Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F7AFBB2382111F0B620FBBDDAE4EC9C.roa
File: 4F7AFBB2382111F0B620FBBDDAE4EC9C.roa (raw, json)
Hash identifier: t10FZxpzkvcTfwdERAE1lIeq7wRIGjgiqIZFBxMQn3c=
Subject key identifier: 36:E7:84:FC:02:78:48:44:48:18:5D:66:62:46:5C:6E:44:05:63:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018271
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F7AFBB2382111F0B620FBBDDAE4EC9C.roa
Signing time: Fri 23 May 2025 22:00:17 +0000
ROA not before: Fri 23 May 2025 22:00:12 +0000
ROA not after: Fri 24 Oct 2025 22:00:12 +0000
asID: 135097
IP address blocks: 154.212.168.0/21 maxlen: 24
154.212.176.0/20 maxlen: 24
154.212.192.0/18 maxlen: 24
154.213.80.0/20 maxlen: 24
154.216.4.0/22 maxlen: 24
154.216.8.0/21 maxlen: 24
154.220.4.0/22 maxlen: 24
154.220.8.0/21 maxlen: 24
154.220.16.0/20 maxlen: 24
154.220.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 07:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98929 (0x18271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 22:00:12 2025 GMT
Not After : Oct 24 22:00:12 2025 GMT
Subject: CN=6830eff1-39e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:79:4e:b1:76:d2:f0:5a:4d:80:7b:df:84:ab:
f6:4e:53:99:39:b5:65:69:0d:28:f5:58:e2:da:61:
c4:52:2d:dc:3e:81:19:fc:b2:ad:72:0c:65:a4:78:
0a:50:00:bd:bf:05:7f:96:a0:dd:a5:4f:3d:28:74:
57:5d:57:7e:46:19:6e:9a:70:29:a7:f7:a9:91:c7:
f7:40:69:20:39:41:46:eb:87:a1:8b:7a:87:27:2b:
3a:12:39:b6:a6:7a:5a:82:71:36:19:47:e5:88:63:
d6:31:91:78:85:03:b1:2f:04:f6:42:0d:cc:4d:17:
f8:93:72:a5:ed:c7:fe:34:d8:0d:71:b1:40:12:86:
e0:0d:50:a3:e8:f3:55:5b:2c:7e:2a:8a:f7:bc:f0:
04:24:3a:75:a1:c8:03:ce:b9:d0:56:22:49:79:7e:
23:20:3b:14:15:28:a1:e5:af:83:d5:61:3e:2c:4a:
02:46:1d:df:e4:ef:f7:01:ed:c5:46:69:b3:f9:56:
66:07:21:79:7c:88:10:59:32:00:59:2f:b2:ef:59:
f9:6c:1d:27:bb:50:aa:1f:e6:63:12:64:6c:0b:6f:
db:79:24:6c:7e:ef:9d:d6:30:38:33:8f:b7:e3:34:
b4:99:bf:45:0b:12:dc:8b:fd:88:dc:c4:a2:08:e8:
58:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:E7:84:FC:02:78:48:44:48:18:5D:66:62:46:5C:6E:44:05:63:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4F7AFBB2382111F0B620FBBDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.168.0-154.212.255.255
154.213.80.0/20
154.216.4.0-154.216.15.255
154.220.4.0-154.220.31.255
154.220.64.0/18
Signature Algorithm: sha256WithRSAEncryption
0d:73:b5:cd:ba:52:c6:20:00:81:c2:b6:20:26:7d:92:df:c0:
2a:5a:d9:83:55:89:e2:a9:71:31:49:a1:07:71:62:dc:b7:a2:
4a:17:77:76:b6:69:06:f1:48:6b:10:e7:72:8e:69:2c:67:02:
58:38:34:87:db:51:42:56:b8:fb:47:46:1c:66:bb:af:65:c6:
56:9d:65:3d:15:0b:4f:75:3a:55:12:07:c0:10:2c:5f:8a:4c:
82:9e:87:d5:52:4c:ea:94:ed:6b:2f:bc:c0:1a:20:bf:5e:ce:
ee:bd:6f:8d:6b:92:59:bd:c2:9c:d0:fe:36:7a:46:ff:fa:68:
83:f6:d4:d4:cc:85:8a:ff:65:27:2a:9e:eb:ce:13:1a:d5:3e:
c5:3e:5a:78:fb:00:5d:fb:f6:3f:e8:15:e5:9d:4e:ad:69:1e:
67:0d:15:a5:47:57:dc:b7:4c:2e:07:b1:b2:10:01:8c:ab:3e:
f1:c3:62:9f:42:f7:07:71:ed:29:f8:48:2e:8b:08:7a:2e:ea:
d5:c0:41:5c:20:54:6f:aa:a0:33:11:1c:51:fd:cb:5b:14:3a:
17:1e:a2:ac:02:0f:ba:48:43:30:e5:32:c7:a3:d0:8a:fe:81:
47:9e:7b:c1:dc:6c:c0:f4:70:02:fa:8b:10:a2:e8:b1:5e:68:
36:6a:b1:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:25:24 2025 by rpki-client