Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D3C614A5D0311F0887242D3DAE4EC9C.roa
File: 9D3C614A5D0311F0887242D3DAE4EC9C.roa (raw, json)
Hash identifier: OtLPiZDHqfpEjc9sfRIALvInGDo2kX7Uvr0unl7M160=
Subject key identifier: EA:73:BA:C6:7E:8F:74:30:63:85:B1:BB:57:01:CF:1E:3D:67:CA:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018D10
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D3C614A5D0311F0887242D3DAE4EC9C.roa
Signing time: Wed 09 Jul 2025 20:30:56 +0000
ROA not before: Wed 09 Jul 2025 20:30:50 +0000
ROA not after: Fri 17 Jul 2026 20:30:50 +0000
asID: 8796
IP address blocks: 154.193.192.0/18 maxlen: 24
154.202.117.0/24 maxlen: 24
154.202.120.0/21 maxlen: 24
154.217.234.0/23 maxlen: 24
154.217.236.0/22 maxlen: 24
154.217.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101648 (0x18d10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 9 20:30:50 2025 GMT
Not After : Jul 17 20:30:50 2026 GMT
Subject: CN=686ed180-d9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f2:7f:d5:a8:d0:a9:97:4e:7a:ac:88:fe:f4:
49:e3:9b:51:2c:94:80:e2:de:f3:c8:40:a1:08:49:
fe:68:da:14:03:d3:47:83:af:fe:71:50:6a:25:f4:
a3:c7:22:b4:f7:ba:5b:20:f8:00:22:9e:3a:63:b1:
0d:a8:b2:84:85:33:03:44:cb:b7:72:e8:2a:46:c9:
17:a0:9c:d6:f2:f4:55:01:a0:0a:25:96:dd:a9:27:
6b:b2:51:21:66:44:1d:85:b7:3a:f7:41:e0:db:5e:
a2:56:c0:31:18:f6:41:c6:d7:ed:61:34:7f:14:ce:
f9:20:d4:9f:ae:ab:55:9f:a8:86:30:19:e8:69:c7:
56:68:1a:78:3e:fd:a7:c5:b0:30:36:02:b1:48:87:
7b:46:a1:46:b5:96:af:ff:d4:d4:36:2e:0c:d0:00:
50:15:cf:2e:9f:66:c3:f4:c5:e3:9a:92:1b:fe:28:
44:45:c2:15:7a:50:3f:2c:3b:82:8e:9b:4e:e6:0a:
ac:e1:e4:38:b7:91:7c:03:16:65:24:8a:ea:68:c5:
0a:7d:7a:bf:55:f0:2c:72:3e:dd:b7:a8:c4:c8:e2:
97:fd:11:30:da:b4:a9:87:99:5e:fb:a1:3d:cc:b4:
62:00:fe:a5:b3:27:1a:50:3b:8b:e5:0b:54:ac:3d:
6a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:73:BA:C6:7E:8F:74:30:63:85:B1:BB:57:01:CF:1E:3D:67:CA:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D3C614A5D0311F0887242D3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.192.0/18
154.202.117.0/24
154.202.120.0/21
154.217.234.0-154.217.255.255
Signature Algorithm: sha256WithRSAEncryption
82:c5:1d:62:57:5e:c2:12:fb:44:e4:db:d7:66:7b:a7:a7:66:
9a:a8:4c:99:84:0d:4a:4c:e8:05:7f:f0:d5:d2:41:6e:d0:10:
6a:e0:2d:4a:69:28:6f:7a:47:13:04:c3:f6:51:eb:7f:db:a8:
38:91:34:d1:d4:23:ce:98:4b:13:70:09:11:b7:a6:41:2d:d3:
fa:1b:31:4a:f7:22:1b:b4:31:69:cd:a7:e7:8f:e9:fa:7a:75:
5e:57:27:a6:69:0c:04:21:f7:77:eb:e9:dc:e7:b5:62:92:ab:
cd:e5:8c:72:1a:5c:e7:87:95:ae:4d:9b:aa:54:84:93:90:05:
4a:22:d2:e8:ac:31:b2:a2:e6:7b:79:24:fc:ae:73:0e:04:d6:
24:3f:1b:7b:12:3f:34:74:b4:67:69:04:86:10:48:c4:b8:b3:
e9:7b:63:60:4d:1c:68:3a:38:30:99:1a:33:38:6f:50:f9:6d:
29:2b:25:a3:de:20:e4:5e:4f:aa:fd:8d:58:76:81:ff:c0:3b:
34:55:0d:1d:da:97:8c:96:3f:11:c5:a5:d1:88:1c:be:6b:71:
41:7b:3d:f9:f0:2f:11:f7:96:c5:e3:78:ca:fc:94:b2:78:4c:
f8:e7:48:d8:62:22:02:3b:86:47:e5:6c:d0:77:68:19:af:cd:
df:fc:32:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:01:15 2025 by rpki-client