Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E09AE29A406611F09E77AD99DAE4EC9C.roa
File: E09AE29A406611F09E77AD99DAE4EC9C.roa (raw, json)
Hash identifier: 1dFmfh1bO7Fj3bkWgvRL2E8Udd5RXmCsyIdVKBaAwb8=
Subject key identifier: 31:BC:8D:C1:47:FF:3D:26:01:D5:2A:E9:33:92:59:C6:D3:D3:B9:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01845B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E09AE29A406611F09E77AD99DAE4EC9C.roa
Signing time: Tue 03 Jun 2025 10:38:25 +0000
ROA not before: Tue 03 Jun 2025 10:38:20 +0000
ROA not after: Tue 08 Jul 2025 10:38:20 +0000
asID: 147176
IP address blocks: 154.84.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99419 (0x1845b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 10:38:20 2025 GMT
Not After : Jul 8 10:38:20 2025 GMT
Subject: CN=683ed0a1-f313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:90:73:95:21:8a:88:d7:62:1f:73:2e:64:7f:
06:f2:9e:29:48:fd:67:19:35:ae:bd:9b:98:23:a7:
a4:af:fb:e0:78:99:43:e5:1d:3b:13:b5:01:f4:da:
28:2e:bb:69:55:d9:1d:35:44:9d:b2:eb:38:03:5f:
8c:47:5a:87:8a:a2:4a:c6:e2:f6:f7:04:24:cf:30:
c8:f9:10:42:52:b4:f0:52:8c:9d:8d:58:90:b3:8f:
19:97:a6:c3:d6:11:39:ed:70:37:b5:76:28:61:71:
4b:7c:3b:c1:b8:71:74:37:f2:ea:99:fe:b8:1c:e5:
ee:f4:a5:b1:e7:88:7d:e0:cb:8e:6e:bd:cc:d8:22:
d9:f1:a0:26:b7:4b:79:9c:6d:2a:43:ff:a1:18:78:
1c:0d:bc:41:58:37:c2:ee:98:3d:08:91:ef:a5:9f:
d2:36:ea:f8:79:2f:04:a9:fb:39:67:de:f1:92:ef:
96:f5:f9:bc:21:b5:d3:74:eb:9d:e6:9d:c2:b1:1a:
58:9a:26:38:f8:1b:8a:38:a7:01:1c:63:26:c8:e7:
03:ae:df:ba:38:b6:e7:38:a2:1a:8a:4b:bc:a4:44:
3c:97:da:e0:78:d8:f7:62:f4:38:f8:16:b2:54:6f:
2a:9d:c6:ee:5d:d7:73:01:26:7c:da:ad:e8:80:3a:
26:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:BC:8D:C1:47:FF:3D:26:01:D5:2A:E9:33:92:59:C6:D3:D3:B9:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E09AE29A406611F09E77AD99DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.153.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:9a:1a:59:be:97:08:01:0f:9b:ae:3f:8f:50:bc:28:b9:17:
f9:02:a6:bb:74:f1:17:b5:28:ae:ed:e5:22:cf:84:68:2c:53:
ea:91:69:ee:bc:26:f6:6e:6f:0c:8e:a8:31:ee:bf:dc:db:f1:
52:6d:a7:a7:bb:c9:b0:e8:0a:0d:35:73:cc:ca:56:0a:35:60:
64:a7:9c:e9:bc:6b:a3:9f:8f:40:de:06:4a:4f:67:72:e5:d8:
70:74:ce:2a:88:cd:4a:42:0f:70:95:b7:2c:ea:9f:cf:1d:0e:
72:6e:01:d2:a8:f1:40:0b:1b:dc:89:89:a5:fb:b9:48:66:e2:
b1:79:b9:8e:5c:fc:1b:29:88:7e:a0:58:64:75:7f:4d:0e:9d:
f9:62:52:df:00:3c:2e:11:15:69:73:ee:92:f7:3d:d4:fa:2c:
d3:8d:5c:6a:f9:fb:b5:8a:d4:ef:8b:e2:d1:06:fa:96:72:6b:
b9:b6:72:c3:6a:dc:8e:32:8b:7e:85:54:a5:e7:94:da:a3:ea:
b5:cb:2c:72:6e:1b:29:63:3d:8e:3d:fe:f7:8b:f5:9d:c0:e2:
9c:58:44:12:32:b2:a3:97:fa:8b:b3:4f:21:c0:fe:d6:63:dd:
eb:43:c4:4d:2f:a0:df:30:93:11:56:ed:7b:c7:0d:d7:e4:68:
8d:f7:a6:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:42:53 2025 by rpki-client