Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6F5F4763BBF11F0AEB9F5D6DAE4EC9C.roa
File: B6F5F4763BBF11F0AEB9F5D6DAE4EC9C.roa (raw, json)
Hash identifier: kKt3Yy+GZreUN/txfnAo3qHbTDXER6dqXA8xydTxBsU=
Subject key identifier: B1:2F:FD:CC:26:F1:33:C7:61:CA:A7:9B:E4:E4:FF:45:F6:52:0C:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018366
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6F5F4763BBF11F0AEB9F5D6DAE4EC9C.roa
Signing time: Wed 28 May 2025 12:31:45 +0000
ROA not before: Wed 28 May 2025 12:31:40 +0000
ROA not after: Sun 06 Jul 2025 12:31:40 +0000
asID: 202656
IP address blocks: 154.218.28.0/24 maxlen: 24
154.218.29.0/24 maxlen: 24
154.219.193.0/24 maxlen: 24
154.219.194.0/24 maxlen: 24
154.219.196.0/24 maxlen: 24
154.219.198.0/24 maxlen: 24
154.219.199.0/24 maxlen: 24
154.219.200.0/24 maxlen: 24
154.219.201.0/24 maxlen: 24
154.219.202.0/24 maxlen: 24
154.219.203.0/24 maxlen: 24
154.219.204.0/24 maxlen: 24
154.219.205.0/24 maxlen: 24
154.220.1.0/24 maxlen: 24
154.221.1.0/24 maxlen: 24
154.221.53.0/24 maxlen: 24
154.221.54.0/24 maxlen: 24
154.221.55.0/24 maxlen: 24
154.221.62.0/24 maxlen: 24
154.221.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 00:06:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99174 (0x18366)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 12:31:40 2025 GMT
Not After : Jul 6 12:31:40 2025 GMT
Subject: CN=68370231-6555
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a8:da:88:ca:e8:e2:36:5b:e7:8f:85:c2:90:
70:96:af:dd:52:d9:04:e8:cf:03:c7:e3:ab:8b:50:
51:45:b9:b0:f0:cb:49:a9:55:3c:62:b7:10:42:ce:
e2:60:e9:da:cb:2d:9c:cb:31:cd:ae:b6:75:93:a7:
c0:89:f2:97:1a:cc:c3:36:46:42:ae:7b:da:bd:14:
5c:32:d6:ee:02:d4:02:8b:34:6e:30:c1:03:84:9d:
40:71:68:fe:cb:23:a2:ba:ef:a0:bc:6b:5b:89:0b:
7e:3f:1e:b0:9f:fa:07:82:35:ee:3b:1c:ee:02:22:
3e:5e:e0:3d:f8:3c:e1:97:fe:d5:14:e6:d2:1d:25:
47:bb:94:cf:20:42:7b:6b:22:0e:0b:73:53:cf:c6:
ce:20:d3:d0:ad:4e:b7:67:67:bd:2e:5b:ec:ff:1e:
19:c2:9b:f6:8d:0c:4f:71:cd:93:06:f9:cb:16:d1:
96:74:b2:8a:8b:18:34:69:e1:7f:9d:67:c8:06:a9:
ae:a5:39:1f:f9:c6:38:93:fd:b3:65:e6:2f:b0:3d:
82:b4:a3:10:3b:c4:14:f3:0a:cc:c6:6a:c0:d7:29:
eb:54:91:d7:ac:e9:65:cd:78:7a:4e:e2:28:f8:e7:
34:d0:58:06:39:7a:ac:fd:e2:64:05:52:ab:18:a4:
45:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:2F:FD:CC:26:F1:33:C7:61:CA:A7:9B:E4:E4:FF:45:F6:52:0C:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B6F5F4763BBF11F0AEB9F5D6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.28.0/23
