Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/815BB4465D7411F084522EBFDAE4EC9C.roa
File: 815BB4465D7411F084522EBFDAE4EC9C.roa (raw, json)
Hash identifier: Bwy54UWNK4wHzxD/87xxKnEBDJng1nvI54xXtP6PCvI=
Subject key identifier: 36:5C:5A:EF:1D:22:9F:BF:31:89:6D:9A:8D:93:58:4B:68:11:74:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018D3A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/815BB4465D7411F084522EBFDAE4EC9C.roa
Signing time: Thu 10 Jul 2025 09:59:02 +0000
ROA not before: Thu 10 Jul 2025 09:58:57 +0000
ROA not after: Mon 18 Aug 2025 09:58:57 +0000
asID: 20326
IP address blocks: 154.193.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101690 (0x18d3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 10 09:58:57 2025 GMT
Not After : Aug 18 09:58:57 2025 GMT
Subject: CN=686f8ee6-5f9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0e:80:34:73:3e:f8:7a:2d:52:6f:48:00:60:
15:9a:93:9d:8a:db:71:6b:9b:40:70:18:5f:80:e0:
27:db:f5:01:a3:72:c1:06:07:89:9a:9b:33:9c:75:
5b:48:68:22:6a:ea:88:d7:60:a6:3a:3a:d4:9e:72:
14:de:59:f8:d4:a8:0a:af:08:b3:1c:0a:e7:a6:ed:
d5:e1:c8:f1:d4:4e:08:50:de:fd:e8:56:58:e9:52:
24:4d:80:f1:15:db:4f:23:2b:de:c4:cf:0f:0f:7a:
34:bb:e2:53:71:a9:1f:80:e2:77:cd:b7:0b:28:3c:
e0:67:c3:3b:d6:c8:85:40:b6:96:13:1a:66:78:31:
54:70:3d:e7:e9:91:17:a4:55:3d:63:1d:96:ff:6c:
a6:3a:a5:00:89:e9:df:4b:df:c6:81:2b:04:be:73:
68:d1:4d:5a:00:e0:90:42:ad:1f:86:cd:29:97:24:
f4:18:1e:cd:b5:07:d1:34:e4:d2:ce:cd:d3:c6:2f:
a4:b6:ed:2c:0d:66:64:54:a5:96:36:03:be:cd:a7:
c5:b1:84:3f:88:2b:24:ad:97:a3:ee:30:72:53:af:
f7:95:64:4b:e7:dc:a0:27:56:91:da:c5:22:75:e7:
25:3e:8a:4e:3c:f6:28:3c:90:24:b7:dc:a5:c2:42:
e2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:5C:5A:EF:1D:22:9F:BF:31:89:6D:9A:8D:93:58:4B:68:11:74:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/815BB4465D7411F084522EBFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.130.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:e2:b9:b3:52:96:55:e5:dd:2a:8c:d6:7b:a5:e6:9c:99:05:
94:0a:d4:2b:2c:0e:90:bd:89:05:49:be:9b:fe:b4:48:59:0f:
aa:d2:10:6f:71:3f:2a:25:c4:d4:82:78:e1:aa:b7:21:68:80:
e2:c0:94:c5:ca:81:09:03:ee:39:e1:a0:ba:9d:6a:8c:0c:92:
d5:ca:40:5d:ff:db:b6:02:33:a4:e2:e4:b6:96:fe:af:27:2c:
9d:33:8f:d5:ef:3d:9f:ba:96:36:e8:97:74:17:28:06:af:b2:
e3:78:a1:61:c6:b6:c7:cc:3f:ad:99:8e:85:ed:60:86:b6:51:
b0:be:d1:05:59:79:08:15:7e:e4:7b:a4:09:a8:b3:5a:e7:85:
21:09:a4:19:2a:9d:ac:ef:24:04:94:40:eb:21:31:ea:cc:5b:
f1:91:1e:08:01:ed:74:95:00:2d:4a:ad:52:44:5c:9f:12:7f:
4c:ed:a3:dc:b6:64:ec:03:52:51:61:ae:f6:a4:4c:a4:e8:46:
53:70:30:04:08:94:83:d3:8f:1f:33:1b:ec:08:93:45:77:04:
83:09:d6:06:a7:28:c0:5b:c7:42:76:f6:ee:97:3c:6f:c9:46:
d1:90:f7:05:a8:99:7a:bb:00:dd:82:5f:40:28:67:94:60:c6:
5e:1e:dd:e4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAY06MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNzEwMDk1ODU3WhcNMjUwODE4MDk1ODU3WjAYMRYw
FAYDVQQDEw02ODZmOGVlNi01ZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyQ6ANHM++HotUm9IAGAVmpOdittxa5tAcBhfgOAn2/UBo3LBBgeJmpsz
nHVbSGgiauqI12CmOjrUnnIU3ln41KgKrwizHArnpu3V4cjx1E4IUN796FZY6VIk
TYDxFdtPIyvexM8PD3o0u+JTcakfgOJ3zbcLKDzgZ8M71siFQLaWExpmeDFUcD3n
6ZEXpFU9Yx2W/2ymOqUAienfS9/GgSsEvnNo0U1aAOCQQq0fhs0plyT0GB7NtQfR
NOTSzs3Txi+ktu0sDWZkVKWWNgO+zafFsYQ/iCskrZej7jByU6/3lWRL59ygJ1aR
2sUideclPopOPPYoPJAkt9ylwkLiRwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDZc
Wu8dIp+/MYltmo2TWEtoEXR5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84MTVCQjQ0NjVENzQxMUYwODQ1MjJFQkZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsGCMA0GCSqGSIb3DQEB
CwUAA4IBAQCs4rmzUpZV5d0qjNZ7peacmQWUCtQrLA6QvYkFSb6b/rRIWQ+q0hBv
cT8qJcTUgnjhqrchaIDiwJTFyoEJA+454aC6nWqMDJLVykBd/9u2AjOk4uS2lv6v
JyydM4/V7z2fupY26Jd0FygGr7LjeKFhxrbHzD+tmY6F7WCGtlGwvtEFWXkIFX7k
e6QJqLNa54UhCaQZKp2s7yQElEDrITHqzFvxkR4IAe10lQAtSq1SRFyfEn9M7aPc
tmTsA1JRYa72pEyk6EZTcDAECJSD048fMxvsCJNFdwSDCdYGpyjAW8dCdvbulzxv
yUbRkPcFqJl6uwDdgl9AKGeUYMZeHt3k
-----END CERTIFICATE-----
Generated at Sun Jul 20 13:02:35 2025 by rpki-client