Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B21C06A0609C11F0817EB59ADAE4EC9C.roa
File: B21C06A0609C11F0817EB59ADAE4EC9C.roa (raw, json)
Hash identifier: iit4y1ruuhF3dD/V31IiG/b43FVQlzjw3al4Z5zu2oo=
Subject key identifier: 5C:7A:3E:7D:93:35:F9:62:74:B7:C1:83:F0:AD:74:F7:9C:15:EC:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018DB5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B21C06A0609C11F0817EB59ADAE4EC9C.roa
Signing time: Mon 14 Jul 2025 10:24:17 +0000
ROA not before: Mon 14 Jul 2025 10:24:12 +0000
ROA not after: Mon 21 Jul 2025 10:24:12 +0000
asID: 141883
IP address blocks: 154.86.0.0/24 maxlen: 24
154.91.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 21 Jul 2025 10:24:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101813 (0x18db5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 14 10:24:12 2025 GMT
Not After : Jul 21 10:24:12 2025 GMT
Subject: CN=6874dad1-4156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:77:97:8f:8f:63:c4:1a:03:8b:86:b8:dc:c6:
2d:49:0a:fa:1d:0f:81:aa:2b:42:d7:7e:fb:02:e6:
f0:a6:36:5f:ef:5c:c4:89:d0:4e:3a:be:a4:45:61:
04:aa:f6:5f:91:9c:4b:53:df:6a:9c:b4:70:a6:c2:
b0:c7:53:03:92:e7:97:03:1a:d2:b1:5b:67:00:bd:
0d:69:4a:f7:a2:bc:de:cb:b0:f6:47:f9:d4:13:75:
40:98:fc:38:f5:10:0a:a9:50:6b:fa:fd:4a:c9:10:
2d:d4:56:79:a0:b3:c0:1f:50:0e:59:0d:63:21:f5:
c4:85:cd:b7:03:ba:67:aa:16:80:78:0d:86:c2:33:
d1:2b:27:2e:a1:9c:52:f8:9c:41:6d:fc:ee:0a:16:
44:3b:a2:d1:a0:eb:e6:6b:32:88:24:ce:cb:dd:12:
73:ec:68:b5:d7:9d:51:41:a9:0b:d9:0b:a6:b4:f4:
58:fe:f8:68:dd:bc:aa:c8:be:a7:53:d4:4d:9c:c6:
9f:f4:09:73:63:82:8b:3a:f9:3b:bd:69:5e:a4:a4:
2f:df:d5:4a:df:6f:d8:e5:20:9a:61:9e:fb:f7:62:
f0:5d:b9:79:ab:13:25:05:90:b9:9d:10:65:5e:2e:
5e:4e:8b:ce:3e:b9:98:0a:fe:08:4b:4a:1e:fd:6e:
4b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:7A:3E:7D:93:35:F9:62:74:B7:C1:83:F0:AD:74:F7:9C:15:EC:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B21C06A0609C11F0817EB59ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.0.0/24
154.91.224.0/19
Signature Algorithm: sha256WithRSAEncryption
68:c7:58:35:f8:26:e7:bd:c4:38:c1:7c:d3:ca:2c:e5:71:9a:
2c:92:eb:d9:64:a7:68:72:39:71:d7:c7:dd:ae:b1:0d:e5:22:
69:05:95:18:84:c9:bc:f8:7a:0a:3a:6a:75:3c:cb:a9:9e:17:
99:89:f1:32:c2:e8:2d:17:8f:33:8a:a4:4b:ca:9d:9c:55:ed:
e5:ea:f1:d1:1c:ab:7f:75:d5:27:78:65:85:e6:a2:20:a8:a5:
85:3d:35:66:21:75:63:4f:31:0c:27:35:b7:32:df:f1:81:4d:
f3:f4:78:ec:d0:92:a7:b9:f5:cf:ce:8c:df:d8:b3:29:ae:29:
db:17:a6:70:f9:43:28:1e:c3:33:62:ce:b0:4f:21:a8:4e:d0:
cd:3f:96:bd:93:71:30:8f:70:44:d7:1e:66:d6:12:dd:0c:e8:
7d:36:70:a7:12:7b:da:58:35:4b:a9:40:72:76:5f:d3:42:db:
16:b1:6c:95:76:22:74:61:96:7f:48:07:d8:ad:fb:7d:25:3a:
69:b4:cf:54:fb:76:0c:44:c1:57:6a:aa:bd:16:d1:24:e6:0c:
e4:b9:57:db:ef:85:42:2a:29:a2:88:1c:1d:c4:5a:29:2d:bb:
8b:2e:ee:69:c5:51:30:71:57:2c:f7:ea:e9:3d:68:47:ba:48:
ec:1a:18:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:01:16 2025 by rpki-client