Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2F62C7C408611F093B42AE5DAE4EC9C.roa
File: F2F62C7C408611F093B42AE5DAE4EC9C.roa (raw, json)
Hash identifier: 4wdRJU7Hq+7XrSKyy3eJ7lyrnZbSGiA3U1UNzH0A6X4=
Subject key identifier: C7:BB:F6:91:F1:8C:30:CC:B9:AC:A7:1F:31:A9:52:43:67:C6:CD:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018497
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2F62C7C408611F093B42AE5DAE4EC9C.roa
Signing time: Tue 03 Jun 2025 14:28:00 +0000
ROA not before: Tue 03 Jun 2025 14:27:55 +0000
ROA not after: Sun 03 Aug 2025 14:27:55 +0000
asID: 63139
IP address blocks: 154.94.64.0/24 maxlen: 24
154.94.65.0/24 maxlen: 24
154.94.66.0/23 maxlen: 24
154.94.75.0/24 maxlen: 24
154.94.76.0/24 maxlen: 24
154.94.77.0/24 maxlen: 24
154.94.78.0/24 maxlen: 24
154.94.80.0/24 maxlen: 24
154.94.81.0/24 maxlen: 24
154.94.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 07:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99479 (0x18497)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 14:27:55 2025 GMT
Not After : Aug 3 14:27:55 2025 GMT
Subject: CN=683f0670-3f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:30:a0:bc:36:d5:39:d6:fa:d3:42:cb:de:59:
79:ff:ed:72:df:eb:46:02:61:45:68:6a:c3:dc:56:
41:98:93:c4:c2:a6:ea:50:c9:1d:cc:f6:1f:fa:30:
f4:00:32:19:80:d2:78:56:81:c1:68:7c:0d:6e:48:
55:81:4b:f8:e6:fb:9e:4c:e2:3c:78:c3:22:f9:38:
30:35:6d:c7:8f:4d:fd:20:9d:8c:a1:ae:f3:88:8c:
f0:0d:99:73:26:c2:f1:7f:8c:5f:b6:e1:57:a2:16:
55:91:66:55:6c:71:f6:32:69:a8:8a:56:f0:48:5b:
e1:39:f9:c2:cb:28:ae:e7:b5:d4:0a:2b:21:8c:2e:
1e:e4:63:7b:6f:02:b6:29:f3:74:a8:27:60:5f:5b:
04:4d:27:97:0d:a8:25:16:6d:ce:d2:99:6d:57:d3:
0b:f6:98:0b:2d:d6:49:e6:b1:9c:46:b5:d0:ca:90:
bc:b4:5d:c4:c8:06:94:8f:60:d4:fc:23:f7:df:88:
30:85:cb:86:bf:e4:cd:2a:29:d3:98:cd:04:01:c2:
08:77:3c:15:78:93:29:bb:16:78:00:64:24:d4:5f:
6e:ef:38:0c:e6:cc:a3:b4:86:e7:43:fe:5f:6a:02:
e8:16:70:53:ae:1e:26:1d:3e:32:34:3e:5c:52:91:
49:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:BB:F6:91:F1:8C:30:CC:B9:AC:A7:1F:31:A9:52:43:67:C6:CD:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F2F62C7C408611F093B42AE5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.64.0/22
154.94.75.0-154.94.78.255
154.94.80.0-154.94.82.255
Signature Algorithm: sha256WithRSAEncryption
78:c8:95:7b:0f:b3:25:1e:1c:2d:91:ea:48:c2:19:f4:76:9d:
8b:45:31:cf:64:de:17:45:f5:6d:e7:44:c1:f7:7a:a9:6c:bf:
95:6d:40:08:1f:8b:2c:b5:32:a5:7e:bc:ec:75:d3:17:a9:aa:
96:79:77:dd:4a:8c:0a:53:ff:44:d9:2d:d8:0d:51:3f:59:96:
93:a6:5b:62:20:75:9c:c6:62:60:e7:33:64:f1:5b:49:8f:48:
10:01:6b:b9:2c:3c:14:6a:38:f0:9e:c9:48:90:d5:28:38:55:
63:fc:fe:13:b3:ce:05:cb:44:fd:5d:4f:fc:2d:16:50:19:6d:
da:b1:08:2e:3f:28:97:4c:7c:9a:11:8d:f9:86:b9:27:da:5e:
01:9e:b3:63:c1:34:ef:92:a3:f2:37:db:46:f7:ec:85:96:79:
18:a0:3e:93:db:df:54:47:8b:77:95:25:14:82:46:04:88:e0:
6b:5b:9b:dc:bf:a3:23:1c:50:80:10:bf:38:50:b1:c7:b9:00:
2b:2f:25:b4:62:35:a3:a5:56:17:49:52:d1:0f:ad:b6:55:35:
36:95:6d:25:aa:06:0a:f5:4c:83:b4:91:0b:1d:4c:35:54:cf:
07:19:ad:d7:da:ed:44:83:f3:68:97:ad:cb:b6:e6:01:28:84:
f6:79:f6:b8
-----BEGIN CERTIFICATE-----
MIIFoDCCBIigAwIBAgIDAYSXMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjAzMTQyNzU1WhcNMjUwODAzMTQyNzU1WjAYMRYw
FAYDVQQDEw02ODNmMDY3MC0zZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6jCgvDbVOdb600LL3ll5/+1y3+tGAmFFaGrD3FZBmJPEwqbqUMkdzPYf
+jD0ADIZgNJ4VoHBaHwNbkhVgUv45vueTOI8eMMi+TgwNW3Hj039IJ2Moa7ziIzw
DZlzJsLxf4xftuFXohZVkWZVbHH2MmmoilbwSFvhOfnCyyiu57XUCishjC4e5GN7
bwK2KfN0qCdgX1sETSeXDaglFm3O0pltV9ML9pgLLdZJ5rGcRrXQypC8tF3EyAaU
j2DU/CP334gwhcuGv+TNKinTmM0EAcIIdzwVeJMpuxZ4AGQk1F9u7zgM5syjtIbn
Q/5fagLoFnBTrh4mHT4yND5cUpFJGQIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFMe7
9pHxjDDMuaynHzGpUkNnxs2TMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GMkY2MkM3QzQwODYxMUYwOTNCNDJBRTVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiAwQCml5AMAwDBACaXksDBACa
Xk4wDAMEBJpeUAMEAJpeUjANBgkqhkiG9w0BAQsFAAOCAQEAeMiVew+zJR4cLZHq
SMIZ9Hadi0Uxz2TeF0X1bedEwfd6qWy/lW1ACB+LLLUypX687HXTF6mqlnl33UqM
ClP/RNkt2A1RP1mWk6ZbYiB1nMZiYOczZPFbSY9IEAFruSw8FGo48J7JSJDVKDhV
Y/z+E7POBctE/V1P/C0WUBlt2rEILj8ol0x8mhGN+Ya5J9peAZ6zY8E075Kj8jfb
RvfshZZ5GKA+k9vfVEeLd5UlFIJGBIjga1ub3L+jIxxQgBC/OFCxx7kAKy8ltGI1
o6VWF0lS0Q+ttlU1NpVtJaoGCvVMg7SRCx1MNVTPBxmt19rtRIPzaJety7bmASiE
9nn2uA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 19:49:01 2025 by rpki-client