Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A673036E36F611F08BAB11B3DAE4EC9C.roa
File: A673036E36F611F08BAB11B3DAE4EC9C.roa (raw, json)
Hash identifier: Rfv6fJKCCwINUeeNs4KNHggy0Js1CkP81wfYDMbXa/U=
Subject key identifier: DF:D7:A4:BC:0E:D9:A3:83:FD:0C:8C:DE:E3:51:6F:CA:00:D3:BA:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0181D5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A673036E36F611F08BAB11B3DAE4EC9C.roa
Signing time: Thu 22 May 2025 10:22:23 +0000
ROA not before: Thu 22 May 2025 10:22:18 +0000
ROA not after: Wed 09 Jul 2025 10:22:18 +0000
asID: 138915
IP address blocks: 154.223.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 07:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98773 (0x181d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 22 10:22:18 2025 GMT
Not After : Jul 9 10:22:18 2025 GMT
Subject: CN=682efadf-8e4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b8:bc:68:86:7a:51:2c:f1:f9:cf:06:6b:66:
33:1d:aa:f3:0f:73:9a:a3:13:4e:1f:3e:50:b1:df:
20:0b:eb:a1:5c:d8:2b:38:c9:2e:c8:b4:c0:9b:a9:
42:29:cc:5a:51:7a:2e:56:92:ae:08:af:ce:60:5c:
c5:70:d2:d0:a6:55:59:7d:ec:0e:07:4b:2f:ad:f0:
c8:f5:91:07:53:f0:27:7f:87:c2:49:73:12:4e:e7:
95:5a:81:23:33:b4:f6:7e:26:01:5e:14:8d:60:33:
5d:7f:29:fe:b8:67:fb:44:ca:84:93:a2:4c:80:9c:
8c:2a:c8:11:cd:3f:7c:13:25:39:11:82:cd:4f:6e:
fa:94:b0:f8:24:0d:a2:e1:49:d9:66:6e:8a:30:8b:
e4:f1:04:33:ab:78:96:13:fc:51:9e:a9:90:22:ed:
24:50:40:c3:9a:c4:19:89:d4:03:fd:98:a9:28:1a:
40:bb:d1:63:10:d0:35:dd:e4:c0:bd:80:9f:02:b1:
94:89:ff:77:e9:bc:c8:a7:be:9b:ef:e4:e1:79:b8:
29:1e:51:f8:a6:2d:05:f9:a8:ad:93:09:c9:11:02:
1f:ad:c9:84:a6:de:1a:5e:d5:15:46:94:e1:67:c5:
0c:81:96:7c:d0:ae:0b:fa:02:bc:18:2d:44:d4:0e:
8e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D7:A4:BC:0E:D9:A3:83:FD:0C:8C:DE:E3:51:6F:CA:00:D3:BA:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A673036E36F611F08BAB11B3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.16.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:a4:e5:4a:5c:8b:ec:5f:b3:43:ec:bc:26:46:3f:7c:80:18:
24:0f:e8:fc:d7:9f:50:55:04:ce:cd:17:fa:e7:58:24:43:69:
59:a3:16:69:ba:2a:84:28:98:d1:7a:47:f9:51:ee:30:b1:9f:
78:95:f9:df:9f:0c:8d:e9:77:ee:6b:ce:2e:80:de:c3:b2:77:
78:a5:8a:42:b8:0c:3a:24:67:2a:10:8c:72:38:91:c7:03:d5:
1d:a0:68:d7:0f:92:a4:5a:d0:de:cd:50:d2:3f:0b:2f:db:61:
cd:43:0e:30:65:e8:29:25:19:62:09:36:2a:cf:19:6b:8a:bb:
3b:e1:0d:da:d2:0c:86:0b:fd:27:67:91:1e:0a:0d:c4:34:2d:
a7:f1:c7:5e:f7:6f:4d:e6:39:4c:aa:fd:e5:de:02:da:91:d6:
70:46:ab:ab:a6:b8:e2:b5:7b:81:c1:f7:c3:3c:06:18:a0:0a:
58:ba:f2:79:b0:9a:87:95:19:7c:aa:a9:68:b7:50:47:f6:0d:
a0:be:aa:37:32:f2:f8:9e:97:84:a2:36:94:00:af:2c:29:b8:
39:4a:07:71:7e:cf:58:1b:b1:e8:ab:4b:dd:7d:5f:61:a8:e8:
26:38:4f:c6:db:40:90:c5:ca:3b:df:3f:76:3f:19:23:f0:ad:
1d:18:db:ab
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYHVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTIyMTAyMjE4WhcNMjUwNzA5MTAyMjE4WjAYMRYw
FAYDVQQDEw02ODJlZmFkZi04ZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxri8aIZ6USzx+c8Ga2YzHarzD3OaoxNOHz5Qsd8gC+uhXNgrOMkuyLTA
m6lCKcxaUXouVpKuCK/OYFzFcNLQplVZfewOB0svrfDI9ZEHU/Anf4fCSXMSTueV
WoEjM7T2fiYBXhSNYDNdfyn+uGf7RMqEk6JMgJyMKsgRzT98EyU5EYLNT276lLD4
JA2i4UnZZm6KMIvk8QQzq3iWE/xRnqmQIu0kUEDDmsQZidQD/ZipKBpAu9FjENA1
3eTAvYCfArGUif936bzIp76b7+ThebgpHlH4pi0F+aitkwnJEQIfrcmEpt4aXtUV
RpThZ8UMgZZ80K4L+gK8GC1E1A6ObwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFN/X
pLwO2aOD/QyM3uNRb8oA07rxMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BNjczMDM2RTM2RjYxMUYwOEJBQjExQjNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt8QMA0GCSqGSIb3DQEB
CwUAA4IBAQDJpOVKXIvsX7ND7LwmRj98gBgkD+j8159QVQTOzRf651gkQ2lZoxZp
uiqEKJjRekf5Ue4wsZ94lfnfnwyN6Xfua84ugN7Dsnd4pYpCuAw6JGcqEIxyOJHH
A9UdoGjXD5KkWtDezVDSPwsv22HNQw4wZegpJRliCTYqzxlrirs74Q3a0gyGC/0n
Z5EeCg3ENC2n8cde929N5jlMqv3l3gLakdZwRqurprjitXuBwffDPAYYoApYuvJ5
sJqHlRl8qqlot1BH9g2gvqo3MvL4npeEojaUAK8sKbg5Sgdxfs9YG7Hoq0vdfV9h
qOgmOE/G20CQxco73z92Pxkj8K0dGNur
-----END CERTIFICATE-----
Generated at Sat Jun 7 12:30:37 2025 by rpki-client