Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59B27376393911F094A2E1ECDAE4EC9C.roa
File: 59B27376393911F094A2E1ECDAE4EC9C.roa (raw, json)
Hash identifier: hujLN8pBSgIOmisV20RRKyW7h+1sZ/AgeUBajOwywRM=
Subject key identifier: 6B:32:1D:C3:3D:D6:93:D6:01:24:D8:B3:01:66:A6:6D:74:71:71:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0182AE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59B27376393911F094A2E1ECDAE4EC9C.roa
Signing time: Sun 25 May 2025 07:24:53 +0000
ROA not before: Sun 25 May 2025 07:24:49 +0000
ROA not after: Sun 29 Jun 2025 07:24:49 +0000
asID: 214143
IP address blocks: 154.83.40.0/23 maxlen: 24
154.83.42.0/23 maxlen: 24
154.83.72.0/23 maxlen: 24
154.93.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 07:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98990 (0x182ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 25 07:24:49 2025 GMT
Not After : Jun 29 07:24:49 2025 GMT
Subject: CN=6832c5c5-a83e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:86:6d:87:f0:7d:29:a9:56:c9:2e:f3:fa:bd:
32:c5:95:9a:a8:d1:dc:c8:40:51:7d:f9:34:86:49:
5d:bb:8f:16:0e:2e:4a:35:b5:c7:25:8e:a7:9d:ab:
f1:d3:3e:54:1e:f4:54:95:86:c2:12:11:7a:e1:ea:
77:a4:8d:0e:32:03:ef:93:6b:13:96:e0:3d:d7:5b:
e4:32:40:cf:2d:6d:45:b4:b6:b9:cb:84:e8:01:3d:
b6:d8:7f:7d:91:06:09:04:23:b1:5a:db:0d:be:9c:
65:ef:82:40:1c:3e:ce:3e:4d:b0:be:39:f3:44:4a:
e5:79:9d:c4:cf:04:50:46:e2:08:01:c8:4d:6f:5c:
0c:da:42:e5:69:81:b1:a4:3a:9a:60:72:55:46:d0:
17:b0:48:37:fc:c2:03:81:fd:fb:7d:6a:b9:be:a6:
35:0f:96:88:d0:22:dd:bb:18:d6:24:64:32:6d:dc:
6b:a4:1e:1b:42:46:e1:1f:74:bd:4e:28:17:c8:a0:
31:35:3d:c7:0e:69:12:73:d0:50:07:c1:9d:fb:11:
6e:86:0d:93:5d:02:d5:be:98:70:f0:d6:45:22:f4:
88:15:6b:12:4e:c6:ac:f4:8b:a3:b5:59:0a:04:e7:
d8:03:b5:0a:dd:1b:25:a9:fb:78:99:a7:cc:40:ac:
dc:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:32:1D:C3:3D:D6:93:D6:01:24:D8:B3:01:66:A6:6D:74:71:71:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/59B27376393911F094A2E1ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.40.0/22
154.83.72.0/23
154.93.28.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:b8:58:85:29:8d:55:84:b9:97:2c:22:37:b4:62:2a:9c:12:
ea:72:72:3a:f5:2e:38:dd:6f:1a:0e:5c:6e:cd:89:fd:92:bb:
5e:db:3c:b9:da:bf:1e:14:ee:b4:b6:df:e0:79:dd:9b:b2:0b:
86:f9:9d:7e:8f:10:f2:6b:f2:cb:98:df:c4:32:0a:cd:f0:21:
ac:f5:cc:18:e8:84:04:7a:58:dc:30:a8:41:dd:e5:6d:20:74:
e2:b2:98:41:f2:22:28:b3:e4:4d:8b:5e:46:d2:58:39:30:1d:
a7:1a:8b:0e:9d:05:df:1d:c5:51:20:a5:c4:44:d5:fc:53:06:
03:0d:78:30:32:26:a6:ee:d1:c5:0e:80:17:5c:3e:22:8b:40:
da:55:5b:b8:90:0f:e6:f3:a7:62:13:c8:a2:3c:be:3c:66:48:
3d:c6:c2:f2:89:3f:bc:fe:b8:34:77:25:c3:6e:ce:6c:99:41:
ae:bf:53:ca:86:6b:12:bb:d5:dc:36:31:15:10:00:e8:57:a2:
5c:8f:31:d5:2e:6e:95:da:db:b1:fd:77:96:47:80:36:e5:f7:
e1:ba:34:19:4f:0d:bb:0f:49:71:65:fe:4d:42:79:a1:a4:19:
6f:b3:ff:bc:0a:91:40:cc:42:2c:8d:a6:17:f8:ea:56:41:3a:
82:8d:8a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:32:42 2025 by rpki-client