Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81E43D7425C611F0A0F941AFDAE4EC9C.roa
File: 81E43D7425C611F0A0F941AFDAE4EC9C.roa (raw, json)
Hash identifier: DkXZEv97fpkI+lb/z9/V5YIR6+NOGLQgDZmlArSMAw4=
Subject key identifier: 23:8F:5F:CC:40:3F:81:FC:9E:DD:40:B8:04:AE:B0:88:91:36:B8:ED
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017D79
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81E43D7425C611F0A0F941AFDAE4EC9C.roa
Signing time: Wed 30 Apr 2025 13:24:57 +0000
ROA not before: Wed 30 Apr 2025 13:24:52 +0000
ROA not after: Tue 28 Apr 2026 13:24:52 +0000
asID: 984
IP address blocks: 154.80.142.0/24 maxlen: 24
154.80.143.0/24 maxlen: 24
154.80.144.0/24 maxlen: 24
154.80.145.0/24 maxlen: 24
154.80.146.0/24 maxlen: 24
154.80.147.0/24 maxlen: 24
154.80.148.0/24 maxlen: 24
154.80.149.0/24 maxlen: 24
154.80.150.0/24 maxlen: 24
154.80.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97657 (0x17d79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 13:24:52 2025 GMT
Not After : Apr 28 13:24:52 2026 GMT
Subject: CN=681224a8-608c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:15:c6:ba:ef:dd:5b:56:e9:ee:4d:8e:d5:b5:
76:6a:75:9b:46:d3:74:a9:5b:f5:43:4f:70:c0:d9:
d8:e3:0a:ab:0c:17:7d:4b:db:13:6e:a4:ac:4d:02:
f4:9d:00:2f:7d:ac:f2:59:b9:3c:fc:ee:aa:35:dc:
70:d1:bc:ec:37:86:63:63:42:4b:c5:95:99:f7:be:
1c:df:30:a4:39:18:02:4c:8c:8d:87:f1:f0:8a:ea:
cf:4a:8c:57:d6:36:e0:bc:64:11:04:32:bc:d1:6f:
53:11:d9:2d:b5:2f:89:4f:a6:a8:88:e7:ad:ff:12:
0a:ea:cc:a5:f9:58:5c:b2:c2:09:d7:95:1c:f9:31:
37:d8:92:c1:59:a4:63:00:07:98:74:bb:c7:c8:a7:
f8:e1:c2:62:6c:61:d7:ad:07:0b:b5:c1:92:0b:9f:
e7:23:72:c3:02:e4:29:c5:e8:b5:0b:e6:37:25:c0:
d1:91:54:de:1d:08:ad:50:17:0d:8e:7f:77:bb:20:
a6:10:cc:9a:fb:e0:8d:cf:c1:2a:7f:9f:71:61:8a:
75:f0:0c:07:85:9d:bc:53:66:77:67:01:71:e1:fa:
89:72:c9:6e:a5:3b:0d:4c:8c:a1:ea:d0:b4:f9:f4:
f2:e1:92:50:a7:95:1e:57:64:1a:51:da:9f:d5:91:
37:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:8F:5F:CC:40:3F:81:FC:9E:DD:40:B8:04:AE:B0:88:91:36:B8:ED
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81E43D7425C611F0A0F941AFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.142.0-154.80.151.255
Signature Algorithm: sha256WithRSAEncryption
3b:dd:bd:52:c5:80:db:11:99:67:e3:2f:8e:52:96:ca:eb:3c:
11:79:eb:ea:ef:23:17:75:50:11:4e:11:e5:05:9f:66:6b:8a:
2c:69:ce:85:43:ad:d5:e1:f6:d1:08:59:80:40:db:5c:8a:bc:
93:24:06:e9:a1:6c:b7:b3:2d:f4:ba:f3:0c:22:27:4e:d1:56:
07:13:9f:0d:f9:71:45:1e:7e:cd:4c:58:8b:36:c2:e1:8d:ab:
bc:9f:bc:5b:3c:0f:56:e5:09:cd:f4:1d:6b:73:b5:7b:60:14:
9c:df:a1:64:4d:9c:e4:64:a3:32:9f:ba:38:5b:cf:9f:9e:df:
43:27:19:0d:de:7a:40:d5:b0:ac:72:c9:cf:4d:df:0c:d1:7e:
bd:eb:75:c2:3b:f2:20:96:01:b2:7a:e4:00:6a:6a:ad:9a:db:
38:ff:01:10:ff:52:2a:fa:15:11:65:5d:59:93:6e:01:d5:76:
66:f2:59:fc:92:6e:aa:52:60:b6:d2:94:f7:11:53:5f:2d:e2:
39:3c:93:a1:e9:07:7c:6d:52:3e:30:ef:f0:21:10:03:00:83:
07:d8:56:a3:71:1a:27:b6:1f:c2:b4:58:a5:10:d5:2e:d1:7e:
22:de:12:f1:ff:b0:ac:80:49:92:85:2e:c6:4e:a4:b2:f4:4f:
75:b1:53:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 19:04:09 2025 by rpki-client