Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E91798EA59D511F09BBFA6A1DAE4EC9C.roa
File: E91798EA59D511F09BBFA6A1DAE4EC9C.roa (raw, json)
Hash identifier: egXOg5IqDLb+vrSJFj2aTpjZsUomlB9RKomArV7KiYI=
Subject key identifier: 31:16:54:B9:B8:88:82:5E:98:3B:AD:3C:70:E0:9A:CB:C9:39:34:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018B46
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E91798EA59D511F09BBFA6A1DAE4EC9C.roa
Signing time: Sat 05 Jul 2025 19:26:13 +0000
ROA not before: Sat 05 Jul 2025 19:26:08 +0000
ROA not after: Mon 08 Sep 2025 19:26:08 +0000
asID: 214808
IP address blocks: 154.83.88.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101190 (0x18b46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 5 19:26:08 2025 GMT
Not After : Sep 8 19:26:08 2025 GMT
Subject: CN=68697c54-d707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:42:47:4f:af:0f:cf:14:17:a2:58:cb:a6:96:
7f:82:1d:9d:7f:6a:7d:b4:8c:0b:6d:44:3f:08:59:
40:c6:62:92:54:95:b6:f6:09:d4:c3:4e:56:d8:c8:
4a:19:2a:25:6d:f3:da:b2:0a:9c:7e:8d:8b:52:37:
4a:f0:e9:ea:f1:31:37:fa:4d:dc:74:db:a5:d8:cd:
c4:24:c5:6e:18:59:89:03:39:34:ad:2c:ae:d8:53:
08:75:3f:45:95:61:1f:46:ff:62:0f:ac:0a:14:e0:
a7:e1:8a:ab:97:1f:b8:5e:89:1f:cc:53:10:83:3c:
79:fa:0e:84:13:4d:7d:40:11:56:b3:e7:38:df:27:
db:f5:89:82:10:be:61:fd:c5:d0:17:a4:f2:0d:2e:
e8:6b:ed:c1:03:f7:82:98:1b:4d:26:96:02:a1:ee:
83:4a:55:21:ca:5f:f2:13:02:f4:71:4e:a4:be:85:
ef:7f:fd:fd:2e:61:ea:6a:1f:d1:b5:8e:50:7c:e7:
cf:9b:b5:35:5b:2d:7a:5a:c3:aa:57:36:3c:96:8a:
25:a2:91:f5:e8:56:27:a9:36:f4:7a:9a:82:77:89:
30:6d:54:99:27:d9:f3:66:88:fa:af:94:6c:da:df:
27:e6:fa:a2:b7:32:2b:ad:e3:45:d9:e2:72:a5:96:
75:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:16:54:B9:B8:88:82:5E:98:3B:AD:3C:70:E0:9A:CB:C9:39:34:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E91798EA59D511F09BBFA6A1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.88.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:e3:3c:fb:5f:b2:87:40:88:4f:0f:44:1f:09:6b:00:c5:62:
eb:7c:f6:5e:8d:f5:a5:d0:34:84:93:c1:9e:be:43:53:c3:91:
65:66:51:e9:27:f2:f9:f2:0b:23:d4:67:1f:86:c9:3a:0d:ef:
93:a4:e9:b8:8d:02:15:a7:2a:31:d0:30:c5:c0:73:5f:a2:23:
d1:f7:22:53:40:a5:4d:f2:e2:41:c2:ad:f7:0c:4f:be:22:ad:
c6:f7:80:09:20:5b:ce:b0:c6:76:96:e3:71:5d:d5:bb:3b:41:
7e:e1:a0:f6:43:a6:86:67:23:51:c6:c6:d4:16:e8:a6:74:c7:
3b:fd:79:15:f1:4e:8d:04:81:55:6a:2f:db:86:c0:5f:0a:d1:
e0:8a:7c:8e:0e:cf:75:ee:5b:ae:5d:a0:55:ba:5d:b6:dd:4a:
48:1a:ea:2f:6c:e7:1b:86:e3:90:4f:02:cb:6c:a9:d3:52:75:
1f:b9:a3:b6:87:d1:a1:50:d5:cd:04:8a:60:b0:0e:6b:d1:29:
27:f8:69:6d:17:f9:db:92:20:14:51:28:44:cb:16:89:78:8d:
b5:9e:65:80:24:c4:5a:17:24:96:9e:db:59:df:64:d5:e0:09:
84:40:fc:2f:ec:1f:58:9e:70:83:5b:d2:bf:97:7d:bc:00:ac:
c3:0a:68:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:02:39 2025 by rpki-client