: 49505
IP address blocks: 154.205.244.0/24 maxlen: 24
154.205.245.0/24 maxlen: 24
154.205.246.0/24 maxlen: 24
154.205.247.0/24 maxlen: 24
154.223.198.0/24 maxlen: 24
154.223.199.0/24 maxlen: 24
154.223.200.0/24 maxlen: 24
154.223.201.0/24 maxlen: 24
154.223.202.0/24 maxlen: 24
154.223.203.0/24 maxlen: 24
154.223.204.0/24 maxlen: 24
154.223.205.0/24 maxlen: 24
154.223.206.0/24 maxlen: 24
154.223.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 01:13:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101964 (0x18e4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 15:40:37 2025 GMT
Not After : Aug 31 15:40:37 2025 GMT
Subject: CN=6879197a-0c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:36:d8:e8:b8:a1:fb:86:95:cc:bd:db:fe:20:
4a:d6:dd:ef:1e:23:1f:6d:9f:b1:77:9f:22:bd:4a:
67:ba:42:2e:10:e9:9e:af:d1:a8:9d:be:6c:79:97:
52:8e:24:c7:f4:7e:c7:45:7d:c9:5e:6d:eb:8d:27:
68:c8:3c:49:5b:95:c5:45:6b:83:8b:e7:2d:83:67:
82:a9:fc:1c:f2:84:12:14:2a:93:ea:e1:1a:50:33:
38:85:73:d6:eb:71:ee:a5:6e:86:26:f3:c9:67:ed:
70:4b:1b:6a:51:1d:c9:f8:0c:45:c0:ca:6f:ec:f8:
c2:be:ee:87:e6:14:fb:b3:ec:96:0b:1b:a6:00:af:
c7:21:37:bd:e4:4f:63:56:8e:31:15:81:49:72:fe:
a2:a5:f8:97:32:92:47:85:bf:62:55:98:08:00:b9:
a2:ed:1f:c0:38:c0:9b:a9:0c:1f:b4:49:7b:55:28:
89:0c:fa:ab:34:b2:be:41:55:26:f5:dc:64:20:b7:
ab:dd:a9:c2:80:c8:dd:a7:78:ff:03:a5:a0:83:30:
ca:ac:d5:04:fd:15:9f:90:ab:ab:19:aa:04:41:28:
c7:b1:cb:35:06:00:02:08:2f:86:22:63:e0:c5:c2:
a7:0d:6a:d0:f7:f8:08:90:49:45:d4:6f:f2:e6:b4:
70:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:B5:C9:13:55:98:65:92:7D:DC:D5:C9:7B:83:E1:8E:B6:15:22:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65199EFA632411F09419179EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.244.0/22
154.223.198.0-154.223.207.255
Signature Algorithm: sha256WithRSAEncryption
23:01:aa:d1:b1:f7:10:30:24:c3:b2:1c:31:2f:e3:fd:3c:dc:
33:e4:57:9f:ac:25:db:8e:b1:f6:e6:08:9d:3d:43:78:b8:b5:
7b:d4:b4:80:6e:b0:dd:33:ae:e5:f6:f5:79:f8:0c:31:ef:09:
36:fa:11:db:d9:ae:42:6e:c7:25:dd:9a:19:70:86:4e:aa:24:
68:f8:4b:3b:61:3a:7b:06:0f:b7:26:f1:53:5a:20:14:ba:fe:
3b:c3:ad:1e:6a:1f:58:4c:14:4e:bc:b8:60:81:6f:fa:65:5d:
76:77:ff:84:f9:d3:96:10:2a:a4:1b:57:89:01:d1:ff:67:9a:
b0:d4:dd:77:d3:03:c8:af:30:8f:af:b4:88:17:b6:d3:37:e7:
2d:8d:0a:1a:30:8b:23:25:e2:87:c0:a5:30:21:5a:51:d6:a2:
9c:17:38:8d:cd:3f:75:e6:d0:1c:f0:00:67:20:9f:71:fb:e1:
9f:04:4f:ca:3f:81:f2:1e:f8:67:9c:e2:41:8a:99:50:73:59:
87:4d:7c:28:15:b2:9a:58:7e:27:a1:e7:84:32:d3:cc:5e:9c:
67:dd:7c:14:b5:3d:c0:6b:97:58:3a:e8:97:32:76:fe:4a:f7:
65:d0:0c:22:ad:23:86:49:6a:74:1f:17:58:f4:41:4f:c3:e1:
64:e8:6c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 02:44:08 2025 by rpki-client