Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36F425143AB511F099710096DAE4EC9C.roa
File: 36F425143AB511F099710096DAE4EC9C.roa (raw, json)
Hash identifier: 9AMt72xE1HQUAXm7TrdvNLgY4m290hz7wESdoeON+zU=
Subject key identifier: A8:B6:CC:0C:84:A3:3A:64:85:CA:21:25:A2:D9:E4:16:E6:5F:56:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0182D6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36F425143AB511F099710096DAE4EC9C.roa
Signing time: Tue 27 May 2025 04:44:04 +0000
ROA not before: Tue 27 May 2025 04:43:58 +0000
ROA not after: Mon 16 Jun 2025 04:43:58 +0000
asID: 57043
IP address blocks: 154.202.75.0/24 maxlen: 24
154.207.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99030 (0x182d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 27 04:43:58 2025 GMT
Not After : Jun 16 04:43:58 2025 GMT
Subject: CN=68354314-d4f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b6:49:4f:7f:95:05:93:be:2b:53:b2:20:ff:
60:7c:ed:24:ea:1d:d2:bd:ec:86:c8:66:d2:22:67:
c7:e4:78:85:0d:e2:3c:84:53:a5:6e:b2:e8:da:2e:
a7:e4:7c:88:d3:c0:3d:d0:ff:43:af:41:d7:2e:76:
d0:2c:d0:b5:07:d5:19:30:8f:99:48:35:8b:66:38:
39:3e:07:dc:de:1c:c7:13:83:d9:b4:11:f7:ce:b9:
70:83:3b:cf:f2:e0:24:b4:48:53:7c:20:fa:be:1f:
0e:a6:29:be:27:2d:b3:df:40:d8:0b:91:f2:f8:6b:
5b:d8:e4:20:dc:04:60:27:da:7f:28:7d:2a:f4:d5:
57:66:e7:c1:3b:21:5a:ee:22:ab:bb:f7:ab:49:c6:
f4:fc:0d:dd:d1:d8:ba:29:6b:c8:d8:bb:48:50:5b:
32:bb:cf:48:29:5d:a7:87:76:fd:f9:08:09:26:2c:
43:f8:26:76:a6:98:01:16:93:e1:9e:20:b3:ab:72:
27:b4:8c:59:c2:95:a9:51:10:8f:3b:77:84:43:2f:
e0:aa:bc:3e:1c:c5:8d:33:b8:48:14:20:4b:ab:86:
ae:2c:36:58:d3:18:f0:55:bf:43:5d:c0:48:9b:e0:
28:02:ee:c9:7e:3f:ca:51:53:38:62:35:4a:1f:84:
d2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B6:CC:0C:84:A3:3A:64:85:CA:21:25:A2:D9:E4:16:E6:5F:56:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36F425143AB511F099710096DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.75.0/24
154.207.173.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:2b:ed:5e:fd:a1:23:77:fa:0c:ac:2a:d3:d1:bc:0b:c2:0c:
26:9e:76:76:a0:32:98:7e:72:39:bc:bb:ff:ff:26:76:64:ed:
22:9b:85:d4:f5:6d:39:54:48:3b:79:b8:9a:2a:17:44:e6:e4:
9f:d5:9c:70:54:e5:d8:22:84:ae:42:a2:21:17:70:a0:c9:03:
11:fc:d0:c5:2c:4f:b0:2f:7a:f0:b3:8d:2c:64:f8:9c:f3:67:
bc:e4:fe:b8:35:1f:30:f5:7a:ba:ba:0f:9a:56:c1:4d:cc:81:
1c:22:4b:0c:dd:76:5a:5f:68:46:f0:08:38:d8:8e:6a:15:ca:
35:c1:7c:b2:c5:18:27:4f:46:38:c1:ee:93:16:34:d1:af:a0:
00:ce:7c:86:9b:05:d4:1f:d9:60:6f:73:13:fc:ae:aa:13:a2:
d6:f2:62:04:82:99:f8:15:23:00:d2:05:b1:67:81:d7:cc:41:
f9:30:fd:f5:e7:9a:8d:1e:80:71:54:3d:70:c4:0f:c8:e7:f7:
d3:ed:16:cc:f9:82:dd:33:b8:58:ee:39:c6:9b:e7:cc:2b:fe:
ee:c8:d2:ec:42:79:29:08:ba:5d:f5:44:30:9d:1f:9b:dd:0c:
b3:2f:30:a8:5c:38:f0:12:41:15:db:6e:3a:75:b0:73:94:3c:
1d:d8:9f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:44:39 2025 by rpki-client