Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F9C931143A0211F093602E91DAE4EC9C.roa
File: F9C931143A0211F093602E91DAE4EC9C.roa (raw, json)
Hash identifier: Ncq+D02UsP8jj0XrFrr4NFi1g12TII9s4l8b3Q4QeBc=
Subject key identifier: 6A:1A:26:C0:E4:FC:61:84:07:2E:B8:67:3F:1F:F9:BC:DF:91:96:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0182BF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F9C931143A0211F093602E91DAE4EC9C.roa
Signing time: Mon 26 May 2025 07:28:11 +0000
ROA not before: Mon 26 May 2025 07:28:06 +0000
ROA not after: Sun 29 Jun 2025 07:28:06 +0000
asID: 57043
IP address blocks: 154.83.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99007 (0x182bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 26 07:28:06 2025 GMT
Not After : Jun 29 07:28:06 2025 GMT
Subject: CN=6834180b-469d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:84:c2:35:4f:7c:ff:a1:64:0f:c8:24:5a:14:
8d:9b:f4:11:c0:3b:06:28:83:29:26:d9:02:dc:d7:
de:77:dd:a2:19:88:eb:42:f0:78:11:06:65:4a:56:
42:a5:7a:43:06:6d:ee:06:7c:87:3a:c8:69:54:1e:
3b:0e:f6:50:1d:3d:bf:03:45:f5:a7:a6:b5:5b:06:
a1:8f:fa:a5:08:64:81:55:dd:f0:15:58:0c:df:11:
48:92:0a:54:91:57:5b:53:f0:42:da:12:7d:2e:ec:
fe:b7:02:e9:c4:e9:e6:2c:4b:45:97:ee:79:2f:27:
73:95:2f:68:45:ca:90:fd:59:1c:be:41:24:5e:cf:
1b:cb:df:34:d9:83:80:88:02:66:fe:9e:10:4e:db:
1d:09:34:0b:55:8a:dc:30:57:68:cb:7d:58:45:de:
25:de:0d:45:ea:d4:68:3c:32:6c:d7:8a:e7:cd:78:
ec:ce:6d:cd:1d:04:54:8e:f4:03:58:a4:31:4f:c3:
09:97:84:cd:09:7a:b7:4f:92:31:de:84:3b:59:bb:
3d:ab:3c:7b:89:95:ba:14:44:26:ed:69:8f:90:00:
3b:c4:8e:9e:cc:d1:c4:7b:54:72:a5:7f:a0:15:cf:
31:01:aa:6f:54:c4:3c:fb:02:9b:cb:95:36:b6:46:
49:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:1A:26:C0:E4:FC:61:84:07:2E:B8:67:3F:1F:F9:BC:DF:91:96:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F9C931143A0211F093602E91DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.210.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:38:33:50:c9:ca:50:e4:a6:e3:74:1b:ad:ee:58:45:80:8a:
2c:fe:d6:42:19:7c:ea:51:bb:5c:ae:8b:66:0e:04:a9:a9:e4:
0e:73:6d:ce:07:5f:29:b6:e5:5b:9a:11:8e:d6:af:02:d8:66:
4e:fe:18:2b:32:66:3d:18:aa:93:d1:39:ff:3f:3d:00:c6:a4:
6e:f7:03:a6:14:fc:7b:b5:c7:53:56:be:c5:37:ac:eb:10:f4:
ed:ff:ae:31:cf:a7:99:b0:bd:66:c8:17:2e:5d:1d:7a:f5:f2:
d7:8f:28:fb:08:ec:7f:84:ac:b7:c2:24:72:4a:a3:80:a8:f6:
ad:1c:a2:2c:9e:80:b2:13:1d:66:b7:d1:18:48:91:c9:fa:34:
1a:75:9b:b5:d4:ea:b7:17:52:3c:a9:90:3d:19:4f:d9:b9:9f:
ca:75:a1:b3:ee:8f:d2:6f:3b:21:76:f4:e2:8f:64:20:cc:2d:
7d:47:5b:f3:b9:69:62:40:b9:c3:36:23:08:fa:67:59:aa:d0:
a7:0a:92:22:95:ac:0e:11:b9:8c:a0:6a:ab:b1:01:07:37:99:
af:f3:1c:d6:e7:69:fc:98:9f:9d:c6:aa:df:33:7e:16:cb:0b:
7a:63:0e:58:fc:68:a5:0d:29:e5:17:35:a2:6e:08:82:ed:f7:
21:63:73:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:35:03 2025 by rpki-client