Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE0BC950617411F0B23A3797DAE4EC9C.roa
File: AE0BC950617411F0B23A3797DAE4EC9C.roa (raw, json)
Hash identifier: wCgNJDFrCNtJZ2po9dnItI8+A71vt+8TEpxRJsQrAgk=
Subject key identifier: 0B:F1:FB:91:41:85:97:5A:D6:B2:5A:95:7E:0C:E3:21:28:73:AF:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018DD4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE0BC950617411F0B23A3797DAE4EC9C.roa
Signing time: Tue 15 Jul 2025 12:10:22 +0000
ROA not before: Tue 15 Jul 2025 12:10:17 +0000
ROA not after: Tue 19 Aug 2025 12:10:17 +0000
asID: 202736
IP address blocks: 154.88.53.0/24 maxlen: 24
154.88.54.0/24 maxlen: 24
154.88.56.0/24 maxlen: 24
154.88.57.0/24 maxlen: 24
154.88.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101844 (0x18dd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 15 12:10:17 2025 GMT
Not After : Aug 19 12:10:17 2025 GMT
Subject: CN=6876452e-75db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:8f:53:16:ad:8a:8f:c8:e3:12:e5:17:39:e1:
bc:5c:7c:67:23:7c:df:8f:95:ce:13:f2:99:0a:db:
0a:a0:4c:46:e2:a8:37:68:ca:00:17:51:f7:d1:f4:
e1:96:d0:ce:f3:46:d4:0a:20:fb:5d:c5:34:0d:09:
3a:0a:91:cd:73:9d:ea:5c:a6:74:69:c6:f1:1a:bb:
bf:3d:e0:95:da:b3:92:32:c6:8b:b6:83:05:d6:56:
9c:18:60:d1:2e:95:1e:cb:ee:9f:ef:f6:80:6c:0c:
a8:3b:c7:45:b2:97:eb:85:c8:34:01:6d:30:d4:8a:
d0:49:1b:39:03:9f:27:c1:62:33:67:1c:18:31:c2:
f5:d2:a7:e4:f1:65:f6:44:2a:53:15:43:75:a9:dc:
a6:20:99:09:85:4e:e4:7c:1f:09:5e:aa:db:71:ee:
bc:31:8e:03:93:4d:5e:b5:f1:00:0f:e2:8a:0b:86:
41:6f:9b:a9:21:7e:a6:e9:cf:a4:50:db:5c:46:11:
97:c3:43:77:db:c6:84:35:f3:39:95:3e:ad:cf:c4:
e4:3c:55:2a:cc:59:42:ff:6e:b5:97:4e:6a:d0:94:
3e:0b:e9:bb:83:85:eb:fc:87:4d:23:eb:6e:5d:d6:
6f:b8:e8:20:32:16:68:f5:14:43:82:fa:a2:69:42:
24:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F1:FB:91:41:85:97:5A:D6:B2:5A:95:7E:0C:E3:21:28:73:AF:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE0BC950617411F0B23A3797DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.53.0-154.88.54.255
154.88.56.0-154.88.58.255
Signature Algorithm: sha256WithRSAEncryption
5c:7f:3d:42:70:20:e8:cb:be:42:f3:32:0a:a9:e8:b0:cc:08:
6e:ad:9e:6f:14:d8:9d:d6:a3:3c:16:a7:f1:e0:a3:b9:9a:28:
0f:2f:6f:8d:e7:04:fa:e0:36:0a:ef:27:08:d4:cd:26:23:27:
5d:bd:16:f2:ce:a2:72:86:d2:39:bb:ed:b0:f0:25:ff:f7:a5:
34:8a:fc:1a:fd:4e:9d:57:ea:37:0f:86:dc:28:ed:0d:34:32:
c5:35:bc:1c:eb:79:fa:7f:49:c4:84:53:86:49:4e:5d:ad:c9:
2e:b4:1c:e8:ca:45:14:77:61:43:56:37:9e:e1:c6:5e:ed:fc:
0e:1f:13:34:61:02:ef:f9:4b:f4:5a:53:23:1c:d9:91:b0:19:
01:e9:27:a7:4d:eb:ba:1d:92:6b:37:cb:98:7b:1d:0e:08:c1:
bc:0b:cb:3a:16:83:1c:d1:34:dc:04:5e:47:10:44:65:50:e7:
db:7c:0b:54:69:13:eb:ee:cd:50:54:ab:48:3b:01:a2:7c:5f:
a6:da:d7:b9:8e:f5:d2:77:2e:67:57:f5:0c:73:52:61:72:1a:
a9:1f:0e:7e:4f:d2:2a:0b:18:13:8a:80:76:1a:a0:f5:64:49:
33:13:9e:1c:20:61:e2:e3:94:24:e0:5c:fb:c7:ab:e2:8e:a1:
98:b3:60:95
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jul 20 13:02:43 2025 by rpki-client