154.219.193.0-154.219.194.255
154.219.196.0/24
154.219.198.0-154.219.205.255
154.220.1.0/24
154.221.1.0/24
154.221.53.0-154.221.55.255
154.221.62.0/23
Signature Algorithm: sha256WithRSAEncryption
93:a5:c3:e1:f5:72:8b:59:65:a6:db:a1:0d:61:02:d5:d3:99:
a9:37:10:88:32:f1:d3:fc:52:03:73:42:64:16:9a:b2:0f:72:
fb:da:3c:2e:f6:54:46:da:03:62:5c:37:82:d2:82:6b:d3:39:
81:b2:68:d9:31:40:cc:e6:5c:7f:9d:91:6a:c2:71:d8:23:cb:
a7:97:cc:55:7c:f6:96:e8:fc:10:13:a6:51:d0:3b:a1:ba:bb:
b7:3c:bf:45:d8:4d:6a:23:38:9e:6f:1e:61:bb:f2:e5:1a:b3:
ed:5b:b2:79:2c:62:f3:22:c8:39:c5:c8:3b:11:af:cc:c1:a0:
75:eb:2a:ea:1e:3b:5f:2c:d5:55:28:c6:78:62:0b:53:a4:45:
2b:2e:90:ea:0e:b5:5d:ef:b9:2b:7a:65:6c:bd:02:e6:0f:bd:
54:05:1a:3c:6c:e1:f8:ec:44:de:e4:2f:45:a9:56:99:8d:07:
f6:55:6a:89:ae:fb:e5:5e:1a:bb:c6:36:f8:df:d4:d2:f0:17:
e3:56:8e:c1:92:32:d0:d6:71:b8:ea:10:c3:f6:ef:27:1f:5c:
67:44:fe:79:48:e8:c5:87:63:15:4b:bf:df:b2:be:8b:9b:a0:
61:c5:22:43:d8:5b:97:71:e2:56:19:63:4a:77:f3:78:8e:de:
15:4e:ee:16
-----BEGIN CERTIFICATE-----
MIIFxjCCBK6gAwIBAgIDAYNmMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTI4MTIzMTQwWhcNMjUwNzA2MTIzMTQwWjAYMRYw
FAYDVQQDEw02ODM3MDIzMS02NTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxajaiMro4jZb54+FwpBwlq/dUtkE6M8Dx+Ori1BRRbmw8MtJqVU8YrcQ
Qs7iYOnayy2cyzHNrrZ1k6fAifKXGszDNkZCrnvavRRcMtbuAtQCizRuMMEDhJ1A
cWj+yyOiuu+gvGtbiQt+Px6wn/oHgjXuOxzuAiI+XuA9+Dzhl/7VFObSHSVHu5TP
IEJ7ayIOC3NTz8bOINPQrU63Z2e9Llvs/x4Zwpv2jQxPcc2TBvnLFtGWdLKKixg0
aeF/nWfIBqmupTkf+cY4k/2zZeYvsD2CtKMQO8QU8wrMxmrA1ynrVJHXrOllzXh6
TuIo+Oc00FgGOXqs/eJkBVKrGKRFCwIDAQABo4IC5zCCAuMwHQYDVR0OBBYEFLEv
/cwm8TPHYcqnm+Tk/0X2UgxvMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNkY1RjQ3NjNCQkYxMUYwQUVCOUY1RDZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMGEGCCsGAQUFBwEHAQH/BFIwUDBOBAIAATBIAwQBmtocMAwDBACa28EDBACa
28IDBACa28QwDAMEAZrbxgMEAZrbzAMEAJrcAQMEAJrdATAMAwQAmt01AwQDmt0w
AwQBmt0+MA0GCSqGSIb3DQEBCwUAA4IBAQCTpcPh9XKLWWWm26ENYQLV05mpNxCI
MvHT/FIDc0JkFpqyD3L72jwu9lRG2gNiXDeC0oJr0zmBsmjZMUDM5lx/nZFqwnHY
I8unl8xVfPaW6PwQE6ZR0Duhuru3PL9F2E1qIziebx5hu/LlGrPtW7J5LGLzIsg5
xcg7Ea/MwaB16yrqHjtfLNVVKMZ4YgtTpEUrLpDqDrVd77kremVsvQLmD71UBRo8
bOH47ETe5C9FqVaZjQf2VWqJrvvlXhq7xjb439TS8BfjVo7BkjLQ1nG46hDD9u8n
H1xnRP55SOjFh2MVS7/fsr6Lm6BhxSJD2FuXceJWGWNKd/N4jt4VTu4W
-----END CERTIFICATE-----
Generated at Sat Jun 7 04:59:42 2025 by rpki-client