Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2F097CE3D4C11F0AEB9C1EBDAE4EC9C.roa
File: D2F097CE3D4C11F0AEB9C1EBDAE4EC9C.roa (raw, json)
Hash identifier: X5AleZmk5o+WfjR8RtZLOjE48GONHGh6uxdns8bpb1E=
Subject key identifier: CC:E0:6B:E8:41:BF:49:87:59:F7:BD:C0:65:31:D7:01:E4:00:76:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0183CB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2F097CE3D4C11F0AEB9C1EBDAE4EC9C.roa
Signing time: Fri 30 May 2025 11:54:22 +0000
ROA not before: Fri 30 May 2025 11:54:16 +0000
ROA not after: Mon 09 Jun 2025 11:54:16 +0000
asID: 13335
IP address blocks: 154.207.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99275 (0x183cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 30 11:54:16 2025 GMT
Not After : Jun 9 11:54:16 2025 GMT
Subject: CN=68399c6e-6c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:64:4c:b5:f8:9c:b0:54:a1:db:a1:83:3d:8e:
e8:a8:e8:4c:21:38:5a:7c:00:5d:89:30:d8:08:12:
6f:94:24:9c:c0:08:04:bf:d8:d9:8c:f9:55:51:6a:
fc:b4:39:91:f0:2e:18:81:6f:0e:75:6d:f6:84:c9:
77:65:fe:e9:cf:90:f6:5a:ac:b2:50:c6:21:03:4b:
ef:c3:b1:10:1d:1f:15:2b:49:ae:2a:5e:a8:9b:1f:
27:f7:25:87:60:9c:66:e4:a3:79:ee:71:02:2d:dc:
ed:55:fc:49:98:15:be:2a:89:d7:a7:a0:e2:f8:cf:
7e:28:df:c9:20:bf:a1:c0:70:02:bd:42:8c:9f:c7:
9e:25:e3:35:6d:7e:bc:4d:9e:9a:46:47:f5:80:77:
75:0e:8d:10:83:02:6b:95:e7:43:8a:ff:fa:32:9d:
2b:12:b0:e1:2f:04:c6:02:0c:e2:17:c3:5e:2f:fb:
cc:a2:80:a9:92:4a:05:87:25:bf:af:66:0c:b6:5a:
82:54:45:80:4e:1e:61:43:5f:8c:29:4f:4f:90:27:
59:94:e2:3a:bf:c9:13:2e:0d:f0:8f:65:79:6c:01:
8d:64:02:d0:95:e2:67:f6:e3:bb:79:65:b9:78:0f:
56:4f:76:91:35:bb:1c:0d:03:22:42:85:a6:d2:64:
a5:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E0:6B:E8:41:BF:49:87:59:F7:BD:C0:65:31:D7:01:E4:00:76:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2F097CE3D4C11F0AEB9C1EBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.77.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:10:be:36:e6:b6:38:78:56:99:65:16:08:28:98:b0:ce:55:
91:a4:a3:dc:ea:d7:a0:7d:09:55:dc:a5:dd:12:e8:89:8e:c2:
7e:76:87:8f:a9:4e:57:d3:a3:e0:94:95:5f:b7:02:9a:30:69:
25:5f:e4:3a:df:51:18:57:3d:ed:51:a9:10:11:23:d2:63:7c:
ea:50:22:39:c6:c2:a1:68:41:d7:5e:04:4e:16:2c:84:c8:81:
2f:7f:d3:8e:1c:2a:87:4b:5c:f1:74:a5:bd:e3:ce:25:cf:85:
80:be:5b:e5:3f:74:b4:2b:f6:c3:96:7e:94:3c:29:fd:fc:d9:
24:83:b4:f1:02:30:6d:81:dc:91:7e:1b:3f:f3:b0:4b:81:06:
29:16:8c:d6:83:48:9a:b0:07:36:24:5c:9b:ba:18:0b:1a:20:
fe:aa:89:ca:e5:74:28:58:d1:55:c9:81:3b:1f:67:b6:e7:d9:
b4:82:ba:00:10:d7:ff:66:e8:1b:1c:3e:6b:97:11:d2:83:6c:
b1:c5:75:a3:96:d3:ce:2b:21:44:ef:fd:f5:73:e1:37:39:b4:
97:df:c2:cb:3a:ee:8e:a0:a2:32:da:8c:68:04:6b:a8:88:3a:
f7:ba:9a:92:c2:b8:01:9e:d9:29:d5:e0:e9:ad:ca:83:77:e8:
fb:1e:e3:a6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYPLMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTMwMTE1NDE2WhcNMjUwNjA5MTE1NDE2WjAYMRYw
FAYDVQQDEw02ODM5OWM2ZS02YzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1mRMtficsFSh26GDPY7oqOhMIThafABdiTDYCBJvlCScwAgEv9jZjPlV
UWr8tDmR8C4YgW8OdW32hMl3Zf7pz5D2WqyyUMYhA0vvw7EQHR8VK0muKl6omx8n
9yWHYJxm5KN57nECLdztVfxJmBW+KonXp6Di+M9+KN/JIL+hwHACvUKMn8eeJeM1
bX68TZ6aRkf1gHd1Do0QgwJrledDiv/6Mp0rErDhLwTGAgziF8NeL/vMooCpkkoF
hyW/r2YMtlqCVEWATh5hQ1+MKU9PkCdZlOI6v8kTLg3wj2V5bAGNZALQleJn9uO7
eWW5eA9WT3aRNbscDQMiQoWm0mSlpQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMzg
a+hBv0mHWfe9wGUx1wHkAHYhMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EMkYwOTdDRTNENEMxMUYwQUVCOUMxRUJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms9NMA0GCSqGSIb3DQEB
CwUAA4IBAQDOEL425rY4eFaZZRYIKJiwzlWRpKPc6tegfQlV3KXdEuiJjsJ+doeP
qU5X06PglJVftwKaMGklX+Q631EYVz3tUakQESPSY3zqUCI5xsKhaEHXXgROFiyE
yIEvf9OOHCqHS1zxdKW9484lz4WAvlvlP3S0K/bDln6UPCn9/Nkkg7TxAjBtgdyR
fhs/87BLgQYpFozWg0iasAc2JFybuhgLGiD+qonK5XQoWNFVyYE7H2e259m0groA
ENf/ZugbHD5rlxHSg2yxxXWjltPOKyFE7/31c+E3ObSX38LLOu6OoKIy2oxoBGuo
iDr3upqSwrgBntkp1eDprcqDd+j7HuOm
-----END CERTIFICATE-----
Generated at Thu Jun 5 18:28:20 2025 by rpki-client