Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3548B00E3D6C11F08750D5B6DAE4EC9C.roa
File: 3548B00E3D6C11F08750D5B6DAE4EC9C.roa (raw, json)
Hash identifier: MGW/ukSW32JhcxiaV/SD7Uvig4r+nHM3et/lEErWjnk=
Subject key identifier: 8A:B5:FB:DB:58:A3:91:B0:20:5A:9A:65:8B:BD:3B:9F:2C:29:D7:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0183F9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3548B00E3D6C11F08750D5B6DAE4EC9C.roa
Signing time: Fri 30 May 2025 15:39:01 +0000
ROA not before: Fri 30 May 2025 15:38:56 +0000
ROA not after: Mon 09 Jun 2025 15:38:56 +0000
asID: 139923
IP address blocks: 154.91.48.0/20 maxlen: 24
154.91.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99321 (0x183f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 15:38:56 2025 GMT
Not After : Jun 9 15:38:56 2025 GMT
Subject: CN=6839d115-7f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a3:4a:d8:c4:b1:19:33:1d:59:6e:21:ff:ff:
88:9d:55:c6:aa:c9:88:e7:9c:49:b9:c8:2b:7f:f1:
e1:0c:f9:86:9c:e1:7f:da:7f:00:70:0a:d3:3c:b9:
de:66:51:a0:1f:8d:e9:f8:c4:bf:dd:ca:8f:b1:de:
24:2b:e1:cc:f0:b6:89:73:f3:ad:50:be:85:3a:fd:
92:95:72:04:d5:a9:3c:d0:80:0d:21:ee:98:05:49:
1c:f4:b2:b5:ae:cc:d9:51:f4:71:07:bf:a4:63:c8:
69:58:cc:cc:c6:19:25:2d:71:28:bb:31:90:80:b5:
30:6f:45:f7:a0:4a:18:60:e4:65:45:15:f3:4a:a4:
e4:91:06:cd:fb:c0:84:49:f7:a2:c2:67:45:9a:55:
d2:a9:c7:7b:9c:42:1e:ba:96:48:27:fb:5e:c4:f9:
ff:e0:73:a5:35:66:f7:7b:91:ad:d4:a9:91:44:b8:
ae:c2:08:29:9a:b7:c1:6c:12:92:64:0c:25:12:7e:
ef:49:ed:af:72:d1:2d:a8:25:ec:55:c3:84:d8:a1:
e7:b3:81:21:e9:81:85:1a:79:05:4f:3b:2f:6f:20:
f9:81:da:c7:68:f1:c9:71:3b:c0:6a:21:d7:82:f6:
36:e6:5c:75:91:a0:76:97:3b:f2:b7:e0:6e:68:93:
bf:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B5:FB:DB:58:A3:91:B0:20:5A:9A:65:8B:BD:3B:9F:2C:29:D7:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3548B00E3D6C11F08750D5B6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.48.0/20
154.91.176.0/20
Signature Algorithm: sha256WithRSAEncryption
a0:01:46:fd:91:cf:64:63:e0:9d:98:c1:6b:27:f3:b7:c2:d7:
ef:b3:84:a7:43:3e:38:20:9f:89:20:70:69:15:de:23:0c:8d:
ea:da:73:81:1e:e6:a8:f7:5f:14:31:4f:fc:cc:c1:01:db:dd:
46:e4:cd:39:b9:31:6b:12:8c:90:9f:4a:2b:7f:9d:98:19:e7:
43:45:da:84:61:4c:15:a0:40:2d:aa:ca:90:2d:7d:cc:fe:80:
ff:72:ec:52:37:d4:df:3e:f7:27:fd:a1:15:cb:e3:f2:03:0e:
fc:f1:ff:af:e2:0b:12:8a:10:59:69:05:ad:f4:04:16:b9:9f:
f5:0a:72:18:97:d1:58:8e:f5:0c:8c:a7:58:58:6b:a7:1e:80:
88:1d:ef:2c:be:5d:a8:70:d6:2b:65:61:66:f3:7f:21:16:3a:
14:69:dd:e2:c8:8d:02:c9:c2:17:b9:27:34:61:6f:41:34:db:
16:b3:9d:5f:18:96:0c:86:24:0d:1f:41:df:f5:28:79:3e:6e:
07:45:87:36:cc:79:60:f1:57:ca:83:cf:11:68:0a:cd:91:47:
ed:02:0c:e4:b8:13:ed:2c:72:19:21:26:df:73:a7:19:5a:06:
5a:2a:9f:b4:fc:3f:57:0c:00:05:de:4f:5f:55:a6:c1:36:ad:
f3:9e:37:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 14:14:24 2025 by rpki-client