Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F53933463EE511F0815C95D1DAE4EC9C.roa
File: F53933463EE511F0815C95D1DAE4EC9C.roa (raw, json)
Hash identifier: +/+DsUVXQxWCQdWzTc7TJG2WdBVIz4Fxqwg0b0laGGs=
Subject key identifier: 27:4D:24:06:94:FA:8D:91:D0:0C:D2:F3:DE:B8:54:E4:87:35:DE:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018443
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F53933463EE511F0815C95D1DAE4EC9C.roa
Signing time: Sun 01 Jun 2025 12:43:03 +0000
ROA not before: Sun 01 Jun 2025 12:42:58 +0000
ROA not after: Wed 13 Aug 2025 12:42:58 +0000
asID: 25818
IP address blocks: 154.91.204.0/22 maxlen: 24
154.91.208.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 10 Jun 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99395 (0x18443)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 1 12:42:58 2025 GMT
Not After : Aug 13 12:42:58 2025 GMT
Subject: CN=683c4ad7-3158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:51:93:2b:f4:2b:12:f4:9f:c7:79:6a:0f:cc:
45:e0:c9:57:a8:f6:4a:b1:89:b0:dc:6b:6e:d6:8f:
58:ed:23:17:bf:d8:7e:07:c2:9e:54:21:59:eb:01:
18:ac:07:0e:ee:4b:c3:be:b4:59:b4:78:57:d6:f7:
f1:09:a1:18:bd:ee:ec:f1:d1:63:46:98:f8:26:d8:
12:18:1f:e3:58:80:a0:b8:f4:6b:ae:b1:03:2b:35:
54:96:bf:03:fe:2f:69:b0:5c:cf:d8:0e:d7:a8:83:
73:13:c8:23:fe:3f:d2:3d:18:39:7e:34:2b:cb:c9:
8a:d6:5a:8c:5f:ba:a4:7d:86:27:12:19:f7:5c:7f:
33:5f:f7:a9:c0:74:b3:25:ce:95:1e:26:a2:31:f1:
e1:b5:74:4b:bd:16:ff:48:83:42:be:6c:11:af:d2:
d9:f2:b3:fc:ef:a2:df:33:92:c8:a6:e5:d2:c6:a0:
1d:08:94:58:25:99:0b:04:84:01:1d:ee:91:d2:79:
2d:f4:aa:5b:03:c9:27:68:ae:07:e2:38:17:a9:17:
c2:87:45:c9:08:c4:21:47:e7:98:fe:cd:f1:16:f8:
e0:30:84:cd:a5:21:81:48:89:f3:17:87:7d:9d:f0:
82:c6:7a:93:69:3a:da:7f:d9:f6:e9:eb:a9:0c:58:
3f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:4D:24:06:94:FA:8D:91:D0:0C:D2:F3:DE:B8:54:E4:87:35:DE:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F53933463EE511F0815C95D1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.204.0-154.91.223.255
Signature Algorithm: sha256WithRSAEncryption
97:e8:bd:34:99:7f:21:70:de:d8:58:12:bb:d9:71:ac:46:42:
24:db:a5:5d:66:76:ee:f3:3b:7b:6f:75:2b:00:43:01:bf:4b:
07:cc:42:7b:fe:85:01:1a:14:e3:cf:2a:1e:ea:3f:c9:65:f7:
95:53:fb:c8:b4:ac:0b:41:e0:0c:01:42:87:16:cb:70:ae:50:
c1:a2:1e:f9:5f:f6:84:06:50:54:3f:cd:1b:30:4a:ff:68:b1:
21:04:75:d8:55:1d:c0:3b:77:eb:7f:eb:06:ba:79:c1:f6:7b:
71:f4:83:30:41:89:e8:df:27:37:06:12:1b:e3:04:e0:86:3f:
cb:ca:61:40:9c:be:4e:77:cf:89:33:db:aa:25:dd:c5:a9:22:
6d:e1:29:10:00:42:a1:a7:86:23:69:76:0b:97:66:24:91:7c:
2b:5d:68:4e:c5:0a:11:40:b8:3c:8c:d1:f1:d3:61:54:1b:ff:
8d:d8:35:a3:1a:ad:b7:30:9e:92:30:4d:54:35:a4:f7:f5:02:
38:1b:f5:cc:c0:5b:f6:3a:3e:6f:6d:62:0a:e9:31:88:13:70:
35:9f:6e:e5:ed:bc:de:dc:0a:71:16:87:61:28:6f:5d:b6:0b:
00:b0:39:6c:ed:09:53:04:ed:49:6c:d1:db:04:cc:48:18:c7:
4d:7c:64:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:21:30 2025 by rpki-client