Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5DE544C59BC11F0ACB2D17DDAE4EC9C.roa
File: A5DE544C59BC11F0ACB2D17DDAE4EC9C.roa (raw, json)
Hash identifier: ds5bOOJ/DkfgRDo9RMclQfrONRYinKKicFGS5vgPcW4=
Subject key identifier: D1:57:A6:BD:A1:69:08:1C:60:9F:C4:56:7F:84:04:D0:10:26:92:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018B1E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5DE544C59BC11F0ACB2D17DDAE4EC9C.roa
Signing time: Sat 05 Jul 2025 16:25:22 +0000
ROA not before: Sat 05 Jul 2025 16:25:17 +0000
ROA not after: Wed 03 Sep 2025 16:25:17 +0000
asID: 18229
IP address blocks: 154.210.204.0/24 maxlen: 24
154.210.205.0/24 maxlen: 24
154.210.206.0/24 maxlen: 24
154.210.207.0/24 maxlen: 24
154.210.208.0/24 maxlen: 24
154.210.209.0/24 maxlen: 24
154.210.210.0/24 maxlen: 24
154.210.211.0/24 maxlen: 24
154.210.212.0/24 maxlen: 24
154.210.215.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101150 (0x18b1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 5 16:25:17 2025 GMT
Not After : Sep 3 16:25:17 2025 GMT
Subject: CN=686951f2-8801
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:58:f7:03:4b:47:e3:8c:ea:7f:49:33:12:1e:
07:cf:98:d4:63:de:7b:df:8b:fa:cd:3b:80:cb:8d:
22:b6:1c:52:87:bb:5a:32:93:7b:fd:f5:f7:c4:9e:
9f:c7:30:59:94:28:6a:97:bd:9d:47:36:dd:0d:e1:
ad:2f:9f:2a:d1:95:46:cb:54:62:8a:7c:7c:cc:46:
10:e2:13:6c:b9:89:0e:86:bc:c2:c2:fe:4b:cd:05:
0d:66:2f:f4:1a:f8:c3:8c:04:f0:0b:53:95:09:7c:
4e:9a:af:28:09:4b:31:63:d9:6e:9c:ff:42:40:bb:
6c:0d:ab:d3:3b:12:72:79:9d:79:47:16:80:4e:d6:
e2:5e:4e:80:31:2f:3f:ed:b6:3b:73:0d:2b:bc:27:
d9:30:0e:3d:4e:81:84:ab:86:1e:fc:6b:b6:1a:af:
eb:b3:37:d3:ef:1f:27:d8:1a:04:3a:51:29:19:0a:
8b:f3:46:98:1d:fd:8b:02:63:9b:f2:ed:5f:0c:05:
f9:13:6b:0e:fc:00:8c:58:03:8f:78:a2:b7:f0:15:
3b:fa:1c:12:99:d6:e2:97:95:58:e3:29:8d:aa:5f:
76:19:cc:f6:88:4b:71:93:d5:03:5a:93:ee:88:76:
9e:ae:2b:cb:f8:31:00:cc:07:8d:5e:68:67:68:29:
84:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:57:A6:BD:A1:69:08:1C:60:9F:C4:56:7F:84:04:D0:10:26:92:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5DE544C59BC11F0ACB2D17DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.204.0-154.210.212.255
154.210.215.0/24
Signature Algorithm: sha256WithRSAEncryption
62:bf:92:75:70:23:28:03:84:16:25:22:13:e7:da:b2:c9:54:
d5:b6:03:8b:a4:69:a7:f0:62:8a:6e:55:c6:95:92:00:1d:b6:
8e:06:c4:b1:4c:a7:ec:3b:31:11:ae:58:4c:64:9b:57:34:a4:
08:8d:0d:52:1f:2c:38:ad:cd:f2:44:b6:9d:97:29:6f:9c:7e:
93:b0:63:9c:e1:86:16:57:67:01:dc:99:81:06:e7:e1:dc:63:
78:e9:da:3b:13:61:13:bb:2a:f0:28:1f:6f:51:42:de:70:61:
a0:db:84:75:d9:f7:66:72:7d:9b:27:13:42:e8:b9:dd:92:21:
d1:35:14:1f:57:94:43:3a:15:79:4c:f1:3b:00:da:c1:9f:4b:
d0:85:62:9f:57:d7:1f:07:3b:dd:70:8c:4b:3d:6c:e0:74:7f:
77:3a:2d:be:1e:75:72:f9:22:b9:63:7e:aa:8f:b4:2b:91:4b:
3a:ff:78:76:25:75:5e:aa:a1:0d:02:54:2d:6a:85:54:34:21:
34:47:9b:50:5b:76:44:33:61:ca:5f:38:74:c4:a2:88:6b:5e:
b8:1d:f0:0d:bc:02:ef:59:a4:28:11:f8:d9:e7:18:26:2a:82:
c4:18:11:21:69:1e:99:60:8e:c5:14:85:15:8e:a5:60:6d:2a:
50:19:32:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:01:13 2025 by rpki-client