Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97CDB51A331E11F0AC05AE7ADAE4EC9C.roa
File: 97CDB51A331E11F0AC05AE7ADAE4EC9C.roa (raw, json)
Hash identifier: 0FfpEzEFF/PnhKoY8hWWwBj4yZ1dXoD2/XbFO+9ZgaA=
Subject key identifier: 99:8E:74:F7:67:B0:CB:4E:5A:DE:16:AF:54:59:32:01:F3:09:A4:CF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01812A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97CDB51A331E11F0AC05AE7ADAE4EC9C.roa
Signing time: Sat 17 May 2025 12:58:14 +0000
ROA not before: Sat 17 May 2025 12:58:09 +0000
ROA not after: Sun 08 Jun 2025 12:58:09 +0000
asID: 44559
IP address blocks: 154.210.237.0/24 maxlen: 24
154.210.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98602 (0x1812a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 17 12:58:09 2025 GMT
Not After : Jun 8 12:58:09 2025 GMT
Subject: CN=682887e6-a106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8e:50:ba:02:2f:fb:5f:9d:67:41:ff:fc:4d:
b8:da:27:ad:3e:d2:a2:33:5d:64:70:93:9f:ce:83:
de:e0:0d:2f:63:60:e0:1f:16:9a:9b:40:7c:b3:db:
89:bb:10:13:2d:ce:2a:89:02:1b:5b:03:c4:68:5e:
6f:9f:46:91:ea:c2:e0:c6:a4:58:d0:0c:e1:1a:9f:
eb:c9:9f:1c:53:46:ef:e4:fe:26:40:af:6a:de:fa:
da:7b:8c:cc:42:ac:04:69:58:62:65:12:d8:ef:4e:
ca:62:71:98:21:1c:d7:30:11:09:1a:55:97:08:94:
27:36:46:67:7b:3d:9d:e5:69:88:4c:01:47:9d:17:
d0:34:61:a7:6b:a6:a4:3a:06:b8:16:93:9e:ce:73:
23:21:43:0f:50:00:d4:bd:8f:52:43:6c:3a:7c:dc:
07:d7:12:78:04:3a:2d:fc:39:cb:48:50:21:7d:0d:
10:c7:ff:dd:df:f9:b8:07:61:43:e8:cb:54:6d:6f:
f8:c2:bf:25:c3:73:99:43:ae:6d:8e:43:cf:37:f6:
5d:92:e3:b9:36:93:9b:62:f7:ef:b8:97:94:b0:96:
35:5c:04:3d:f8:10:2d:be:2a:f7:bc:69:3d:52:b1:
0f:6d:b4:35:e2:cc:3e:b1:8c:9c:c7:b6:74:f8:fa:
2f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:8E:74:F7:67:B0:CB:4E:5A:DE:16:AF:54:59:32:01:F3:09:A4:CF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97CDB51A331E11F0AC05AE7ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.237.0-154.210.238.255
Signature Algorithm: sha256WithRSAEncryption
2e:3b:89:e3:eb:cb:a6:b5:5c:f0:7f:15:cd:36:51:de:38:a5:
be:f0:65:ff:60:ca:7b:36:82:67:78:c7:67:ef:ec:ca:07:fc:
7d:6c:39:ac:cf:81:db:df:5a:15:77:a8:5c:e0:c0:5c:32:14:
18:c0:9c:10:d7:c7:bd:ab:f5:dc:77:cb:47:fd:08:6f:3d:a1:
7c:65:dc:16:7c:7e:df:46:73:53:a2:ef:33:74:da:6b:8c:fb:
79:7e:a4:00:34:81:8f:ce:07:a5:c5:6f:0e:a8:5e:a3:21:dc:
4b:97:f7:b5:85:8f:82:01:dd:5d:81:43:3c:48:80:58:a3:21:
74:34:73:23:a5:19:28:19:38:5a:74:b4:05:f8:c8:fb:d2:5f:
64:60:f8:ba:a6:66:2e:ff:68:63:6b:be:22:10:02:62:32:76:
49:08:cd:12:3b:1c:99:2a:33:c1:36:81:6b:96:aa:4a:75:aa:
4d:52:d0:97:db:b7:cc:fb:6f:d2:fb:c9:dc:20:8e:ec:5a:1e:
7d:10:2f:50:81:d1:e5:a3:44:7a:ab:f2:98:fe:ec:f2:84:45:
d9:8e:04:d1:52:41:95:4d:86:f8:c2:f3:1a:4f:fd:99:aa:d1:
3c:96:20:fd:c8:fd:f1:14:fd:54:7c:d9:57:ad:d1:f2:e1:de:
f6:a7:64:d5
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAYEqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTE3MTI1ODA5WhcNMjUwNjA4MTI1ODA5WjAYMRYw
FAYDVQQDEw02ODI4ODdlNi1hMTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvo5QugIv+1+dZ0H//E242ietPtKiM11kcJOfzoPe4A0vY2DgHxaam0B8
s9uJuxATLc4qiQIbWwPEaF5vn0aR6sLgxqRY0AzhGp/ryZ8cU0bv5P4mQK9q3vra
e4zMQqwEaVhiZRLY707KYnGYIRzXMBEJGlWXCJQnNkZnez2d5WmITAFHnRfQNGGn
a6akOga4FpOeznMjIUMPUADUvY9SQ2w6fNwH1xJ4BDot/DnLSFAhfQ0Qx//d3/m4
B2FD6MtUbW/4wr8lw3OZQ65tjkPPN/ZdkuO5NpObYvfvuJeUsJY1XAQ9+BAtvir3
vGk9UrEPbbQ14sw+sYycx7Z0+PovvQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFJmO
dPdnsMtOWt4Wr1RZMgHzCaTPMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85N0NEQjUxQTMzMUUxMUYwQUMwNUFFN0FEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACa0u0DBACa0u4wDQYJ
KoZIhvcNAQELBQADggEBAC47iePry6a1XPB/Fc02Ud44pb7wZf9gyns2gmd4x2fv
7MoH/H1sOazPgdvfWhV3qFzgwFwyFBjAnBDXx72r9dx3y0f9CG89oXxl3BZ8ft9G
c1Oi7zN02muM+3l+pAA0gY/OB6XFbw6oXqMh3EuX97WFj4IB3V2BQzxIgFijIXQ0
cyOlGSgZOFp0tAX4yPvSX2Rg+LqmZi7/aGNrviIQAmIydkkIzRI7HJkqM8E2gWuW
qkp1qk1S0Jfbt8z7b9L7ydwgjuxaHn0QL1CB0eWjRHqr8pj+7PKERdmOBNFSQZVN
hvjC8xpP/Zmq0TyWIP3I/fEU/VR82Vet0fLh3vanZNU=
-----END CERTIFICATE-----
Generated at Fri Jun 6 12:12:57 2025 by rpki-client