Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A32D33E590F11F0A02E1190DAE4EC9C.roa
File: 7A32D33E590F11F0A02E1190DAE4EC9C.roa (raw, json)
Hash identifier: /RX0Rn5NT7QhfJLx1xG8AOlSyDSaqaJyBkWIDcDG+/o=
Subject key identifier: B9:BD:C1:E4:8D:F1:C0:30:38:34:34:0B:F0:CA:B6:7E:17:25:20:1F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018AA6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A32D33E590F11F0A02E1190DAE4EC9C.roa
Signing time: Fri 04 Jul 2025 19:45:46 +0000
ROA not before: Fri 04 Jul 2025 19:45:41 +0000
ROA not after: Tue 09 Sep 2025 19:45:41 +0000
asID: 395793
IP address blocks: 154.93.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101030 (0x18aa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 4 19:45:41 2025 GMT
Not After : Sep 9 19:45:41 2025 GMT
Subject: CN=68682f6a-ae1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:62:74:da:70:5b:be:3f:ac:3f:32:50:f3:00:
49:01:f9:97:3a:cb:38:1b:23:c1:55:70:e2:34:52:
5b:39:ee:06:6d:85:a2:ba:df:55:15:19:6a:f6:62:
3a:2f:40:a0:0b:cb:87:8e:74:42:38:10:4a:14:b6:
97:96:49:f4:c7:5c:c6:00:56:27:a4:2f:c3:b1:4f:
17:0a:63:94:0a:34:ea:77:7b:4c:6b:f5:10:b8:54:
0d:5e:b5:f6:6e:9d:3d:1b:05:72:72:84:40:5e:0e:
93:61:ff:82:00:2d:ca:3e:29:44:87:84:e2:06:3b:
9b:47:7c:cd:81:2c:05:a8:ac:8f:11:78:6b:fa:a7:
30:03:7e:f2:1d:70:98:86:f3:ac:f1:ec:85:63:5a:
a2:c7:c9:65:43:6e:14:42:99:d0:bc:f2:7d:4d:8b:
ef:a1:6a:7f:36:6f:0d:68:03:63:d3:ee:5a:03:61:
6b:4d:a7:90:8d:20:10:9d:63:09:48:f1:da:06:88:
83:b5:3e:26:ad:e1:b6:b6:07:fa:12:47:22:e3:ab:
07:0d:9f:60:3e:65:8f:c4:f2:aa:f8:29:85:42:a3:
b7:2f:31:2d:2a:bf:17:26:f3:b7:ab:88:37:83:42:
4d:35:32:93:ad:36:bc:f7:c5:89:c1:92:2f:85:88:
f8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:BD:C1:E4:8D:F1:C0:30:38:34:34:0B:F0:CA:B6:7E:17:25:20:1F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A32D33E590F11F0A02E1190DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.0.0/24
Signature Algorithm: sha256WithRSAEncryption
37:dd:df:d6:b2:cf:ea:ed:d6:ab:f2:48:c7:6f:a7:7d:f4:ac:
fa:2f:68:50:bf:58:77:75:ad:02:9e:c7:d3:90:8b:44:16:a6:
80:79:9a:8c:83:61:76:18:57:54:21:69:d8:b5:0f:36:13:32:
b5:72:51:00:92:47:8b:98:37:0e:08:86:40:78:cf:b5:bc:6d:
6e:f8:50:89:66:d8:be:f4:70:cf:3b:fb:2e:92:38:15:a3:aa:
4b:dc:41:5b:50:75:33:4f:21:3d:10:ac:ee:19:f9:71:21:ea:
73:c2:07:9c:58:a5:a4:21:aa:26:bc:32:49:c4:39:61:83:11:
a0:be:b0:e7:a5:e4:09:ca:3a:50:14:af:83:1e:88:e8:fd:3a:
e8:cf:44:8d:ea:4a:f1:35:26:dd:48:9a:8b:f5:df:74:58:1f:
a5:67:6b:fd:ed:c5:50:be:88:10:1d:b7:37:a9:46:49:af:2d:
68:7d:b2:06:28:6b:a5:db:ca:c6:7c:69:f3:bb:94:77:93:ae:
65:39:91:d7:65:d7:1a:d7:cc:9d:c9:fd:df:19:76:bd:ea:d8:
37:5b:6c:21:58:33:99:ab:5d:1b:8d:e7:62:f3:a8:a3:c3:2b:
28:04:83:af:82:a8:f3:6a:47:72:9c:c1:c3:37:77:ba:6a:8b:
a6:a1:f3:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 11:25:23 2025 by rpki-client