Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB5EADF43B9E11F0BE420288DAE4EC9C.roa
File: FB5EADF43B9E11F0BE420288DAE4EC9C.roa (raw, json)
Hash identifier: Lu+su+yc0b8l2lRNa65RPkGUTzw3Ultls4YcSZxPbHM=
Subject key identifier: E3:03:FA:A6:D1:26:F4:47:FC:08:36:CC:65:73:38:97:8B:48:08:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018320
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB5EADF43B9E11F0BE420288DAE4EC9C.roa
Signing time: Wed 28 May 2025 08:37:26 +0000
ROA not before: Wed 28 May 2025 08:37:21 +0000
ROA not after: Fri 20 Jun 2025 08:37:21 +0000
asID: 8796
IP address blocks: 154.219.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 07 Jun 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99104 (0x18320)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 08:37:21 2025 GMT
Not After : Jun 20 08:37:21 2025 GMT
Subject: CN=6836cb46-7714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:de:7e:5b:4b:9c:d6:8c:b7:91:f0:6b:5d:30:
3d:5b:92:6b:9f:a9:e8:ab:6c:3d:95:e8:e1:f9:3e:
a3:66:31:ba:00:92:23:81:35:86:6e:67:a1:e2:41:
90:9b:c9:fd:ce:3b:28:df:53:81:d5:22:5f:61:e7:
bd:18:bd:f0:d4:a6:e6:4b:ef:0d:ff:85:6f:02:84:
cc:cf:f1:db:5e:1c:31:73:39:fa:94:59:0d:06:27:
82:03:ab:04:57:d0:f9:e0:cf:15:69:84:15:88:8c:
e6:13:fe:e5:38:85:0b:ac:98:cf:c4:86:3d:48:ac:
3f:4e:cb:45:58:57:c9:df:f9:6f:a8:8f:d9:41:f5:
c9:65:d9:db:44:15:9b:6d:19:f9:9a:bb:a9:2e:41:
c0:ee:ca:0d:aa:51:f2:d9:45:bf:09:94:46:40:35:
e6:8d:37:aa:7e:41:0d:07:d7:c7:7e:94:5c:62:a3:
c9:37:e7:7d:c8:a7:bd:0a:84:14:3f:59:47:3e:d2:
d6:2d:c2:f7:b4:11:33:8c:c8:4e:b4:34:c5:37:f5:
e1:e7:68:78:ef:23:61:45:f3:cb:80:db:ca:92:d1:
04:27:c2:27:49:c7:a5:57:3f:6c:8f:e1:22:e5:d8:
45:5b:eb:a5:ed:87:79:0a:8b:91:6e:ae:20:74:62:
6e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:03:FA:A6:D1:26:F4:47:FC:08:36:CC:65:73:38:97:8B:48:08:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FB5EADF43B9E11F0BE420288DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.96.0/19
Signature Algorithm: sha256WithRSAEncryption
35:ab:67:fe:57:af:33:cf:7b:ba:a8:e7:45:e2:c6:17:34:d3:
ca:0a:42:3d:70:ca:1a:c1:86:3f:2c:ba:37:13:f3:b9:67:75:
3d:d3:65:01:86:a9:21:d1:d2:86:5a:a6:d8:a1:41:eb:a0:1a:
43:2e:59:b1:82:4e:4a:71:8a:13:80:b4:c6:92:87:48:9f:aa:
79:07:c6:a9:35:77:17:eb:b4:cd:b7:04:d7:5a:33:8b:6e:a9:
ee:b6:5b:21:42:36:37:53:8b:a7:c2:82:da:df:04:0a:ef:20:
fa:4d:18:f6:17:a2:5c:e6:40:1a:65:5a:12:f9:a2:57:fa:08:
63:0e:db:d6:60:dc:91:d6:56:b5:e4:0f:42:73:db:e4:fc:10:
5b:96:e6:b2:95:8b:45:3e:f4:6a:7e:cf:a9:bf:c5:5f:4d:13:
97:f9:c0:f4:93:af:98:ff:3b:db:75:d7:29:97:b0:76:ce:9c:
13:73:24:01:b2:a0:b6:ed:dc:31:32:c1:e3:5a:99:77:38:09:
c5:10:80:68:ae:5b:9e:94:45:42:b5:d4:e5:30:e7:18:eb:86:
02:50:9f:9f:00:9b:c6:b2:6f:1a:f9:99:a2:67:4a:25:67:6e:
8d:e6:e8:fa:cb:90:7b:c8:9b:a8:22:47:81:3e:73:10:d9:65:
96:d9:32:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 18:32:52 2025 by rpki-client