Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73EA74303B9D11F09E982B7CDAE4EC9C.roa
File: 73EA74303B9D11F09E982B7CDAE4EC9C.roa (raw, json)
Hash identifier: 66p1zAOJ25ypGaZP7jhcTRg9/eqS0MQAajdIIJUXUac=
Subject key identifier: DA:56:56:2A:E2:2F:A1:91:0F:10:0E:B8:5F:F5:2C:30:CC:E1:9A:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01831E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73EA74303B9D11F09E982B7CDAE4EC9C.roa
Signing time: Wed 28 May 2025 08:26:29 +0000
ROA not before: Wed 28 May 2025 08:26:24 +0000
ROA not after: Fri 24 Oct 2025 08:26:24 +0000
asID: 135423
IP address blocks: 154.205.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Jun 2025 11:24:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99102 (0x1831e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 08:26:24 2025 GMT
Not After : Oct 24 08:26:24 2025 GMT
Subject: CN=6836c8b5-d750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a2:8c:85:6f:5b:db:4b:89:9c:5b:1e:07:ff:
0f:3f:af:1f:cc:05:e2:5b:48:07:31:81:1f:76:f5:
22:b6:9b:fb:67:5c:69:99:e8:f7:23:92:f5:4c:b1:
4a:a6:4b:00:1e:7f:21:5f:bd:78:f1:91:47:23:dc:
2d:3f:54:96:e2:2b:36:5f:6a:d2:1b:ea:d2:12:8a:
46:86:e4:d5:b4:ac:b0:de:ae:37:2b:d7:39:d3:8d:
f6:77:68:f3:38:b8:45:2b:04:86:37:0f:37:b1:49:
37:37:f3:3e:a3:f9:57:44:95:03:f7:ac:cd:36:08:
44:fe:16:98:34:0d:9d:98:20:dd:1f:32:ce:ba:9c:
b7:dd:46:81:04:84:ac:62:e3:fb:05:32:cc:48:1d:
6e:42:77:77:78:3a:f2:88:12:29:75:9b:2b:ee:c5:
b9:23:09:a0:3c:c4:b6:df:8f:74:d8:87:0e:de:0b:
07:5f:cb:2b:56:1d:a4:d1:b8:a2:2a:06:38:49:93:
d7:f5:cb:15:ec:ee:9f:73:e6:4c:dd:ee:8c:6d:c1:
b7:16:d0:bf:48:d6:e8:af:73:ce:0a:87:5d:4e:c7:
b0:16:07:1f:f3:f7:13:02:c4:44:e9:10:1b:9c:bd:
d4:a4:c5:13:ca:46:52:e3:ff:45:5d:65:46:3f:2f:
60:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:56:56:2A:E2:2F:A1:91:0F:10:0E:B8:5F:F5:2C:30:CC:E1:9A:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73EA74303B9D11F09E982B7CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.20.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:9d:4f:a9:a8:7a:ed:cf:41:b3:25:9c:01:bc:21:83:3f:8f:
62:05:8b:10:05:31:e9:27:b8:11:f3:96:44:d4:45:32:03:0f:
5b:32:c4:14:0c:cb:39:0f:69:c5:d4:5a:23:a4:7f:c7:80:b6:
0e:7f:45:70:e9:02:6d:ec:31:30:38:0e:93:f2:0e:53:49:94:
67:5e:0c:70:8a:33:ec:a0:6e:0a:91:4f:d6:fa:ba:5e:94:3c:
f8:2e:23:47:55:27:ca:76:cc:ad:1a:fe:c1:3f:7f:12:6e:06:
d3:61:5a:a7:46:1a:1d:a9:d9:06:ef:d4:ae:79:a8:ea:08:62:
c3:18:dc:49:19:f2:97:53:1e:16:02:e2:70:e8:68:4e:b1:48:
0a:ff:d1:05:b4:06:4e:f5:1f:5d:7b:9d:ce:a3:33:1b:d8:7d:
09:36:96:cb:60:9b:b1:a9:d1:87:5e:4a:a1:0a:b5:b6:39:e5:
ed:ca:f8:c8:c2:47:36:f7:05:4a:a8:6f:b4:f6:b0:3a:aa:46:
5d:bb:e7:40:25:ee:90:8b:f0:31:8e:e5:be:f6:57:03:0f:4f:
42:8a:43:88:70:4c:5f:81:fb:71:08:98:fc:5e:1b:38:d6:65:
18:58:5a:39:f2:80:76:29:82:24:4e:50:6f:8f:2d:a7:c0:41:
ec:6b:ce:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 13:35:39 2025 by rpki-client