Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AB349E6F44F11EFAA8602AE762E951A.roa
File: 0AB349E6F44F11EFAA8602AE762E951A.roa (raw, json)
Hash identifier: /YFy3kTMx3lCuSWBRdl7gz1wPJreMiXWkrMx9lZphvc=
Subject key identifier: 6C:2C:E0:56:E3:E9:EE:60:3E:1A:D0:AF:60:08:21:D5:0B:22:13:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016462
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AB349E6F44F11EFAA8602AE762E951A.roa
Signing time: Wed 26 Feb 2025 14:36:19 +0000
ROA not before: Wed 26 Feb 2025 14:36:15 +0000
ROA not after: Thu 19 Feb 2026 14:36:15 +0000
asID: 984
IP address blocks: 154.210.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Apr 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91234 (0x16462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 14:36:15 2025 GMT
Not After : Feb 19 14:36:15 2026 GMT
Subject: CN=67bf26e3-3164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:15:66:26:39:0c:dc:f5:3d:36:2f:e0:f0:92:
51:1d:0b:a7:56:47:6d:59:4f:2d:fc:05:30:a0:6e:
5f:0d:03:f2:a1:19:76:16:7e:d1:f6:4e:5d:ea:56:
ea:b0:14:86:3a:c1:a7:6a:f9:c8:51:e0:7a:6c:1a:
30:8d:32:bd:de:d7:10:40:1c:34:79:65:ba:ef:4a:
f3:95:40:a1:7e:a0:e0:9f:5a:04:35:c7:a3:b2:d2:
e3:f3:28:b6:00:da:34:82:51:2e:fe:18:91:76:1e:
58:61:a1:da:4f:de:44:61:76:b2:80:5e:db:62:17:
10:63:10:3a:13:cb:35:b8:4f:26:44:6e:9e:5a:b9:
b1:4c:2a:3c:c8:ad:65:a7:db:99:21:0d:7e:c2:c6:
a1:2b:60:a4:fe:6d:bb:d0:1a:cf:7a:3c:64:35:cd:
71:df:cb:2e:01:4d:c8:49:97:74:f5:2e:e7:ef:a4:
03:95:76:2d:d9:70:6d:42:cb:91:e3:20:34:d4:4e:
be:19:f5:6c:b4:01:ec:0e:dc:f3:53:b7:c8:b5:d9:
ac:6c:16:d3:ae:f5:39:ee:99:6a:30:8e:dd:33:bb:
b1:50:31:cc:9b:a4:5f:69:c9:3b:46:95:e6:ec:c6:
83:00:72:2a:8d:73:55:8e:77:cf:d3:d1:9c:0a:01:
7a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:2C:E0:56:E3:E9:EE:60:3E:1A:D0:AF:60:08:21:D5:0B:22:13:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0AB349E6F44F11EFAA8602AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.56.0/24
Signature Algorithm: sha256WithRSAEncryption
67:c1:3c:06:1a:fb:cd:3c:f8:7f:dd:3f:01:9f:f6:29:f0:13:
26:60:24:ef:38:c4:3e:ec:7b:1c:dd:51:62:c3:a1:c6:92:05:
3a:a6:46:b4:aa:3f:69:aa:c2:1f:f6:54:50:cb:93:7e:84:da:
ba:20:99:4a:3b:48:f9:38:ae:7a:cf:44:4b:b1:14:79:4d:dc:
c8:23:61:e2:2e:80:57:5a:5c:1c:4d:21:db:6c:a0:03:78:9b:
5c:08:78:c0:44:d1:12:5e:39:62:1d:d6:18:6b:2d:ef:45:d1:
36:7d:75:7e:67:d6:38:dd:c1:3b:fd:89:c2:f0:0c:2d:1c:a2:
59:31:95:b6:a9:6e:4c:f7:e4:53:cc:e8:8a:6c:ee:70:e8:41:
55:0d:a3:5a:7a:f0:d2:2a:d5:ae:91:f5:6e:05:8f:13:d3:e3:
7e:ff:3f:81:4f:e7:9a:88:22:b3:6c:95:4d:c8:26:bd:b3:3b:
e1:ff:7b:6b:45:46:a8:45:9b:d1:7c:8c:46:f9:a8:85:39:63:
8a:4b:c5:43:bd:2d:06:96:5d:33:21:9c:c6:ec:5f:04:be:6f:
85:10:87:18:92:2e:bb:71:8d:1c:49:24:86:06:6a:f9:22:6d:
02:56:bf:cb:5a:b2:d1:49:63:d0:81:3d:36:87:94:93:e1:31:
47:9d:a7:b2
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWRiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI2MTQzNjE1WhcNMjYwMjE5MTQzNjE1WjAYMRYw
FAYDVQQDEw02N2JmMjZlMy0zMTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvhVmJjkM3PU9Ni/g8JJRHQunVkdtWU8t/AUwoG5fDQPyoRl2Fn7R9k5d
6lbqsBSGOsGnavnIUeB6bBowjTK93tcQQBw0eWW670rzlUChfqDgn1oENcejstLj
8yi2ANo0glEu/hiRdh5YYaHaT95EYXaygF7bYhcQYxA6E8s1uE8mRG6eWrmxTCo8
yK1lp9uZIQ1+wsahK2Ck/m270BrPejxkNc1x38suAU3ISZd09S7n76QDlXYt2XBt
QsuR4yA01E6+GfVstAHsDtzzU7fItdmsbBbTrvU57plqMI7dM7uxUDHMm6Rfack7
RpXm7MaDAHIqjXNVjnfP09GcCgF6bwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGws
4Fbj6e5gPhrQr2AIIdULIhO0MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQUIzNDlFNkY0NEYxMUVGQUE4NjAyQUU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtI4MA0GCSqGSIb3DQEB
CwUAA4IBAQBnwTwGGvvNPPh/3T8Bn/Yp8BMmYCTvOMQ+7Hsc3VFiw6HGkgU6pka0
qj9pqsIf9lRQy5N+hNq6IJlKO0j5OK56z0RLsRR5TdzII2HiLoBXWlwcTSHbbKAD
eJtcCHjARNESXjliHdYYay3vRdE2fXV+Z9Y43cE7/YnC8AwtHKJZMZW2qW5M9+RT
zOiKbO5w6EFVDaNaevDSKtWukfVuBY8T0+N+/z+BT+eaiCKzbJVNyCa9szvh/3tr
RUaoRZvRfIxG+aiFOWOKS8VDvS0Gll0zIZzG7F8Evm+FEIcYki67cY0cSSSGBmr5
Im0CVr/LWrLRSWPQgT02h5ST4TFHnaey
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:29:43 2025 by rpki-client