Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/906509A83AE511F0818F82CEDAE4EC9C.roa
File: 906509A83AE511F0818F82CEDAE4EC9C.roa (raw, json)
Hash identifier: LhsaUr7zNMXoQbW3YSHW/PNRf7LSPb5Qkq0tFkl3Mio=
Subject key identifier: 84:0A:6D:90:30:F3:45:DC:52:E7:A2:9B:1F:31:69:FA:13:AD:44:1F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01830F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/906509A83AE511F0818F82CEDAE4EC9C.roa
Signing time: Tue 27 May 2025 10:30:10 +0000
ROA not before: Tue 27 May 2025 10:30:05 +0000
ROA not after: Mon 23 Jun 2025 10:30:05 +0000
asID: 133180
IP address blocks: 154.83.4.0/24 maxlen: 24
154.94.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 10 Jun 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99087 (0x1830f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 27 10:30:05 2025 GMT
Not After : Jun 23 10:30:05 2025 GMT
Subject: CN=68359432-cf49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:dd:e9:93:cb:86:62:b5:80:89:9e:f7:d2:dd:
d9:0f:db:f0:fa:5d:2a:f6:2b:dc:84:2e:27:d1:4d:
6c:de:a8:9a:4b:85:47:62:12:26:91:e0:55:ac:58:
3d:4e:96:ad:3f:d6:04:99:c7:69:98:fd:60:2e:82:
34:9d:74:16:76:f3:b2:aa:3a:34:3d:63:c0:ee:a2:
7d:f1:54:59:7b:fa:10:91:84:63:6c:ca:b3:1e:c3:
b4:b8:e4:70:94:4c:5b:23:0a:47:f6:e0:2c:f5:0e:
56:d0:85:2c:9f:1b:cf:91:08:6e:51:7e:38:df:a5:
53:54:4e:92:95:bc:25:f2:a0:1f:0c:15:83:54:37:
e8:18:25:6d:69:f0:c8:03:ed:6a:70:a7:cd:c9:60:
38:c9:0d:99:8f:f6:61:a9:16:71:45:97:79:12:90:
a1:65:fc:53:4c:6c:c1:4d:14:c6:88:ad:69:c4:bf:
62:ec:c1:45:cd:93:f0:1e:4b:93:dc:4d:66:d5:cb:
88:56:0c:3e:f9:7a:0f:1a:b9:30:1d:e5:56:bb:08:
69:2f:f8:e1:fa:f2:11:a1:96:41:70:89:ee:5b:85:
1b:e4:16:75:93:96:c8:a5:2e:be:ae:f1:d1:21:6b:
c5:ac:0e:ec:d5:11:0a:e9:0d:ff:3e:d8:2f:b1:5f:
8d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:0A:6D:90:30:F3:45:DC:52:E7:A2:9B:1F:31:69:FA:13:AD:44:1F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/906509A83AE511F0818F82CEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.4.0/24
154.94.16.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:bc:e1:2e:f4:16:11:57:52:12:ee:ab:3a:99:f1:40:9c:6a:
3a:34:8f:08:86:94:e5:79:50:d2:04:03:97:41:f0:29:1e:71:
e1:89:7f:63:15:d0:37:51:f6:84:75:17:17:09:94:2b:71:49:
b2:22:86:5d:15:cb:13:c6:b9:b2:e2:cd:51:43:20:82:77:82:
1b:d1:70:d5:09:a7:85:2b:6f:c0:1d:64:a0:21:bc:36:a4:38:
09:ab:6d:cd:2f:da:61:81:dc:d9:e2:57:bf:c2:00:30:5a:aa:
e5:bb:3a:28:ac:74:db:e2:df:7f:a6:b7:0d:39:d4:e4:3b:cc:
0a:4f:25:1a:2f:27:61:62:fb:6e:50:a2:f3:d4:ec:68:05:a6:
3b:55:2b:61:bd:1e:d0:92:b0:7d:98:66:76:45:94:90:ce:a3:
12:b5:fd:df:16:3e:b2:8d:a0:33:42:6a:d1:e6:17:fb:25:48:
6b:70:f4:5d:86:96:11:52:17:e3:86:ab:fb:19:b0:23:33:b6:
04:46:05:50:37:9e:21:a1:68:89:15:18:9e:2f:9e:20:26:5a:
7f:10:47:90:ac:60:6a:5c:aa:97:d0:6d:ae:83:d7:02:af:15:
b5:dc:5f:0b:03:02:15:aa:9e:1b:ae:48:98:dc:5d:3b:2b:a6:
69:59:28:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:17:25 2025 by rpki-client