Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B926922C378811F0BB5487E6DAE4EC9C.roa
File: B926922C378811F0BB5487E6DAE4EC9C.roa (raw, json)
Hash identifier: R5Eg8dognuBBv2GIJl1sn6RFQ9YDs/zpBD/gkc9v+9E=
Subject key identifier: E3:35:EB:94:28:42:1A:03:2D:E2:3D:09:70:33:88:01:E7:D0:9A:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0181EA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B926922C378811F0BB5487E6DAE4EC9C.roa
Signing time: Fri 23 May 2025 03:48:01 +0000
ROA not before: Fri 23 May 2025 03:47:56 +0000
ROA not after: Sun 22 Jun 2025 03:47:56 +0000
asID: 134365
IP address blocks: 154.198.40.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 07:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98794 (0x181ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 03:47:56 2025 GMT
Not After : Jun 22 03:47:56 2025 GMT
Subject: CN=682feff1-a105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:da:05:db:be:a3:51:f5:48:7b:7f:82:83:90:
a5:ac:a3:2f:6f:c0:2e:d6:d3:76:75:2a:f9:43:d9:
86:f6:fa:7e:c9:ac:fa:e3:f6:f2:75:f7:a0:57:31:
af:d6:d8:4d:67:23:7b:d5:de:ef:cc:ec:fd:2b:d4:
24:17:2e:9f:ad:2f:42:cf:40:73:eb:53:aa:75:21:
97:57:77:2e:6d:f5:80:0c:bd:a8:4d:49:1e:cc:d8:
ab:69:43:08:eb:15:06:53:ff:72:5c:21:be:14:ad:
31:00:72:cc:bd:35:14:f4:e9:bf:90:87:a3:eb:0b:
eb:4a:d1:04:9b:09:c7:99:ae:62:eb:8c:2f:92:24:
2e:7e:a3:28:7f:9a:5e:21:79:4a:51:5c:cd:31:c6:
74:67:28:7f:5c:5f:fc:3c:86:eb:5b:0b:c4:2b:86:
95:4f:33:1a:f0:0a:bb:72:9a:b2:09:5c:e2:2d:cd:
dd:67:97:a1:69:ed:1a:ae:d6:2d:83:95:81:bb:cf:
85:28:fb:93:46:ff:b9:ba:c7:b4:de:01:58:54:32:
ae:34:2b:7e:61:ed:17:a2:7f:ea:8f:a7:7e:4a:08:
4f:02:be:a4:e4:37:8b:c1:e8:da:79:c9:1e:49:a0:
d6:d8:44:a4:ce:91:e0:0c:52:42:b7:7f:5f:40:8f:
f8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:35:EB:94:28:42:1A:03:2D:E2:3D:09:70:33:88:01:E7:D0:9A:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B926922C378811F0BB5487E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.40.0/22
Signature Algorithm: sha256WithRSAEncryption
08:84:24:d6:bc:fc:bf:56:96:87:9a:5b:40:77:29:91:3a:4f:
11:68:19:11:28:d1:75:ad:bf:5d:52:79:bd:0d:c3:31:c1:62:
24:e5:81:75:80:79:8b:77:a8:7f:88:54:76:10:6b:99:50:48:
96:16:a7:71:ba:96:bb:ff:99:bc:e5:02:ed:aa:87:90:ae:af:
ca:8a:cb:4d:b6:8a:e2:21:e5:5b:25:08:8a:5f:2b:24:81:8b:
be:09:86:d5:0c:38:5a:8b:f2:9e:fc:53:db:44:ed:25:85:c1:
70:fe:21:b8:36:f4:2e:2c:f5:36:49:43:bc:da:ad:37:19:a6:
76:f7:a9:f6:98:b4:52:a2:91:6f:bd:98:8a:84:90:92:38:3e:
ad:79:8f:66:ad:5c:43:7d:21:6f:13:49:a0:12:4a:e9:4c:0f:
08:51:49:95:68:b7:c3:f8:1f:d7:e7:0f:b6:f5:c6:89:3d:c8:
81:3c:39:fe:80:49:d7:a2:92:6a:8a:c6:5a:68:3b:fe:81:2b:
97:95:8c:4b:6c:57:13:00:32:71:95:ba:97:43:d0:46:95:8b:
eb:b7:1d:23:6f:6f:a5:49:4b:40:09:92:7b:5b:aa:a8:92:08:
e6:0a:63:ea:eb:41:01:17:ea:dc:78:71:c1:06:d7:be:01:1f:
f8:62:a2:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:27:24 2025 by rpki-client