Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9AF126663A711F0ACC57F7EDAE4EC9C.roa
File: E9AF126663A711F0ACC57F7EDAE4EC9C.roa (raw, json)
Hash identifier: RZdY4iFuwFG65OBFod9sqtsZWvIRJ3dew86Sfd6lgEs=
Subject key identifier: F4:13:98:C0:E8:75:68:6D:FF:BA:82:D4:A3:6C:8B:E5:BE:CF:25:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018E5A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9AF126663A711F0ACC57F7EDAE4EC9C.roa
Signing time: Fri 18 Jul 2025 07:22:08 +0000
ROA not before: Fri 18 Jul 2025 07:22:03 +0000
ROA not after: Mon 25 Aug 2025 07:22:03 +0000
asID: 272854
IP address blocks: 154.194.13.0/24 maxlen: 24
154.194.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101978 (0x18e5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 18 07:22:03 2025 GMT
Not After : Aug 25 07:22:03 2025 GMT
Subject: CN=6879f620-63b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1c:62:a0:05:cb:c3:ae:c0:66:8b:07:53:8b:
8a:e3:aa:a1:7f:8a:cf:9f:9a:5a:2b:df:3f:1d:0d:
1e:91:ca:ca:f8:19:19:55:35:14:4d:9d:c7:49:21:
8c:4b:f8:65:49:8c:65:56:ea:ce:0d:23:16:6d:77:
a7:df:46:58:fe:b8:de:d8:07:2e:b5:5e:44:bf:b3:
19:6a:43:d4:09:be:dd:14:29:43:f0:21:68:68:2f:
7d:f0:96:58:65:79:28:85:0f:1c:3f:17:4b:73:3a:
33:38:f5:2e:6e:f2:87:c7:ea:e3:57:64:d5:87:8d:
f3:c9:7b:e9:40:c6:e5:cb:37:63:af:e7:6b:50:bc:
d2:9f:eb:a7:f4:ad:b2:c5:df:69:db:3b:e4:42:54:
09:c9:5b:81:38:0d:1c:f7:99:82:bb:2f:4b:62:9d:
3f:10:51:ca:aa:96:6d:d4:dd:f8:64:ca:0e:66:83:
87:4d:5d:be:50:62:25:9d:fb:53:8a:ab:3e:11:af:
94:a2:b2:d8:2f:0a:1c:b9:e8:dd:48:d6:86:56:04:
fa:4a:e3:6c:13:30:64:94:15:04:7d:8b:2c:fe:82:
c3:c5:79:1a:2c:db:be:9f:b0:ea:39:0e:67:97:c3:
08:7a:cb:cb:0f:88:85:b7:dc:63:e9:c3:b2:a1:fe:
48:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:13:98:C0:E8:75:68:6D:FF:BA:82:D4:A3:6C:8B:E5:BE:CF:25:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9AF126663A711F0ACC57F7EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.13.0-154.194.14.255
Signature Algorithm: sha256WithRSAEncryption
25:6d:25:0b:bd:d1:c0:40:06:92:e0:24:e9:8e:b1:80:44:ba:
eb:bc:c4:66:2c:8c:ea:37:9d:78:c6:11:47:34:1e:20:27:8c:
cb:bb:81:45:17:cc:3a:b1:f5:92:f4:69:c7:06:5d:55:c9:60:
14:ca:39:3b:4a:16:d9:ac:0e:08:3e:e7:54:64:3d:69:0b:64:
48:59:6f:af:e2:8e:84:53:06:c7:b6:38:6e:96:61:63:c4:ba:
db:a7:ac:7d:c3:ee:ce:c5:cf:46:13:00:a1:9d:ab:ac:84:70:
34:01:b8:85:c6:c9:ab:b3:b2:d4:df:d3:85:a0:a0:18:ce:9b:
91:7e:73:fd:5f:70:b4:d4:af:6b:85:ab:51:a6:dd:dd:42:59:
fa:c7:29:08:b2:95:d8:9c:4c:1f:3e:dc:df:76:92:c9:12:98:
fe:db:9b:7d:98:9d:1a:b7:5a:39:41:06:24:a2:b2:30:52:ec:
2a:da:99:97:4c:ec:75:d2:85:53:e0:e2:12:08:a5:84:19:a5:
e0:8c:5e:d8:95:41:86:e6:d4:5a:2b:fe:e4:5a:8a:40:16:bf:
5a:c6:27:fe:15:9c:81:a2:e2:a3:a4:86:b0:6e:6e:70:07:23:
8e:6d:73:50:47:d7:e3:cd:c3:99:76:00:04:55:97:aa:e4:88:
e9:c7:cb:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:01:46 2025 by rpki-client