Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B19F842238AB11F0802FC7CADAE4EC9C.roa
File: B19F842238AB11F0802FC7CADAE4EC9C.roa (raw, json)
Hash identifier: MGEQmIKJOC1pvVjxBYP9Br1thi0UiyxyRo14OldvWh8=
Subject key identifier: E2:73:BC:34:B9:19:D6:6F:BA:A2:22:C3:A1:C3:47:7C:69:59:9A:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01829C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B19F842238AB11F0802FC7CADAE4EC9C.roa
Signing time: Sat 24 May 2025 14:30:52 +0000
ROA not before: Sat 24 May 2025 14:30:47 +0000
ROA not after: Mon 30 Jun 2025 14:30:47 +0000
asID: 139880
IP address blocks: 154.206.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98972 (0x1829c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 24 14:30:47 2025 GMT
Not After : Jun 30 14:30:47 2025 GMT
Subject: CN=6831d81c-57ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2c:f1:a4:41:e0:b5:08:60:41:34:3e:56:2b:
6e:4c:55:b7:78:05:28:7a:35:52:7c:d5:cf:cd:d7:
29:3b:bd:48:16:a0:04:6c:28:2a:19:fc:9f:f2:33:
9b:84:b7:10:fa:a9:9e:9c:4e:50:e4:27:23:1f:84:
9f:b4:0e:04:4e:fc:ea:b5:52:e7:ac:3b:66:98:1b:
bb:68:42:a3:f4:10:42:f8:dd:27:b7:a8:1f:7e:9c:
50:9e:1c:0f:3c:c7:13:03:a9:26:2f:33:5f:cf:84:
c4:6d:5a:e0:a2:98:43:ac:85:bf:5b:9e:2f:21:15:
a3:ec:56:3f:69:f2:15:4a:47:32:7f:6d:39:b7:1d:
e2:7e:cb:14:81:2f:3c:54:10:ba:24:f4:fa:08:85:
3f:85:3f:62:5c:b1:84:f3:a6:7a:fd:0d:8b:ae:60:
36:06:58:09:ee:23:97:09:9e:e5:17:6c:1d:e3:47:
d8:27:31:2e:98:49:a3:c4:63:d4:5b:a4:bf:76:33:
3a:46:a7:b7:6f:66:5a:98:34:68:4d:f9:ba:a2:1c:
a6:d4:74:d4:45:dc:b4:0e:1f:4e:76:fb:63:5b:2e:
00:24:25:50:93:a8:54:d7:e8:8c:15:a7:6b:04:a1:
68:0a:5c:bc:02:cf:85:45:62:d4:09:da:20:1b:a8:
f2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:73:BC:34:B9:19:D6:6F:BA:A2:22:C3:A1:C3:47:7C:69:59:9A:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B19F842238AB11F0802FC7CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.128.0/18
Signature Algorithm: sha256WithRSAEncryption
70:25:2e:ee:00:47:5c:ab:d0:e1:1a:2a:34:43:ee:86:5e:a1:
fe:64:80:2c:e1:0a:7f:e7:5f:2a:18:34:0d:98:4f:03:02:b4:
92:3d:19:28:e9:ec:fb:54:cc:46:f2:df:92:66:e0:fa:4f:9f:
3d:ba:c9:6c:70:fe:6d:03:95:d6:ed:79:e6:b3:95:36:30:60:
1e:37:cd:67:f5:0c:dd:b3:bb:da:61:9b:ef:1b:bd:9a:20:03:
96:4f:05:20:e4:0e:ef:f3:69:d3:06:fb:04:cc:1f:c4:c9:ba:
5c:dc:84:65:f4:7b:5e:59:37:87:ff:fc:33:15:00:c6:54:7c:
f3:24:00:1f:3c:e6:36:45:7e:07:3f:ba:de:ce:a0:11:43:1e:
cf:06:c9:bf:f9:b2:ab:8f:24:ab:7b:e6:b1:a8:92:50:c3:d8:
b8:8a:4c:6f:17:e2:88:37:de:08:15:8a:7d:3f:6a:46:fd:c7:
cb:4f:4b:66:1c:81:d6:79:61:96:63:a4:62:76:d6:b7:33:e5:
23:2c:85:5d:d1:49:e0:63:81:f7:2b:0e:10:2b:3d:83:1e:67:
b6:04:60:46:d9:7c:a6:d5:fb:a4:dc:7c:ef:dd:63:d9:46:3c:
ce:e5:23:b6:fa:a8:66:19:74:d5:09:d6:e7:bd:95:41:a4:79:
7a:aa:f2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:46:37 2025 by rpki-client