Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4ED8E885D7311F09AC3CEBADAE4EC9C.roa
File: C4ED8E885D7311F09AC3CEBADAE4EC9C.roa (raw, json)
Hash identifier: lVV6XAVc4Nv/R8bADLJYAQaPRJ5yG01+aEEHf5kU4JU=
Subject key identifier: D6:21:DB:36:3C:3B:AF:5E:5A:96:AD:39:50:C2:82:76:ED:84:0C:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018D38
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4ED8E885D7311F09AC3CEBADAE4EC9C.roa
Signing time: Thu 10 Jul 2025 09:53:46 +0000
ROA not before: Thu 10 Jul 2025 09:53:41 +0000
ROA not after: Sun 09 Aug 2026 09:53:41 +0000
asID: 984
IP address blocks: 154.83.157.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101688 (0x18d38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 10 09:53:41 2025 GMT
Not After : Aug 9 09:53:41 2026 GMT
Subject: CN=686f8daa-64d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:07:70:2c:62:13:c1:aa:4d:6f:ea:b5:24:eb:
90:0d:f0:7a:bb:14:68:df:f8:72:fc:42:7c:2d:a2:
49:6a:7b:e5:0a:9a:d8:05:c2:bf:6c:08:2a:b6:5b:
32:6b:00:af:31:24:0a:6d:f4:5e:8c:2a:fd:e7:1e:
6a:2a:4c:37:91:49:58:0f:be:56:b5:ef:7c:d9:32:
1e:20:43:dd:e6:d5:90:29:19:52:0e:f1:b1:01:fc:
76:af:73:90:91:2a:c2:0f:47:7c:5f:53:6d:86:f1:
45:11:4e:4c:77:fa:09:09:a3:c9:30:18:de:07:ce:
6f:15:3e:73:27:32:ea:8a:b3:3c:53:c8:6c:78:f3:
87:83:ff:80:ac:79:cd:14:5e:db:57:0e:09:ed:fb:
5a:7e:11:70:0e:6b:03:ca:98:48:88:86:d5:e5:98:
78:2d:ae:e2:99:ba:e4:85:f6:a0:22:d6:a0:9c:75:
3f:09:06:93:4c:12:27:cd:1e:8a:5e:a5:c1:dd:bf:
e3:c9:2b:7a:17:0a:20:15:0c:15:31:c0:e1:39:46:
2b:0d:5d:4a:b1:fa:26:23:74:09:7d:84:4e:22:51:
81:56:d0:54:2b:9a:87:4c:b2:fb:ef:58:fc:cc:2a:
b9:47:ef:bc:ff:3e:9a:c8:02:02:bf:4a:1a:c3:d2:
4a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:21:DB:36:3C:3B:AF:5E:5A:96:AD:39:50:C2:82:76:ED:84:0C:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4ED8E885D7311F09AC3CEBADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.157.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:f4:5a:2d:2c:91:e4:75:a9:83:0f:49:c8:99:60:c6:71:0a:
7c:43:d5:d5:c5:f8:84:47:d8:c2:62:1f:72:a7:71:70:1c:92:
90:40:28:3a:f7:4b:01:67:c4:ca:9d:2f:48:df:92:ee:ed:51:
0d:54:02:37:46:4b:63:c3:f2:1f:51:e9:d0:d4:c6:8a:bc:53:
e1:ea:91:8c:fa:69:9a:94:79:87:3e:e1:ec:f4:67:56:db:c5:
ea:c6:dd:b6:7a:7e:ce:7c:1e:36:89:9e:2a:21:f3:f0:6d:89:
08:ee:0b:31:a7:6e:7b:d3:b0:76:53:8b:0f:31:43:65:5a:54:
b1:6d:df:d7:f2:18:09:73:92:48:a4:28:32:ea:61:3f:b4:23:
54:45:38:5e:43:a8:57:3b:ba:65:0b:10:98:12:be:38:77:c6:
c6:54:a9:60:45:44:81:4c:be:27:9a:85:6e:e4:9f:65:47:80:
b8:25:f6:38:e9:cc:4c:ce:f9:55:41:78:79:60:3b:a9:bc:50:
81:46:47:b6:8e:e6:7f:2e:2d:61:b1:3f:b4:14:15:06:f6:e8:
3c:4c:c5:62:af:dd:97:16:06:68:0c:2a:f8:4c:db:dd:5b:12:
b2:54:04:32:f1:0c:3e:58:42:b2:03:cc:82:9a:1e:92:1c:0d:
23:f6:99:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:04:05 2025 by rpki-client