Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A277215237E911F08CA566D8DAE4EC9C.roa
File: A277215237E911F08CA566D8DAE4EC9C.roa (raw, json)
Hash identifier: 8Ya5dPI7PIkVC5xLGQ4GJ5EqxcPr+RdxuMx6fiXUodU=
Subject key identifier: 38:79:E9:EB:38:70:2A:1C:98:83:16:80:D0:63:89:32:FA:41:13:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018225
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A277215237E911F08CA566D8DAE4EC9C.roa
Signing time: Fri 23 May 2025 15:21:44 +0000
ROA not before: Fri 23 May 2025 15:21:39 +0000
ROA not after: Mon 30 Jun 2025 15:21:39 +0000
asID: 55933
IP address blocks: 154.201.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98853 (0x18225)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 15:21:39 2025 GMT
Not After : Jun 30 15:21:39 2025 GMT
Subject: CN=68309288-21ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f9:2f:b6:34:31:80:a6:47:8c:7c:27:47:56:
de:fd:bc:45:99:44:6e:f9:ab:1b:35:e4:66:63:f4:
d0:6e:82:6f:f5:99:96:cd:56:04:46:1e:b0:f7:73:
71:96:31:e4:9a:2c:70:36:57:cf:12:e7:08:cd:4f:
55:1e:95:c2:20:75:61:38:42:1a:7f:7e:2f:5f:b4:
0d:de:6d:f1:0d:c4:30:1f:e4:4d:a5:98:85:76:0b:
d9:76:d0:18:ac:fa:ae:e1:0e:20:64:15:5c:0f:83:
32:f0:ed:c6:f7:72:23:10:b3:16:f0:fa:c0:18:ba:
47:df:2e:34:da:9e:f3:10:5f:7d:42:6c:4d:8c:4a:
5e:6b:b6:b5:71:5c:95:3f:b8:82:e1:ad:65:b8:12:
49:b0:fa:d8:97:d9:cc:b8:49:76:66:f2:55:07:bb:
c5:fc:1a:a2:51:6f:d0:1a:9d:28:4c:76:2d:65:33:
55:11:22:b6:82:f3:e2:e4:a3:62:10:3b:29:48:18:
67:11:5e:c1:39:68:75:a4:72:59:85:e5:ee:e5:dc:
87:cc:4d:22:67:c2:ad:3a:4d:8a:c4:e1:c2:8a:bb:
c8:0c:2c:b8:6b:8e:23:07:3e:ec:87:c7:38:ae:7a:
9b:c3:3e:04:c2:95:25:8a:eb:1d:1c:70:4b:92:41:
f7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:79:E9:EB:38:70:2A:1C:98:83:16:80:D0:63:89:32:FA:41:13:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A277215237E911F08CA566D8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.64.0/19
Signature Algorithm: sha256WithRSAEncryption
ad:9c:8a:f2:af:de:b8:75:6a:02:cf:a7:9f:23:ee:29:6c:b2:
ff:0b:c7:c8:1f:43:79:3c:2a:13:68:15:51:97:98:07:b0:b5:
6c:88:c1:f2:2f:1c:d2:e0:7b:ca:68:7a:6b:d0:60:7d:13:c6:
a5:98:27:9d:5d:1c:ba:2a:40:00:8d:a1:a9:ac:20:89:0e:ea:
2c:d2:35:ce:7d:b5:d4:a5:0a:5e:ce:63:0e:e0:59:66:6f:78:
91:cf:ab:54:c7:03:0d:c8:65:9d:1f:4b:37:d3:0e:13:dd:24:
a9:fd:ba:c4:25:08:b1:58:e4:94:8e:25:f4:85:b6:0d:49:c8:
7a:72:bd:69:c9:06:f6:df:5f:20:6d:b3:fe:47:54:de:ef:78:
23:fd:c6:95:bc:9b:2a:e3:29:23:17:16:dc:2c:22:02:ca:99:
0e:07:20:c0:12:66:65:e6:bd:33:28:32:0b:c6:52:ab:10:fa:
48:50:93:c4:a7:99:1e:39:34:38:25:47:e3:a8:97:2c:6a:66:
78:18:27:49:ae:1e:e2:19:2d:19:b1:66:1c:ea:2e:bb:19:98:
49:9c:00:87:c1:1b:1e:fa:78:7e:20:74:2d:8e:2a:18:6a:56:
ab:3f:62:b8:e3:40:67:55:d4:29:66:76:05:02:1d:5c:db:b2:
34:0b:cd:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:49:09 2025 by rpki-client