Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FD82A6C24EC11F0B976E37DDAE4EC9C.roa
File: 1FD82A6C24EC11F0B976E37DDAE4EC9C.roa (raw, json)
Hash identifier: qZa4Be6flimMsHvIWBPLHCYcs0zDYsjF+kkVF3i4w9Q=
Subject key identifier: 5B:81:F3:30:7A:0A:3F:BC:20:51:51:77:52:DC:16:90:43:EB:AF:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017CE5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FD82A6C24EC11F0B976E37DDAE4EC9C.roa
Signing time: Tue 29 Apr 2025 11:21:42 +0000
ROA not before: Tue 29 Apr 2025 11:21:37 +0000
ROA not after: Wed 03 Sep 2025 11:21:37 +0000
asID: 136970
IP address blocks: 154.92.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97509 (0x17ce5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 11:21:37 2025 GMT
Not After : Sep 3 11:21:37 2025 GMT
Subject: CN=6810b646-3afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:77:c9:25:f4:af:99:7f:bf:b1:1e:e0:f5:13:
7f:36:2e:9d:1d:8a:b6:f4:6b:51:17:f7:33:55:9d:
e6:14:9e:36:70:64:af:69:b0:2f:2c:80:00:90:a5:
f7:b7:ee:28:52:33:b6:e9:0a:bf:61:69:2c:65:8a:
20:94:e3:97:66:28:1a:8b:ef:79:61:bc:a3:a2:89:
96:19:3d:06:10:d0:6b:2e:0e:7f:57:d7:5b:27:c5:
6e:ff:68:d3:a3:46:c9:c5:6d:f8:b8:5e:ef:2b:1c:
8a:51:0c:ef:5f:a2:f3:3d:a2:6f:1e:6c:14:d0:81:
22:a4:69:32:bc:cc:82:d9:be:b0:07:b9:2d:84:db:
bc:fe:c0:67:a3:01:83:a1:ba:55:84:ae:57:c4:eb:
66:a3:4a:7f:93:70:80:94:e0:52:01:a8:95:16:98:
2c:89:f9:ae:16:3e:3e:fd:57:d3:b6:6b:b1:30:7f:
0a:35:d0:86:d8:c8:d4:84:5e:89:52:f8:39:c2:45:
61:8f:55:9d:78:df:db:50:c9:11:e8:73:c2:9b:d3:
bb:ce:eb:03:e5:b7:77:d7:ef:56:be:9d:4c:e5:0d:
7e:97:9e:21:5a:aa:ee:c2:c5:af:3e:da:91:d1:5f:
97:f0:48:66:54:f9:77:3c:bc:1b:ec:73:f4:22:51:
b8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:81:F3:30:7A:0A:3F:BC:20:51:51:77:52:DC:16:90:43:EB:AF:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FD82A6C24EC11F0B976E37DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.20.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ac:38:a3:43:66:c7:8d:fc:33:96:39:38:e3:07:1d:f9:b5:
0c:33:52:ec:b2:7d:40:9f:50:b0:c4:3b:c2:c0:88:d9:a8:49:
57:ea:7b:bf:5e:40:9c:50:5a:bf:86:4a:e1:01:70:a4:54:77:
10:d4:bb:9c:54:f5:a5:40:4f:2e:3e:9e:b6:21:1c:e1:f7:05:
56:4f:eb:5e:ad:e7:7f:2e:bd:40:06:ed:41:2f:9b:4e:f8:7d:
16:51:0c:fe:77:be:44:52:d0:fb:4a:36:e7:1f:63:a5:bc:38:
b8:b5:2d:69:18:96:39:20:0e:1a:68:07:77:1a:9b:f4:32:6f:
c1:39:0f:4a:a4:5a:34:a7:60:a2:be:6e:ec:43:ff:d6:ae:a4:
c0:25:1b:4b:db:b6:64:bd:f9:e4:2f:a8:5c:af:c5:9d:6c:b1:
c6:9e:38:97:2c:3c:b3:2d:81:b6:9e:08:0c:89:59:53:61:c7:
35:17:c8:9a:99:b5:92:32:b0:9c:98:a3:f0:c0:77:a3:88:7a:
0f:51:8a:cd:cb:14:b3:e3:2e:32:d5:d2:bc:7e:c4:1c:9f:06:
68:0a:ac:22:cc:8d:c3:cf:54:5e:8c:4b:74:7c:3d:21:00:b3:
a4:51:ed:9e:d8:0e:53:4b:06:6d:06:c6:87:87:be:91:59:f3:
ea:dc:93:9a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXzlMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDI5MTEyMTM3WhcNMjUwOTAzMTEyMTM3WjAYMRYw
FAYDVQQDEw02ODEwYjY0Ni0zYWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzXfJJfSvmX+/sR7g9RN/Ni6dHYq29GtRF/czVZ3mFJ42cGSvabAvLIAA
kKX3t+4oUjO26Qq/YWksZYoglOOXZigai+95YbyjoomWGT0GENBrLg5/V9dbJ8Vu
/2jTo0bJxW34uF7vKxyKUQzvX6LzPaJvHmwU0IEipGkyvMyC2b6wB7kthNu8/sBn
owGDobpVhK5XxOtmo0p/k3CAlOBSAaiVFpgsifmuFj4+/VfTtmuxMH8KNdCG2MjU
hF6JUvg5wkVhj1WdeN/bUMkR6HPCm9O7zusD5bd31+9Wvp1M5Q1+l54hWqruwsWv
PtqR0V+X8EhmVPl3PLwb7HP0IlG4XQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFuB
8zB6Cj+8IFFRd1LcFpBD66+UMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRkQ4MkE2QzI0RUMxMUYwQjk3NkUzN0REQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlwUMA0GCSqGSIb3DQEB
CwUAA4IBAQAorDijQ2bHjfwzljk44wcd+bUMM1Lssn1An1CwxDvCwIjZqElX6nu/
XkCcUFq/hkrhAXCkVHcQ1LucVPWlQE8uPp62IRzh9wVWT+tered/Lr1ABu1BL5tO
+H0WUQz+d75EUtD7SjbnH2OlvDi4tS1pGJY5IA4aaAd3Gpv0Mm/BOQ9KpFo0p2Ci
vm7sQ//WrqTAJRtL27ZkvfnkL6hcr8WdbLHGnjiXLDyzLYG2nggMiVlTYcc1F8ia
mbWSMrCcmKPwwHejiHoPUYrNyxSz4y4y1dK8fsQcnwZoCqwizI3Dz1RejEt0fD0h
ALOkUe2e2A5TSwZtBsaHh76RWfPq3JOa
-----END CERTIFICATE-----
Generated at Fri Jun 6 16:43:31 2025 by rpki-client