Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADCA6C54407611F0BB2EDC7EDAE4EC9C.roa
File: ADCA6C54407611F0BB2EDC7EDAE4EC9C.roa (raw, json)
Hash identifier: xNDTkDyYX40syALbYUwWc+Z8ZJVneG9GHfwRZtuT61g=
Subject key identifier: 35:56:39:F2:7C:F8:93:97:05:5A:7A:99:46:70:BA:8E:AA:4F:51:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018479
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADCA6C54407611F0BB2EDC7EDAE4EC9C.roa
Signing time: Tue 03 Jun 2025 12:31:32 +0000
ROA not before: Tue 03 Jun 2025 12:31:26 +0000
ROA not after: Tue 15 Jul 2025 12:31:26 +0000
asID: 63139
IP address blocks: 154.203.178.0/24 maxlen: 24
154.203.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99449 (0x18479)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 12:31:26 2025 GMT
Not After : Jul 15 12:31:26 2025 GMT
Subject: CN=683eeb24-6889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c8:eb:a4:b2:4d:80:48:44:c1:2e:0b:1a:9b:
6f:af:c2:f8:f8:df:ec:b6:00:a5:bd:5f:da:7c:89:
8f:0c:dd:e8:11:8f:23:a8:29:15:33:5e:7d:66:8f:
29:53:bd:f3:61:b8:69:bb:ba:74:0e:4e:1c:a5:43:
34:7f:d0:62:12:6a:4c:c6:cb:f6:67:25:76:34:79:
8b:f1:f3:c6:ed:6e:e0:02:52:1b:3e:f8:32:26:83:
a7:7b:c5:79:c0:23:7b:ba:30:5e:93:82:95:80:5c:
a8:eb:25:d3:97:66:a4:af:b9:6f:00:b2:d9:5e:91:
07:ee:c5:a3:ec:91:f9:77:bf:f0:3c:58:5e:cd:15:
c5:12:43:c3:01:5b:27:8d:c6:2a:44:49:d9:12:4b:
99:24:76:15:e5:61:02:f8:e3:42:05:b3:90:d5:83:
7f:9a:db:6b:6d:66:9f:43:b5:1c:d4:b8:2a:64:26:
03:e0:8f:6d:a2:20:c0:ec:7c:cd:12:29:0e:40:f4:
27:8b:95:2e:bc:c6:c1:20:cf:bf:eb:b2:93:7b:7d:
f6:de:89:0f:fb:88:ea:aa:3e:4d:a4:02:1e:96:67:
3c:d4:4e:4c:76:7e:51:7f:32:48:4b:ce:c4:f4:ca:
aa:37:c0:83:d1:ac:ef:ba:b1:46:42:8e:66:0b:70:
28:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:56:39:F2:7C:F8:93:97:05:5A:7A:99:46:70:BA:8E:AA:4F:51:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADCA6C54407611F0BB2EDC7EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.178.0/23
Signature Algorithm: sha256WithRSAEncryption
86:3c:e6:aa:20:13:ea:80:3f:cd:de:7f:e5:30:ad:51:70:06:
17:96:f8:49:8c:d0:29:40:5c:ba:c7:6b:1e:cd:df:5c:7d:65:
ba:4c:36:01:3b:8b:15:4d:fb:a6:15:e5:76:6e:e3:d5:55:84:
a9:87:77:d7:d8:d7:b8:2c:b6:c4:35:56:d0:c7:11:14:66:ce:
4c:c0:d7:b2:7d:ef:c1:c0:46:55:e1:14:45:71:ef:13:6b:a9:
63:a5:0e:0c:b4:92:46:37:8f:99:52:42:00:36:d5:f2:87:68:
4e:ce:c7:04:40:09:f4:92:0b:c7:16:13:4a:ae:01:2f:4b:73:
4f:d0:90:eb:39:90:bb:6f:5c:ca:d4:e3:f8:53:cd:0d:fa:2d:
33:e1:67:fa:cc:63:d7:8f:ec:00:06:bc:4d:e4:bc:59:7c:89:
51:e7:cd:3a:4c:7b:e4:5e:5d:3f:21:ae:fa:3a:9e:88:7c:7c:
9c:9f:94:24:cc:fa:02:dd:6c:63:4a:e6:25:ef:c7:39:b5:a9:
fc:3b:aa:ae:98:3d:4f:f3:96:be:72:5d:77:06:aa:cf:19:12:
64:52:b9:c2:ff:36:e6:1d:2b:ca:3d:4d:04:ca:3f:30:28:ca:
bf:41:35:1b:f1:b8:7a:91:59:eb:4a:3e:76:aa:7b:77:5b:11:
7a:cf:3c:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:45:28 2025 by rpki-client