Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/115506583ED811F0919F007ADAE4EC9C.roa
File: 115506583ED811F0919F007ADAE4EC9C.roa (raw, json)
Hash identifier: KUrhNC7NMvvRTWR2a81ayeiJLMzALCpJ5z9Bog2cmeo=
Subject key identifier: 6A:F0:77:45:B1:57:A2:C6:58:48:F8:AA:B2:E6:2A:44:F4:49:24:0D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018433
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/115506583ED811F0919F007ADAE4EC9C.roa
Signing time: Sun 01 Jun 2025 11:03:38 +0000
ROA not before: Sun 01 Jun 2025 11:03:33 +0000
ROA not after: Mon 09 Jun 2025 11:03:33 +0000
asID: 57043
IP address blocks: 154.194.63.0/24 maxlen: 24
154.194.66.0/24 maxlen: 24
154.199.6.0/24 maxlen: 24
154.199.38.0/24 maxlen: 24
154.202.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99379 (0x18433)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 1 11:03:33 2025 GMT
Not After : Jun 9 11:03:33 2025 GMT
Subject: CN=683c338a-7d73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:01:78:84:a4:ea:b4:02:d3:b1:28:61:ed:d8:
5f:8d:26:2a:01:84:7c:04:c4:5b:a0:07:ad:f1:7d:
bb:ac:8c:cb:e2:5e:3a:83:5f:a9:aa:80:7b:fa:32:
28:30:95:e5:37:2a:2d:db:e1:0a:3d:02:e6:68:59:
51:4d:11:d1:84:4e:ed:e5:3d:d3:44:87:d1:1b:c5:
7e:7e:cf:e1:95:c6:94:82:dc:a9:5b:87:f5:6a:9c:
29:00:e1:81:98:35:a1:b1:be:fd:34:e3:61:52:be:
83:71:07:31:a0:50:7a:bc:b0:54:b3:6a:63:c1:ae:
43:87:be:d8:a2:13:f7:d4:48:09:79:e0:8d:2c:a4:
3e:4d:ef:62:2c:74:ac:19:30:90:62:9e:69:6b:62:
9a:5c:33:5d:e0:3d:4a:53:56:85:2a:45:62:ba:34:
46:cb:26:dc:b5:b7:ad:8a:dd:73:9d:dd:23:64:22:
e6:0c:85:f0:2f:dc:75:b8:66:20:8b:c7:6e:9e:ce:
bd:e4:e4:d3:09:18:3e:6b:2b:d4:0a:e1:09:dd:a1:
a4:c7:ad:78:4d:6e:24:c7:9b:80:c0:29:61:47:00:
e1:0a:91:27:c1:ee:cb:93:12:ac:26:25:2e:39:08:
f4:44:6d:38:99:f5:1f:cf:57:6a:7d:ca:96:0e:2a:
15:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F0:77:45:B1:57:A2:C6:58:48:F8:AA:B2:E6:2A:44:F4:49:24:0D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/115506583ED811F0919F007ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.63.0/24
154.194.66.0/24
154.199.6.0/24
154.199.38.0/24
154.202.99.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:f6:aa:a4:e4:d2:b3:e3:75:95:01:ce:94:95:12:34:23:df:
b7:c3:04:25:71:2d:eb:99:c6:66:74:13:97:d4:aa:4d:b6:a1:
35:73:0d:fa:b8:79:40:de:7f:fd:ec:e4:01:9a:f1:bc:60:a6:
2e:98:aa:b9:b4:8e:82:cf:71:a1:20:5c:8b:30:b8:7e:f3:5a:
6a:31:02:6c:53:a6:ec:45:a3:22:11:31:c7:e5:89:2a:41:cc:
17:e9:1a:2d:28:ad:84:c6:92:2e:21:c3:24:a8:64:24:35:bd:
3f:8c:06:c7:8a:cd:07:bf:80:fe:78:11:b4:29:46:d6:ed:b7:
2b:f5:99:00:92:87:3d:ef:94:1c:29:9d:32:e1:b8:61:55:82:
14:91:3f:26:bf:67:e1:b1:a8:3f:ff:50:c6:34:e5:0b:68:69:
9c:0d:f1:01:91:c2:df:d7:82:67:d0:b1:c5:85:07:67:87:be:
59:6d:49:73:40:15:13:b8:41:bc:84:5a:1c:eb:cf:13:4f:04:
e3:9b:06:9e:54:5b:70:55:4a:9c:a2:d8:68:64:53:b2:b0:a7:
44:df:7b:96:52:66:99:fa:a2:3d:0e:8e:c5:a8:fd:12:93:c2:
6e:b1:77:47:1c:a8:05:9a:3c:e3:ef:13:8f:38:b7:00:ac:e5:
2b:94:fe:e0
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgIDAYQzMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjAxMTEwMzMzWhcNMjUwNjA5MTEwMzMzWjAYMRYw
FAYDVQQDEw02ODNjMzM4YS03ZDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAswF4hKTqtALTsShh7dhfjSYqAYR8BMRboAet8X27rIzL4l46g1+pqoB7
+jIoMJXlNyot2+EKPQLmaFlRTRHRhE7t5T3TRIfRG8V+fs/hlcaUgtypW4f1apwp
AOGBmDWhsb79NONhUr6DcQcxoFB6vLBUs2pjwa5Dh77YohP31EgJeeCNLKQ+Te9i
LHSsGTCQYp5pa2KaXDNd4D1KU1aFKkViujRGyybctbetit1znd0jZCLmDIXwL9x1
uGYgi8duns695OTTCRg+ayvUCuEJ3aGkx614TW4kx5uAwClhRwDhCpEnwe7LkxKs
JiUuOQj0RG04mfUfz1dqfcqWDioVOwIDAQABo4ICvTCCArkwHQYDVR0OBBYEFGrw
d0WxV6LGWEj4qrLmKkT0SSQNMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xMTU1MDY1ODNFRDgxMUYwOTE5RjAwN0FEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAmsI/AwQAmsJCAwQAmscG
AwQAmscmAwQAmspjMA0GCSqGSIb3DQEBCwUAA4IBAQDS9qqk5NKz43WVAc6UlRI0
I9+3wwQlcS3rmcZmdBOX1KpNtqE1cw36uHlA3n/97OQBmvG8YKYumKq5tI6Cz3Gh
IFyLMLh+81pqMQJsU6bsRaMiETHH5YkqQcwX6RotKK2ExpIuIcMkqGQkNb0/jAbH
is0Hv4D+eBG0KUbW7bcr9ZkAkoc975QcKZ0y4bhhVYIUkT8mv2fhsag//1DGNOUL
aGmcDfEBkcLf14Jn0LHFhQdnh75ZbUlzQBUTuEG8hFoc688TTwTjmwaeVFtwVUqc
othoZFOysKdE33uWUmaZ+qI9Do7FqP0Sk8JusXdHHKgFmjzj7xOPOLcArOUrlP7g
-----END CERTIFICATE-----
Generated at Fri Jun 6 16:48:39 2025 by rpki-client