Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D313E68408111F0AD333EC2DAE4EC9C.roa
File: 8D313E68408111F0AD333EC2DAE4EC9C.roa (raw, json)
Hash identifier: 70Y2O6xY2+pt+UvZki2zaUWuTS0oqippHhBJCVRTrhI=
Subject key identifier: 5F:8D:B0:76:EA:8A:C7:45:48:41:CC:88:44:D1:AF:D0:0B:64:22:D6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01848B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D313E68408111F0AD333EC2DAE4EC9C.roa
Signing time: Tue 03 Jun 2025 13:49:21 +0000
ROA not before: Tue 03 Jun 2025 13:49:17 +0000
ROA not after: Sun 03 Aug 2025 13:49:17 +0000
asID: 138915
IP address blocks: 154.93.73.0/24 maxlen: 24
154.93.84.0/23 maxlen: 24
154.93.108.0/24 maxlen: 24
154.93.109.0/24 maxlen: 24
154.93.110.0/24 maxlen: 24
154.93.112.0/23 maxlen: 24
154.93.114.0/24 maxlen: 24
154.93.116.0/22 maxlen: 24
154.93.120.0/24 maxlen: 24
154.93.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99467 (0x1848b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 13:49:17 2025 GMT
Not After : Aug 3 13:49:17 2025 GMT
Subject: CN=683efd61-853b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:be:e5:ea:69:12:af:36:2a:9a:c9:55:3f:eb:
ca:42:df:0b:b2:54:da:d6:94:73:2f:59:ca:36:c3:
2b:64:5c:7b:71:46:09:d1:cc:c7:a7:e0:ef:89:2b:
55:19:e1:01:d5:db:d4:0b:c0:5e:75:a5:87:97:6c:
c2:fc:2e:7f:e7:67:2d:d9:fb:db:14:bf:c1:de:6a:
d8:ee:31:33:8f:38:8b:37:f9:47:65:a6:b2:8f:9f:
e9:9d:f9:b1:e6:2c:fd:96:fc:87:c7:7c:76:dc:6a:
0a:be:36:60:11:38:6a:e6:df:a2:eb:d4:2d:1a:99:
ee:74:69:d7:ff:9a:6f:b7:8d:c9:55:fb:47:c0:32:
cb:3f:fa:de:6e:eb:e0:3d:67:92:73:b9:f5:b9:80:
02:dc:79:01:99:1d:d0:98:15:29:ac:3f:94:26:8d:
67:7c:98:90:69:1a:da:86:b5:65:9b:2a:75:e1:80:
20:4f:39:37:1a:4b:d9:5a:fb:cc:c5:3e:4b:bd:6c:
9f:7a:3f:32:d6:c1:fc:7d:21:3b:2d:15:9c:6c:83:
15:82:b9:03:5b:73:0f:ea:a1:27:19:23:5a:0c:4b:
2e:17:8f:fb:3d:43:e9:98:80:63:ea:51:48:e0:89:
2b:9c:e9:32:4f:a6:d6:37:f9:ec:ce:c9:d5:02:3c:
b8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:8D:B0:76:EA:8A:C7:45:48:41:CC:88:44:D1:AF:D0:0B:64:22:D6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D313E68408111F0AD333EC2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.73.0/24
154.93.84.0/23
154.93.108.0-154.93.110.255
154.93.112.0-154.93.114.255
154.93.116.0-154.93.121.255
Signature Algorithm: sha256WithRSAEncryption
a8:9b:54:12:90:b4:c1:c2:73:8d:d8:79:74:70:38:99:85:26:
62:e6:92:6c:aa:40:8e:f5:7e:7a:f7:55:ee:3a:8c:f4:2e:c4:
4f:2f:4f:7f:14:ba:0e:41:a3:7d:62:eb:c1:77:37:85:8e:d3:
9f:82:16:9e:b8:ba:03:54:fa:ab:44:51:a0:c0:ea:60:4f:bd:
5d:dc:a3:b6:94:d9:87:d8:34:30:40:67:da:4b:1c:51:30:3c:
bd:c4:fd:74:65:8d:e3:30:d0:32:00:af:0a:4f:1f:09:6b:6e:
5e:26:e8:91:11:71:c1:e3:0c:3c:c3:d6:68:f6:94:64:9d:f2:
45:9b:c6:00:2d:68:31:2a:d1:8e:32:4d:78:77:9d:3a:70:77:
99:47:d2:f6:26:f3:5a:6a:24:d2:ac:07:d6:90:66:4f:39:82:
d8:9a:2d:e0:fd:7e:bf:5c:e9:f5:5e:62:8c:96:d0:e5:64:bd:
a6:24:88:a7:6c:6d:8e:39:bd:b3:f8:13:3c:ba:cc:54:6a:53:
76:4a:62:95:2f:9a:0f:44:5d:fd:da:f5:fd:c0:e0:e9:55:1f:
5b:1b:b9:e0:65:6c:04:f3:55:23:f3:03:f0:82:85:be:9e:88:
b7:b3:1f:58:20:b1:9b:93:fd:ca:61:6d:c9:59:d7:0f:f8:56:
e5:13:c3:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:33:48 2025 by rpki-client