Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/442D58E23E1E11F0BC9DFABEDAE4EC9C.roa
File: 442D58E23E1E11F0BC9DFABEDAE4EC9C.roa (raw, json)
Hash identifier: lEgjuk74StgpoOHdoN8KWKOdhs1aVtba7CVAFERQbRQ=
Subject key identifier: 55:52:2B:6D:41:D5:38:7A:0C:72:00:50:55:F7:E8:0D:F6:2F:36:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018404
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/442D58E23E1E11F0BC9DFABEDAE4EC9C.roa
Signing time: Sat 31 May 2025 12:53:37 +0000
ROA not before: Sat 31 May 2025 12:53:32 +0000
ROA not after: Mon 07 Jul 2025 12:53:32 +0000
asID: 200373
IP address blocks: 154.214.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99332 (0x18404)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 31 12:53:32 2025 GMT
Not After : Jul 7 12:53:32 2025 GMT
Subject: CN=683afbd0-8c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:52:cd:3b:5b:74:de:23:65:04:ed:d7:56:2f:
6a:e5:a7:47:0f:2e:fd:49:35:ea:d2:af:62:30:58:
2f:f2:6f:8f:9b:c4:6b:3e:9d:8f:c1:e7:a8:58:7c:
e2:05:1a:64:c5:cb:f4:3a:5e:7b:45:55:75:87:69:
50:28:9f:47:91:bc:5c:99:91:c0:bf:4d:e4:1f:28:
a2:55:5f:7e:a4:39:91:fb:23:3e:1c:65:5a:6f:91:
00:14:0d:f3:ea:2a:e4:67:c7:f4:20:8c:26:b4:a9:
72:47:5c:b7:d7:65:c0:ee:ae:6c:e9:96:d3:c0:c3:
8b:d5:95:cc:ed:ed:fc:6f:10:77:00:dd:69:e3:f8:
3e:eb:32:26:06:12:c9:4c:6c:49:1b:27:23:02:2a:
a8:f7:c8:2d:e9:69:52:73:13:1c:66:12:80:f5:e3:
fb:60:82:c2:a4:3a:c9:4e:a2:83:f8:a9:9e:5a:a7:
75:9e:3d:f2:dd:d8:42:f8:67:bc:b0:f7:49:65:ab:
75:bb:77:80:ba:31:54:1c:8b:05:f7:12:97:8f:74:
e4:03:37:ea:c0:6c:6e:d6:ab:e4:3a:52:84:d1:54:
32:d9:68:70:f9:d7:ef:c1:71:62:dd:14:67:af:92:
27:87:be:b2:57:b5:5f:2e:9f:28:08:5e:c1:b5:b4:
ee:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:52:2B:6D:41:D5:38:7A:0C:72:00:50:55:F7:E8:0D:F6:2F:36:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/442D58E23E1E11F0BC9DFABEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.1.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:2c:df:d4:a6:19:e5:ec:fe:3e:55:84:c0:3b:a3:da:03:c3:
bf:65:44:85:49:31:9a:ef:b2:89:be:f2:8c:f9:f3:11:51:71:
6a:a3:91:87:1b:c1:37:71:c5:c8:06:a0:31:7f:53:0e:ff:8a:
e5:41:9e:38:54:08:7e:9e:7c:85:9e:4b:97:91:8c:e7:e1:77:
f7:74:cb:ba:e9:20:fd:69:d4:74:27:22:36:05:b9:54:69:c4:
61:f9:a7:20:6c:c5:cf:37:b4:1c:d0:be:04:e6:97:11:1b:66:
5e:76:2c:56:b5:a3:da:b9:b2:73:ae:7c:84:11:b1:af:53:70:
e3:ee:de:25:1e:f2:2e:c7:09:ee:7b:fe:6f:ba:08:29:56:7e:
10:6d:4f:08:b3:0c:93:64:e0:f2:63:c9:05:f8:13:fe:3d:55:
9c:fb:77:2d:7f:f3:76:25:6a:d2:39:a6:05:09:97:fe:a8:dc:
9d:29:f5:17:2b:42:0b:13:f2:de:01:20:db:c9:9e:1c:81:8d:
e6:41:72:0e:44:78:58:bd:2c:eb:8b:9f:40:ae:e4:7e:a3:77:
d1:c1:e4:94:10:42:5c:20:09:d2:9d:b4:26:1e:66:5c:fb:62:
18:5f:cb:1f:4e:85:6f:74:93:2a:bb:54:de:35:27:45:5d:e8:
0a:dd:56:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 14:02:18 2025 by rpki-client