Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9F29666663C11F084EBFEC6DAE4EC9C.roa
File: E9F29666663C11F084EBFEC6DAE4EC9C.roa (raw, json)
Hash identifier: snBnmAJfsIzd9GlBllIYqR0QojhTEv1UpXhlh0IkGJE=
Subject key identifier: 10:79:E1:1F:E1:8A:51:3C:4C:E1:5E:1C:0C:63:AE:4C:0E:46:B2:AD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018E6D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9F29666663C11F084EBFEC6DAE4EC9C.roa
Signing time: Mon 21 Jul 2025 14:13:46 +0000
ROA not before: Mon 21 Jul 2025 14:13:41 +0000
ROA not after: Fri 12 Sep 2025 14:13:41 +0000
asID: 151610
IP address blocks: 154.194.39.0/24 maxlen: 24
154.194.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 25 Jul 2025 00:09:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101997 (0x18e6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 14:13:41 2025 GMT
Not After : Sep 12 14:13:41 2025 GMT
Subject: CN=687e4b1a-1d41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e9:e7:3b:5b:54:d9:71:b8:e4:29:7c:1b:18:
26:41:81:94:40:f7:bc:c4:b9:36:7c:cf:0d:b2:56:
58:93:f8:f7:1d:3e:74:ec:9a:ed:f3:4c:a5:e1:11:
4c:bf:f7:ea:b3:6f:ae:ad:51:f5:9c:8c:b3:2e:8a:
c5:8f:9f:e4:1b:e7:88:39:7d:94:d6:96:69:25:df:
20:53:2f:a2:65:0b:66:f6:87:b6:f4:f8:5e:88:3b:
fd:25:5e:a8:28:f3:d3:de:e0:98:1c:a1:0e:2f:ad:
e9:0f:6c:09:c4:5f:3a:7a:58:c1:20:db:08:02:9a:
75:ca:5b:fa:7d:58:ad:0b:9d:15:ae:d1:30:69:4e:
b0:d7:23:2b:f6:dd:c5:61:c6:c9:a5:51:14:30:ee:
77:16:a5:a0:65:fc:4c:c6:84:22:5f:25:60:5d:17:
53:3f:1c:4a:96:a3:d1:e5:d0:0b:89:23:cf:7c:ba:
80:6a:e3:d2:95:76:c3:9e:bb:a0:3f:56:2f:90:b5:
0d:ea:78:2e:9b:26:ad:39:ec:5e:b3:fb:61:f6:4c:
80:42:9b:1e:92:44:3f:33:7c:a1:85:81:67:eb:5a:
e7:c2:db:56:b0:87:4c:d5:48:9b:44:9d:33:28:c4:
9b:c9:73:79:8a:60:b2:ce:76:03:a6:24:60:f9:b1:
32:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:79:E1:1F:E1:8A:51:3C:4C:E1:5E:1C:0C:63:AE:4C:0E:46:B2:AD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9F29666663C11F084EBFEC6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.39.0-154.194.40.255
Signature Algorithm: sha256WithRSAEncryption
48:55:9d:04:37:6d:b5:bc:42:84:b3:39:04:07:d4:10:c5:26:
77:ff:46:d1:63:08:2f:dd:41:81:a0:8e:73:1d:c4:4b:6b:79:
d1:c2:53:c0:18:19:b0:47:85:db:0b:ff:c3:63:fe:a5:3b:1d:
05:a3:48:dc:6e:14:63:bc:4d:54:22:37:2c:26:f4:1e:b2:d8:
8a:d5:72:f4:8c:62:0b:fe:e7:4e:0c:cb:f9:20:53:f2:0d:49:
dd:af:0e:11:2e:23:73:52:33:1a:ed:4a:d6:45:00:bd:27:a5:
0d:5f:93:31:4b:73:e3:80:7f:73:51:55:96:28:31:5e:cb:b7:
73:58:d4:5a:ac:21:02:ad:df:39:05:f9:8a:2f:e0:41:53:0f:
75:29:94:04:7c:5f:7f:51:51:5a:98:0c:a5:6e:bf:3e:d1:d7:
67:ff:00:2c:f9:fb:01:5a:28:98:52:50:ac:ab:d8:d3:d4:60:
8c:8e:20:a2:27:dc:69:99:49:c3:85:a0:a1:c4:30:bf:da:9f:
8a:93:b2:1e:ce:5a:df:9c:1f:1f:b3:af:69:e5:1a:94:51:f7:
fe:cd:09:19:3c:be:27:62:ea:b4:a5:87:12:0a:5d:bc:e1:46:
46:59:02:2e:d1:93:2a:32:1d:cd:0d:bb:4d:1b:37:73:69:d3:
e7:05:06:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 12:26:12 2025 by rpki-client