Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54A73E383F9311F0BB485DBBDAE4EC9C.roa
File: 54A73E383F9311F0BB485DBBDAE4EC9C.roa (raw, json)
Hash identifier: eB2zU9p/qEtqvnMGD3VFYT946dN+/ztKDJdjyWJ10m8=
Subject key identifier: B3:47:35:0C:3B:32:86:69:EA:57:F5:AA:ED:4F:FD:EF:EC:72:D6:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018450
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54A73E383F9311F0BB485DBBDAE4EC9C.roa
Signing time: Mon 02 Jun 2025 09:24:06 +0000
ROA not before: Mon 02 Jun 2025 09:24:02 +0000
ROA not after: Thu 03 Jul 2025 09:24:02 +0000
asID: 147176
IP address blocks: 154.215.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99408 (0x18450)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 2 09:24:02 2025 GMT
Not After : Jul 3 09:24:02 2025 GMT
Subject: CN=683d6db6-f6d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c5:67:b2:f6:94:b8:af:71:25:e8:8f:b2:53:
2f:07:5c:75:e6:7f:39:4f:50:5f:fe:68:c7:62:b3:
fc:6e:86:0c:5c:b5:24:ec:b8:cf:56:e8:84:53:80:
1f:24:1c:6e:8d:47:6d:ee:90:41:71:d5:8b:35:98:
97:0e:e7:78:ab:40:0d:c7:92:35:7f:4d:3c:4e:bb:
ce:cd:69:93:b4:07:ef:04:f7:a3:db:fb:e7:e7:e8:
cf:35:ea:17:c3:0d:c4:78:73:28:9a:d7:b2:38:47:
98:bc:b9:d5:55:e4:4c:6e:16:44:5f:87:f5:f2:27:
48:64:52:7b:1d:8c:a8:62:62:c4:00:01:6f:07:e1:
f4:80:97:f1:a7:0a:e3:fe:9b:c3:76:ad:ac:ca:55:
a9:b3:90:06:b8:94:bc:33:58:60:d4:35:51:3d:01:
20:14:ad:10:69:45:7f:a0:16:4c:02:d8:4b:7f:ca:
85:c7:72:53:11:ee:1f:c9:ee:88:48:fa:99:05:13:
f7:0e:f6:54:9b:a9:ff:ef:a4:1b:b8:2b:bc:ce:bf:
89:67:cc:4b:a6:6a:0f:bc:71:14:db:48:2d:82:67:
38:19:1a:f2:9a:7b:e7:dd:1c:91:e7:d1:93:7a:18:
fe:ac:90:3e:dd:fb:37:ed:d4:1e:82:db:0e:20:35:
ec:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:47:35:0C:3B:32:86:69:EA:57:F5:AA:ED:4F:FD:EF:EC:72:D6:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54A73E383F9311F0BB485DBBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.14.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:58:a2:3b:c8:ca:03:50:47:13:c1:64:39:a2:77:81:26:e6:
86:8e:a4:d2:00:df:52:11:a9:70:46:35:2f:a7:7a:7d:84:1e:
05:f5:21:f4:9e:5a:e6:2c:7f:af:ed:5d:97:e2:9a:c1:1f:e4:
76:d9:a6:f4:3b:ab:da:57:dd:16:f7:74:ab:43:0b:8e:37:2f:
b3:d1:40:e1:85:1b:43:cc:67:1d:54:ba:4b:77:b5:c4:18:d6:
54:2f:1d:29:75:73:76:2c:59:fa:e4:8f:8b:7c:e0:9f:53:ae:
e6:6f:bc:16:d5:22:ac:f5:31:82:ac:c3:8c:a4:9d:06:cc:aa:
af:46:2e:33:28:1c:5a:4d:e6:1f:80:a9:70:40:86:18:51:e5:
1a:74:d4:7c:f2:76:69:71:53:c9:85:aa:79:e5:9c:df:e3:c0:
8e:51:4f:f2:c8:fb:cd:eb:cf:a4:e1:a7:93:44:06:19:74:85:
0a:6a:5b:c7:da:20:ed:9e:0c:9d:1f:99:e3:ac:0b:f3:51:27:
1a:b1:dd:91:f6:79:e0:1e:14:d9:8f:88:39:5e:3c:a5:04:b0:
3c:ad:4e:0e:a8:a7:71:da:1e:d9:d8:47:21:2d:a2:14:06:67:
f7:ba:99:08:5c:0e:7b:3b:ea:d6:b4:23:a6:28:5c:09:21:d3:
10:2b:03:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:54:27 2025 by rpki-client