Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/16BEC144438111F099B656C4DAE4EC9C.roa
File: 16BEC144438111F099B656C4DAE4EC9C.roa (raw, json)
Hash identifier: aK+24vgG/3O5kmUk+XjrDqNLq5XHmjhSwKaHeP4OyyY=
Subject key identifier: A2:59:8E:23:E8:90:E4:9D:FF:29:06:4E:DF:A1:70:6B:E7:88:9D:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018548
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/16BEC144438111F099B656C4DAE4EC9C.roa
Signing time: Sat 07 Jun 2025 09:23:36 +0000
ROA not before: Sat 07 Jun 2025 09:23:31 +0000
ROA not after: Wed 09 Jul 2025 09:23:31 +0000
asID: 45194
IP address blocks: 154.84.235.0/24 maxlen: 24
154.84.236.0/24 maxlen: 24
154.84.237.0/24 maxlen: 24
154.84.238.0/24 maxlen: 24
154.84.239.0/24 maxlen: 24
154.84.241.0/24 maxlen: 24
154.84.243.0/24 maxlen: 24
154.84.244.0/24 maxlen: 24
154.84.245.0/24 maxlen: 24
154.84.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 11 Jun 2025 00:06:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99656 (0x18548)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 7 09:23:31 2025 GMT
Not After : Jul 9 09:23:31 2025 GMT
Subject: CN=68440518-7ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ca:6b:a6:14:ae:18:c7:41:57:91:6b:0b:f0:
f5:8a:ac:48:51:4b:2c:89:9b:38:2e:d5:1c:0b:18:
c0:26:dd:c7:57:a9:b8:18:64:7d:f5:6a:90:09:89:
c0:16:8d:25:54:b7:2f:10:ef:c5:cc:ee:33:df:11:
1e:88:60:6a:0e:52:96:0a:c4:b8:9e:0a:9e:ca:67:
13:34:76:c3:2f:be:72:ea:63:c9:bc:2f:41:a3:13:
36:6b:27:8b:e4:cc:06:60:01:ae:96:2d:c1:57:1e:
81:14:8d:9b:10:39:c3:0e:6f:28:89:8b:76:a4:92:
5e:cf:78:09:67:a4:2e:cf:fd:01:b7:e5:b8:b9:b7:
83:29:7b:8e:48:77:3e:7a:fb:dd:1b:a6:6e:9c:95:
50:32:7e:56:26:93:92:74:10:7b:43:03:6e:41:e1:
9c:55:1f:0f:e5:d0:d5:07:92:6c:46:1c:21:da:74:
9b:6a:99:42:f2:23:34:a8:1f:6d:0c:05:88:9d:99:
96:74:5f:72:98:8e:c2:ca:0a:3d:e5:95:aa:90:b9:
84:67:b0:2a:55:cd:7b:4a:36:d3:48:1d:9e:d6:34:
52:d7:d6:5f:a1:ae:48:b6:91:12:d9:32:70:0f:40:
28:02:c0:09:27:09:31:91:71:aa:1f:91:b2:08:3a:
af:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:59:8E:23:E8:90:E4:9D:FF:29:06:4E:DF:A1:70:6B:E7:88:9D:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/16BEC144438111F099B656C4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.235.0-154.84.239.255
154.84.241.0/24
154.84.243.0-154.84.246.255
Signature Algorithm: sha256WithRSAEncryption
43:3a:97:b7:7a:24:f1:fa:5e:9f:b3:4e:f6:ae:be:e8:5a:e6:
aa:ec:81:78:bb:21:7a:7b:27:6b:06:ec:03:7d:5f:f4:6a:cf:
9a:ad:e4:c5:19:37:a9:a1:69:10:8b:0f:78:e5:41:4c:0a:9b:
4b:d4:33:79:9e:ec:33:ef:52:7c:86:70:f9:16:32:b9:e7:16:
66:06:fa:5f:72:fc:59:00:c6:e6:bd:7b:8c:83:8a:5a:c9:01:
a2:3c:5e:8d:f7:1c:38:c4:d5:ba:52:84:34:01:bc:ae:5f:78:
c6:b0:c6:10:b3:ac:66:ad:38:33:01:bf:00:cd:68:fe:5b:a6:
86:d7:a6:1d:74:5e:6c:55:cb:1e:a2:33:bf:28:ed:a6:93:37:
6c:92:a9:ee:e3:59:d2:6d:c9:7f:91:e1:a0:70:1a:ea:06:d6:
4c:bf:23:dc:a5:bb:91:10:dd:ae:c8:34:46:bd:d6:dc:40:27:
07:6b:bc:b4:d7:85:66:08:21:65:d3:70:74:c2:2f:78:fa:36:
4a:d8:87:7c:a3:5f:cd:9f:56:6e:dd:69:37:06:fe:72:8b:6b:
fc:16:4f:8c:e7:53:87:b9:69:3e:0d:89:19:25:2c:67:3a:d6:
4b:83:fd:00:0f:61:e2:f8:ad:ff:74:62:4b:04:b3:01:2b:c3:
f5:4a:b7:6c
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgIDAYVIMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjA3MDkyMzMxWhcNMjUwNzA5MDkyMzMxWjAYMRYw
FAYDVQQDEw02ODQ0MDUxOC03ZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0sprphSuGMdBV5FrC/D1iqxIUUssiZs4LtUcCxjAJt3HV6m4GGR99WqQ
CYnAFo0lVLcvEO/FzO4z3xEeiGBqDlKWCsS4ngqeymcTNHbDL75y6mPJvC9BoxM2
ayeL5MwGYAGuli3BVx6BFI2bEDnDDm8oiYt2pJJez3gJZ6Quz/0Bt+W4ubeDKXuO
SHc+evvdG6ZunJVQMn5WJpOSdBB7QwNuQeGcVR8P5dDVB5JsRhwh2nSbaplC8iM0
qB9tDAWInZmWdF9ymI7Cygo95ZWqkLmEZ7AqVc17SjbTSB2e1jRS19Zfoa5ItpES
2TJwD0AoAsAJJwkxkXGqH5GyCDqvHQIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFKJZ
jiPokOSd/ykGTt+hcGvniJ3JMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xNkJFQzE0NDQzODExMUYwOTlCNjU2QzREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiMAwDBACaVOsDBASaVOADBACa
VPEwDAMEAJpU8wMEAJpU9jANBgkqhkiG9w0BAQsFAAOCAQEAQzqXt3ok8fpen7NO
9q6+6FrmquyBeLshensnawbsA31f9GrPmq3kxRk3qaFpEIsPeOVBTAqbS9QzeZ7s
M+9SfIZw+RYyuecWZgb6X3L8WQDG5r17jIOKWskBojxejfccOMTVulKENAG8rl94
xrDGELOsZq04MwG/AM1o/lumhtemHXRebFXLHqIzvyjtppM3bJKp7uNZ0m3Jf5Hh
oHAa6gbWTL8j3KW7kRDdrsg0Rr3W3EAnB2u8tNeFZgghZdNwdMIvePo2StiHfKNf
zZ9Wbt1pNwb+cotr/BZPjOdTh7lpPg2JGSUsZzrWS4P9AA9h4vit/3RiSwSzASvD
9Uq3bA==
-----END CERTIFICATE-----
Generated at Mon Jun 9 06:05:30 2025 by rpki-client