Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E486633A3AD411F098AB3DE2DAE4EC9C.roa
File: E486633A3AD411F098AB3DE2DAE4EC9C.roa (raw, json)
Hash identifier: JyKyOljjYwnzbMWyR/KjC7RxJ522wxrZ2eNiVxBuBac=
Subject key identifier: B8:57:48:93:5B:59:79:B9:A2:5E:FD:EA:FC:A7:87:27:18:15:91:EA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0182E3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E486633A3AD411F098AB3DE2DAE4EC9C.roa
Signing time: Tue 27 May 2025 08:30:49 +0000
ROA not before: Tue 27 May 2025 08:30:45 +0000
ROA not after: Wed 27 Aug 2025 08:30:45 +0000
asID: 135377
IP address blocks: 154.197.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99043 (0x182e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 27 08:30:45 2025 GMT
Not After : Aug 27 08:30:45 2025 GMT
Subject: CN=68357839-a82a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:91:35:75:8f:44:58:4f:11:c6:f4:ab:1c:40:
b2:c7:38:9f:c5:24:0d:ba:aa:4a:cb:79:27:20:89:
06:c5:8b:58:34:dc:b1:00:c1:0b:2f:90:36:4b:f8:
32:e1:59:b4:e1:cd:9d:28:8b:5e:f5:eb:a9:ad:8a:
da:d7:fa:45:8b:d0:12:4a:41:9a:de:ce:12:b2:a8:
f8:fc:3e:9f:3a:07:84:13:78:be:cd:f4:49:77:34:
a8:39:34:df:11:55:85:24:fd:41:e1:db:3c:3c:39:
53:21:69:4b:ab:64:28:33:72:a8:ad:dd:be:9b:b3:
1d:e3:fe:51:03:c4:24:db:1d:9c:54:db:28:c6:2e:
b0:01:2d:ba:12:81:3f:ae:1f:53:a5:88:be:7f:b0:
9f:68:a7:87:ac:bc:55:10:58:1b:e8:2b:b2:9e:9a:
42:5f:bf:1c:8f:2a:1a:d0:67:b2:17:a0:f0:df:5f:
7a:96:73:36:c9:a2:49:e8:87:47:a9:9c:7d:4d:83:
5e:e3:bd:27:de:fa:21:bb:ec:b4:46:cc:79:58:9e:
f8:7f:89:e3:dc:61:b1:71:e9:5e:61:e8:52:2c:cb:
f9:24:93:63:a5:da:b2:59:5b:a1:52:b9:82:ae:a6:
57:0f:32:59:d4:e0:83:93:98:d1:fd:10:0c:fc:e1:
bb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:57:48:93:5B:59:79:B9:A2:5E:FD:EA:FC:A7:87:27:18:15:91:EA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E486633A3AD411F098AB3DE2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.56.0/23
Signature Algorithm: sha256WithRSAEncryption
44:93:72:71:11:f9:76:9d:55:21:a2:77:b3:03:25:2b:cf:44:
73:6d:90:53:f9:9a:7b:cd:a5:36:0d:f5:4e:84:57:35:67:b4:
cf:06:94:1a:da:d9:1d:8c:df:42:59:23:94:b7:28:3d:f0:36:
73:67:96:43:c2:18:40:ff:a1:65:9b:6f:b2:a9:97:6e:2d:20:
e4:3e:1d:d4:a0:69:9c:34:12:92:15:a2:87:37:56:13:71:d5:
60:a1:a0:1c:94:30:a8:d0:b3:58:d0:1c:3e:c3:fe:b3:e3:d1:
59:97:c6:38:19:7f:91:0f:f0:58:4e:3e:bc:c8:8a:16:77:c0:
e1:f3:a0:1d:36:16:14:1c:f2:2c:f6:f4:cf:47:c4:20:f1:a6:
35:ba:83:88:ce:e9:4a:25:1d:d2:24:7a:15:87:d1:a0:80:03:
f5:53:70:4e:62:b7:30:33:4d:42:04:d2:10:13:31:41:a9:90:
5e:14:e4:ad:6b:3a:b7:38:aa:c3:e8:0f:63:c3:b6:d0:70:f7:
34:9f:96:b1:30:2e:d6:9a:25:11:70:a9:bd:3c:83:fb:ad:54:
95:ef:d1:f2:31:67:ad:a0:88:8d:9e:bb:04:f8:45:b0:88:a0:
21:ce:24:43:10:14:1d:72:20:a2:84:09:ca:57:0f:4c:cd:f4:
48:e9:8a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:52:00 2025 by rpki-client