Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/503D6EB03D5611F0AD95CBABDAE4EC9C.roa
File: 503D6EB03D5611F0AD95CBABDAE4EC9C.roa (raw, json)
Hash identifier: NAAhZr8+qGIiylRVriztiQRK4ZksC2gO+vOrYtSwV84=
Subject key identifier: BA:41:58:7C:E8:70:28:21:12:6C:9A:FA:97:C8:74:63:40:45:B3:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0183DB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/503D6EB03D5611F0AD95CBABDAE4EC9C.roa
Signing time: Fri 30 May 2025 13:02:17 +0000
ROA not before: Fri 30 May 2025 13:02:13 +0000
ROA not after: Sat 05 Jul 2025 13:02:13 +0000
asID: 151419
IP address blocks: 154.88.66.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99291 (0x183db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 13:02:13 2025 GMT
Not After : Jul 5 13:02:13 2025 GMT
Subject: CN=6839ac59-08ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:97:79:13:e4:ae:85:1b:96:7e:56:2c:b5:92:
23:76:13:e8:cb:97:50:3d:02:65:25:4f:2a:14:6a:
28:2c:1a:a9:ff:7e:31:01:e0:48:f5:b9:d0:6c:5c:
dd:63:de:77:24:e6:64:28:ef:71:c6:7e:85:fd:c7:
1d:a3:6e:a2:d2:a6:5d:0c:e4:29:6a:8f:64:af:a3:
6b:59:a3:1e:eb:25:be:9b:77:a0:b8:cc:8e:89:fa:
a1:55:0b:5c:5f:cf:06:e9:0e:d8:91:7a:62:42:91:
45:82:52:23:c5:c7:7f:a0:7a:fe:9e:4b:7b:3f:63:
8a:8c:92:56:8d:f0:bf:f2:8a:c4:7a:bc:58:3d:3f:
f3:3f:7e:65:b4:b2:bc:34:02:1a:7c:80:4c:82:2a:
79:e6:fd:fb:5b:da:54:dd:6f:a6:ce:f6:3e:26:f7:
33:c7:bd:0c:0c:b9:6c:09:e5:52:5f:6d:c0:1d:80:
ad:5d:e2:d4:f8:54:5c:85:e4:b1:1a:56:2b:2b:16:
54:ab:f4:63:d7:20:66:6a:16:69:2b:c9:50:4c:2c:
8d:e9:c7:1e:e2:83:33:df:f7:06:6b:90:fe:72:63:
69:a6:39:d8:c9:1c:db:5b:04:6d:f4:24:be:0c:5c:
24:46:88:c8:14:a2:61:49:99:b9:05:f3:b1:57:f7:
be:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:41:58:7C:E8:70:28:21:12:6C:9A:FA:97:C8:74:63:40:45:B3:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/503D6EB03D5611F0AD95CBABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.66.0/23
Signature Algorithm: sha256WithRSAEncryption
25:bd:e7:d6:85:eb:4c:8f:58:44:3d:0d:c1:4f:84:10:c3:da:
b1:25:6b:33:be:42:3a:70:9a:7e:6e:e5:6a:7c:db:bd:82:a2:
61:2b:14:49:bb:f4:5e:29:47:0a:43:eb:95:1b:84:e3:df:70:
46:07:18:0d:71:35:6a:61:57:09:ff:d1:fd:d3:5a:3d:c8:bf:
f8:ce:ae:96:84:8e:99:da:b2:ee:69:67:54:6c:79:b0:3f:db:
11:e5:a1:46:28:fd:df:92:93:bd:38:ac:49:c1:46:ef:5f:f7:
72:76:30:ef:11:58:e9:e1:cf:02:0e:f5:53:0f:d6:45:6e:97:
7d:8c:e8:25:9d:65:d8:1c:81:e5:c1:f1:fd:74:6d:5c:89:1d:
6b:b6:70:56:21:4e:c9:aa:ad:25:b1:50:79:98:d0:87:8b:62:
35:14:13:94:df:f5:df:ee:da:39:ec:e2:bc:5a:29:51:0e:7d:
c0:14:b5:d6:3d:4b:2c:50:06:34:6d:dc:f9:d8:71:92:43:79:
bb:06:39:a7:6a:0b:dc:87:1a:9d:ba:fe:0b:f1:0a:1f:9e:2d:
22:7e:ad:08:08:ba:4f:18:62:31:13:50:0b:df:7c:c4:8e:0e:
d8:06:4c:e5:ef:97:68:81:97:0e:c1:6c:60:6b:1c:39:5a:17:
3e:68:22:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:28:48 2025 by rpki-client