Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34BEF04E7B6511F0AFCDE6A3DAE4EC9C.roa
File: 34BEF04E7B6511F0AFCDE6A3DAE4EC9C.roa (raw, json)
Hash identifier: L1uxaq2rONq4lC1ZZqFvzHYeXnH1a9TVYNqJ3arxbXw=
Subject key identifier: B1:46:E7:F4:D2:5A:9C:DE:32:CE:A0:D0:2B:F8:27:6B:0B:9B:1D:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0191FE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34BEF04E7B6511F0AFCDE6A3DAE4EC9C.roa
Signing time: Sun 17 Aug 2025 12:25:06 +0000
ROA not before: Sun 17 Aug 2025 12:25:01 +0000
ROA not after: Sun 28 Sep 2025 12:25:01 +0000
asID: 211826
IP address blocks: 154.194.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 22 Aug 2025 06:03:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102910 (0x191fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 17 12:25:01 2025 GMT
Not After : Sep 28 12:25:01 2025 GMT
Subject: CN=68a1ca22-a690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a9:23:a3:34:9c:42:4f:c0:aa:14:95:a6:2a:
b4:c8:10:31:c3:3e:b6:89:70:21:34:d9:ff:80:d8:
0a:4b:cf:ae:38:cf:a9:4d:89:4c:ed:7b:f1:37:a8:
6e:e9:2a:5b:3b:d3:a9:48:cd:66:be:f0:06:74:93:
b1:cd:4a:61:dd:c8:a7:45:b2:00:ab:a8:aa:90:57:
e5:cc:be:67:1d:38:5f:b3:fa:b5:12:2e:7d:dc:8d:
c8:64:f9:91:98:a6:3a:7c:7b:e9:46:2f:06:55:fc:
46:a8:b8:02:d7:e5:04:fa:ed:27:49:31:18:69:4c:
55:fd:3b:17:56:25:22:aa:01:3a:c2:80:1d:1e:33:
a2:00:b8:93:1d:d6:24:89:03:07:88:43:64:74:b1:
5d:12:f5:82:b0:0a:00:4e:40:7e:e2:17:af:f8:23:
61:f6:e6:70:ab:29:94:9a:a4:aa:eb:21:ed:57:fc:
a8:86:c1:0e:82:51:39:6e:66:fa:e1:99:22:00:a6:
cf:a2:2a:43:fc:9e:18:cd:3c:57:b5:79:01:03:93:
dc:39:fb:c6:e2:cb:9d:7d:ed:9f:b2:df:d5:01:b1:
a5:45:d7:ec:ec:c4:64:1c:3e:c9:e3:fe:17:79:b3:
32:2f:a1:39:1b:85:49:46:7d:0f:5c:5d:cd:f2:20:
1a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:46:E7:F4:D2:5A:9C:DE:32:CE:A0:D0:2B:F8:27:6B:0B:9B:1D:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/34BEF04E7B6511F0AFCDE6A3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.55.0/24
Signature Algorithm: sha256WithRSAEncryption
19:89:68:ae:d3:a4:5e:4b:97:f2:0a:fb:f2:ae:0a:58:80:36:
65:20:dc:7d:b0:84:55:c9:d5:b2:6d:ec:6c:3c:f4:07:99:bc:
25:ca:ed:68:48:7c:70:93:aa:7c:fa:46:a5:0c:95:dd:e0:2b:
b5:0c:3d:d1:7a:99:28:18:03:eb:1f:9e:5a:4d:41:d9:95:6c:
24:1e:39:98:2e:6e:e0:13:65:0f:f0:f9:a9:ed:0c:5a:cf:0b:
dc:0b:96:59:1c:1d:94:39:74:f8:7e:e7:79:93:82:4d:54:c5:
a3:63:39:da:a2:8d:9d:60:bc:14:d7:e1:a5:11:33:10:f1:7f:
08:00:ca:32:7e:65:46:82:c7:e6:2e:ed:44:cf:dd:c5:95:a6:
d3:7a:8b:f2:13:b9:97:e4:e4:fb:e5:8e:1f:54:eb:94:ad:f5:
ad:55:0a:87:a4:e0:c9:e8:d3:27:f0:b8:23:46:b7:30:53:83:
09:ef:f5:14:27:77:e7:8a:1d:15:6e:8b:fd:bb:5a:a4:b2:f2:
10:75:b1:0e:e7:19:0c:88:a3:72:98:42:49:5e:12:31:e5:5f:
aa:fc:b3:5d:aa:61:24:de:24:f3:ae:32:ff:6e:bd:97:33:c8:
ac:a5:4a:3f:f0:25:f5:ca:76:81:51:dd:b4:df:98:9b:8a:b3:
37:87:47:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 01:47:37 2025 by rpki-client