Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E1C01EE407C11F08178A8A3DAE4EC9C.roa
File: 5E1C01EE407C11F08178A8A3DAE4EC9C.roa (raw, json)
Hash identifier: WrgfkiYozbY9nOEsw/oXmyuVIe7aao+6zGttO2dD6zM=
Subject key identifier: F7:99:CD:BA:40:63:32:E1:5F:E2:59:33:9E:F6:22:C0:4C:76:AC:D1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018485
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E1C01EE407C11F08178A8A3DAE4EC9C.roa
Signing time: Tue 03 Jun 2025 13:12:15 +0000
ROA not before: Tue 03 Jun 2025 13:12:10 +0000
ROA not after: Thu 17 Jul 2025 13:12:10 +0000
asID: 138915
IP address blocks: 154.206.64.0/24 maxlen: 24
154.206.65.0/24 maxlen: 24
154.206.66.0/24 maxlen: 24
154.206.79.0/24 maxlen: 24
154.206.98.0/23 maxlen: 24
154.206.102.0/23 maxlen: 24
154.206.104.0/23 maxlen: 24
154.206.106.0/24 maxlen: 24
154.206.108.0/23 maxlen: 24
154.206.110.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99461 (0x18485)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 13:12:10 2025 GMT
Not After : Jul 17 13:12:10 2025 GMT
Subject: CN=683ef4af-ee0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:45:1b:19:73:7d:ff:7f:50:b1:9a:5f:ed:6f:
5f:9e:48:bf:f3:f1:1c:a2:3e:46:6c:14:5e:61:cd:
5b:6e:29:b3:84:22:3e:02:3b:28:16:71:b5:d5:d4:
42:d2:dc:49:f4:f6:ac:2b:bf:f4:c3:82:e8:0b:e0:
f7:cf:73:da:3a:19:14:76:75:d2:9c:61:a9:fd:b4:
27:d3:a4:48:7e:83:71:f3:95:68:e8:2b:c7:d4:35:
a9:05:90:04:61:86:26:ca:bf:10:56:af:c3:5b:47:
ff:64:cf:e7:38:23:7a:6f:fc:b9:e1:de:3c:5c:52:
0b:69:04:25:08:78:b0:1b:2a:2b:7a:f3:cd:a1:44:
58:c7:99:f4:72:92:76:10:0d:73:e2:f8:16:c3:bd:
d8:2b:80:9c:6a:9a:2c:97:2c:ae:11:cf:89:09:82:
d6:a1:0a:6b:b3:f7:9e:a4:89:90:d3:f1:0f:fa:17:
d2:30:20:02:b3:5a:66:31:98:d9:5d:dc:e6:8a:f9:
ed:43:0c:dc:88:6f:10:a2:5a:19:2a:9d:e9:04:0e:
fa:20:09:f4:6c:d4:92:b1:b3:9d:2c:61:5b:0a:09:
60:99:5e:3d:0f:de:d1:75:1f:10:a8:f3:6e:dd:fe:
8d:43:03:43:6b:19:2e:11:75:1c:cf:1e:64:02:81:
1e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:99:CD:BA:40:63:32:E1:5F:E2:59:33:9E:F6:22:C0:4C:76:AC:D1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E1C01EE407C11F08178A8A3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.64.0-154.206.66.255
154.206.79.0/24
154.206.98.0/23
154.206.102.0-154.206.106.255
154.206.108.0/22
Signature Algorithm: sha256WithRSAEncryption
62:48:3f:b0:bf:20:ed:ff:1a:c4:52:d0:a8:fb:71:88:e2:9b:
65:91:ec:8e:50:30:54:6d:49:ad:12:13:b0:bc:d5:ea:97:e1:
02:b1:e9:45:8e:4d:1e:f0:06:c3:7e:8e:11:60:47:6f:2c:a7:
91:f1:41:d6:b2:4a:4f:78:72:0e:c5:c4:25:a9:73:35:b8:0f:
2a:61:cb:c4:95:c1:16:c1:47:e0:97:93:9f:7c:a0:19:2e:a5:
21:0d:70:cc:99:e1:71:cd:5e:80:36:0c:ba:79:a8:b3:15:bb:
57:47:60:4b:16:18:8f:f2:79:e1:32:9e:1f:2f:96:5f:ef:af:
b2:c6:85:45:05:1d:13:00:7a:2e:6e:db:ca:32:32:03:6c:29:
0c:2c:cb:64:22:4f:d9:14:9c:dd:6c:72:61:d6:64:4c:6e:c1:
07:98:88:bb:f5:9e:01:b9:41:20:40:4c:ea:11:bf:db:c1:1d:
f0:fc:5c:d6:e8:f1:49:1c:e3:32:bf:94:b6:44:79:9f:9c:7e:
1d:af:2a:6a:1e:30:68:cb:89:88:d1:e4:bd:3e:59:ea:68:04:
ac:4f:db:3f:af:98:59:75:a1:2b:41:39:20:3a:93:5f:ba:9d:
da:83:77:3e:32:18:1a:3e:bb:2c:b4:82:03:8b:9d:91:b1:11:
93:28:c9:2e
-----BEGIN CERTIFICATE-----
MIIFrDCCBJSgAwIBAgIDAYSFMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjAzMTMxMjEwWhcNMjUwNzE3MTMxMjEwWjAYMRYw
FAYDVQQDEw02ODNlZjRhZi1lZTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx0UbGXN9/39QsZpf7W9fnki/8/Ecoj5GbBReYc1bbimzhCI+AjsoFnG1
1dRC0txJ9PasK7/0w4LoC+D3z3PaOhkUdnXSnGGp/bQn06RIfoNx85Vo6CvH1DWp
BZAEYYYmyr8QVq/DW0f/ZM/nOCN6b/y54d48XFILaQQlCHiwGyorevPNoURYx5n0
cpJ2EA1z4vgWw73YK4CcaposlyyuEc+JCYLWoQprs/eepImQ0/EP+hfSMCACs1pm
MZjZXdzmivntQwzciG8QoloZKp3pBA76IAn0bNSSsbOdLGFbCglgmV49D97RdR8Q
qPNu3f6NQwNDaxkuEXUczx5kAoEeBQIDAQABo4ICzTCCAskwHQYDVR0OBBYEFPeZ
zbpAYzLhX+JZM572IsBMdqzRMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81RTFDMDFFRTQwN0MxMUYwODE3OEE4QTNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuMAwDBAaazkADBACazkIDBACa
zk8DBAGazmIwDAMEAZrOZgMEAJrOagMEAprObDANBgkqhkiG9w0BAQsFAAOCAQEA
Ykg/sL8g7f8axFLQqPtxiOKbZZHsjlAwVG1JrRITsLzV6pfhArHpRY5NHvAGw36O
EWBHbyynkfFB1rJKT3hyDsXEJalzNbgPKmHLxJXBFsFH4JeTn3ygGS6lIQ1wzJnh
cc1egDYMunmosxW7V0dgSxYYj/J54TKeHy+WX++vssaFRQUdEwB6Lm7byjIyA2wp
DCzLZCJP2RSc3WxyYdZkTG7BB5iIu/WeAblBIEBM6hG/28Ed8Pxc1ujxSRzjMr+U
tkR5n5x+Ha8qah4waMuJiNHkvT5Z6mgErE/bP6+YWXWhK0E5IDqTX7qd2oN3PjIY
Gj67LLSCA4udkbERkyjJLg==
-----END CERTIFICATE-----
Generated at Thu Jun 5 18:31:01 2025 by rpki-client