Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84687AE0407111F0B0E52ADBDAE4EC9C.roa
File: 84687AE0407111F0B0E52ADBDAE4EC9C.roa (raw, json)
Hash identifier: MlWz4/g6BHykcJKwk2iq+qezOmhujmd3042oyWgshAE=
Subject key identifier: 2B:A9:DC:A8:A1:8F:48:29:AC:76:03:FE:D0:43:20:F3:70:D0:8F:DF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01846D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84687AE0407111F0B0E52ADBDAE4EC9C.roa
Signing time: Tue 03 Jun 2025 11:54:35 +0000
ROA not before: Tue 03 Jun 2025 11:54:30 +0000
ROA not after: Tue 15 Jul 2025 11:54:30 +0000
asID: 138915
IP address blocks: 154.205.139.0/24 maxlen: 24
154.205.140.0/24 maxlen: 24
154.205.142.0/23 maxlen: 24
154.205.145.0/24 maxlen: 24
154.205.154.0/24 maxlen: 24
154.205.155.0/24 maxlen: 24
154.205.156.0/24 maxlen: 24
154.205.157.0/24 maxlen: 24
154.205.158.0/24 maxlen: 24
154.205.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99437 (0x1846d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 11:54:30 2025 GMT
Not After : Jul 15 11:54:30 2025 GMT
Subject: CN=683ee27b-61e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c1:77:2c:42:87:2b:ef:27:4b:e5:e9:e2:25:
4a:af:fd:2c:10:71:a1:a3:ab:b0:9b:4b:ff:0f:04:
b2:28:00:98:a7:1b:3c:75:0a:d6:e7:71:58:c5:86:
8f:18:39:78:8c:e4:f6:86:a2:69:d7:e0:c0:fe:e3:
1d:13:8f:5d:47:e2:ab:90:84:c1:f6:0c:24:4a:46:
46:09:7b:da:d6:61:f5:d0:4d:01:57:5f:f4:d6:f2:
47:e5:52:78:92:2e:65:44:37:fd:35:78:7b:f2:ef:
19:30:74:6a:3f:31:09:ef:23:96:31:95:cb:8a:b1:
17:41:96:03:dd:aa:ea:fc:86:3f:b2:8f:b1:49:60:
72:ce:49:d1:a2:ce:11:73:d4:d6:d3:5d:00:13:9b:
0b:dd:4b:b9:7a:59:75:8c:16:37:e2:cc:4c:14:34:
c7:57:ba:a1:60:1e:6d:50:bd:e6:90:c8:22:8c:ce:
9c:15:ba:29:e1:4a:a2:7d:18:88:52:0c:50:ca:56:
75:8b:3f:70:c1:6e:37:2b:10:17:36:a6:9d:f6:75:
fb:17:8c:31:97:ed:07:d8:ba:a0:b4:22:e2:28:3f:
f4:e8:59:36:b4:f2:30:9c:f0:6f:a6:56:57:a4:cd:
02:b2:87:57:df:d2:b3:29:77:85:d4:eb:61:93:43:
a7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A9:DC:A8:A1:8F:48:29:AC:76:03:FE:D0:43:20:F3:70:D0:8F:DF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/84687AE0407111F0B0E52ADBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.139.0-154.205.140.255
154.205.142.0/23
154.205.145.0/24
154.205.154.0-154.205.159.255
Signature Algorithm: sha256WithRSAEncryption
6a:ab:b8:09:1b:e4:cf:5a:7f:78:b7:c2:df:94:7b:12:7c:54:
31:46:ac:f6:06:eb:fc:21:1c:b8:9c:3f:eb:10:40:af:de:23:
cd:ce:56:ab:6e:d6:44:81:af:5d:01:ff:c7:41:97:a3:ee:b9:
7e:e7:05:13:b6:bd:51:a0:f0:83:33:98:eb:48:75:2f:b3:28:
b6:11:48:41:bc:38:1a:14:84:e1:2f:cc:4a:0c:60:27:6e:70:
75:51:3e:64:e9:9e:28:22:67:e1:f5:36:bd:03:e9:c1:b0:d3:
ad:b8:29:df:31:c4:a6:87:ec:a2:ba:0e:6f:90:bd:8e:2c:05:
b3:a0:85:b0:b2:33:9c:46:3e:98:c6:eb:e2:ed:99:45:1e:bb:
b1:24:a4:cf:f6:d0:83:d3:12:9b:ff:f6:cb:e2:ca:94:eb:bf:
d5:ab:8d:c3:94:28:28:82:61:f1:e9:f2:9f:ef:32:c7:aa:57:
bb:6b:ae:34:e7:4b:68:51:45:49:83:06:5f:2d:d5:66:e7:72:
c5:b8:88:ff:26:f0:3b:11:8c:c8:a8:24:61:a1:70:fa:9a:70:
dd:fe:c6:d6:c3:50:8e:39:a4:de:37:ec:e6:96:b5:2c:bd:6a:
3f:48:d1:31:30:9b:6d:87:b3:cb:e1:3e:8a:1b:75:7f:18:02:
4a:70:81:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:46:05 2025 by rpki-client