Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A6DE90034B711F0882484A8DAE4EC9C.roa
File: 7A6DE90034B711F0882484A8DAE4EC9C.roa (raw, json)
Hash identifier: SnoBkW7OPJwfI9PUEqyIDU5tCP7oZTVITgtSwIpvHVA=
Subject key identifier: 1B:98:57:03:F9:DD:02:29:D6:A4:14:19:BF:5E:56:E9:CD:EE:2E:98
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018156
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A6DE90034B711F0882484A8DAE4EC9C.roa
Signing time: Mon 19 May 2025 13:45:09 +0000
ROA not before: Mon 19 May 2025 13:45:04 +0000
ROA not after: Wed 18 Jun 2025 13:45:04 +0000
asID: 54801
IP address blocks: 154.90.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98646 (0x18156)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 19 13:45:04 2025 GMT
Not After : Jun 18 13:45:04 2025 GMT
Subject: CN=682b35e5-403a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:be:ce:8b:f7:64:e9:0f:ea:14:52:fe:5d:5e:
72:f0:09:86:72:dd:0b:d8:8a:3b:5c:90:d7:25:18:
a4:83:7e:32:67:23:55:99:1c:4a:02:19:b6:d1:f2:
16:63:6d:38:f1:4e:ad:82:32:a4:ff:77:a5:18:91:
b0:4b:76:fc:70:93:c3:8d:51:12:8b:99:b7:a6:91:
25:81:8f:d5:05:8a:37:d5:1c:28:1c:ae:03:b4:fb:
32:57:88:09:9d:23:73:d3:56:d0:64:a5:44:9a:df:
56:88:ae:6c:3e:dd:56:0d:18:e6:ea:75:20:a9:94:
03:a9:52:1a:72:e9:58:62:b3:7c:19:b3:9a:0d:a8:
b8:0d:48:ce:5f:1e:da:15:00:bf:0a:77:87:e3:e8:
33:77:2c:bd:fe:d9:29:ed:c5:39:13:50:52:f9:c0:
ac:f2:9f:b7:c9:18:02:65:66:d4:d7:38:e4:2f:67:
41:1c:59:f4:46:04:f1:f7:08:0c:62:d5:df:04:b8:
86:4c:b9:e4:49:4c:fc:a8:82:a3:c4:3d:a6:ee:e2:
f4:41:73:52:13:bb:90:0e:db:36:3a:54:4e:47:a1:
47:d7:20:94:bb:31:12:0b:5d:50:93:86:3b:f5:e0:
69:6f:54:84:54:8c:c8:b4:38:c7:0b:e9:7e:1e:d4:
fd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:98:57:03:F9:DD:02:29:D6:A4:14:19:BF:5E:56:E9:CD:EE:2E:98
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A6DE90034B711F0882484A8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.28.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:0a:5b:6a:c7:e9:64:84:fb:61:72:1d:9f:3e:63:cb:8f:60:
34:e0:b2:43:2c:2e:8d:dd:de:87:e8:a5:be:a0:d5:86:87:ba:
00:89:c7:c5:23:e5:6e:95:0c:2c:68:21:2a:fd:c1:ef:f9:a5:
c5:d6:17:e3:7d:b5:19:77:27:24:40:8d:b9:4d:e5:3e:03:50:
44:f2:04:00:be:93:b7:f3:2a:7d:15:0c:c3:b7:12:d1:c4:7f:
78:0f:04:26:ea:8b:30:c5:07:75:23:2b:9e:0e:74:fb:0e:cf:
d0:70:22:08:e5:7b:20:c0:40:c0:55:63:6f:22:92:2b:e9:cb:
6f:5c:2b:a3:22:3a:dc:ca:a1:48:a8:36:7d:f2:12:e7:be:c5:
f9:a7:7b:6c:3d:d4:43:6d:05:c2:85:4e:0a:eb:c7:5e:66:78:
4e:93:e4:a1:22:11:c8:39:01:9e:fd:ac:f4:4b:08:9d:09:73:
5a:ec:bf:24:ca:b2:17:48:12:b0:2f:1a:10:89:15:aa:ab:aa:
4f:a8:c1:7d:e3:ae:d6:f6:47:3d:a3:f7:47:40:fc:93:84:ae:
e4:19:55:07:1c:9d:40:fd:00:07:48:39:56:e4:b3:32:a3:22:
fc:84:e2:2c:c0:12:d7:64:0f:62:ba:36:96:de:3c:3a:d1:6f:
3d:e1:f4:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:48:28 2025 by rpki-client