Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0467C46A67A211F095176EE3DAE4EC9C.roa
File: 0467C46A67A211F095176EE3DAE4EC9C.roa (raw, json)
Hash identifier: 598d4LsERxeZdrs+PHpOD4z/1Dc94kVb0VVpFa63cko=
Subject key identifier: B0:53:2A:AB:76:A8:61:17:61:E0:FC:D2:EE:B6:1B:68:0D:FF:91:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018EE7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0467C46A67A211F095176EE3DAE4EC9C.roa
Signing time: Wed 23 Jul 2025 08:50:01 +0000
ROA not before: Wed 23 Jul 2025 08:49:56 +0000
ROA not after: Wed 27 Aug 2025 08:49:56 +0000
asID: 134489
IP address blocks: 154.82.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102119 (0x18ee7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 23 08:49:56 2025 GMT
Not After : Aug 27 08:49:56 2025 GMT
Subject: CN=6880a239-34c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:40:07:fc:34:3e:23:10:28:d2:f6:a1:e3:b6:
c0:30:6c:bd:a1:c8:c0:fb:14:35:06:a1:8f:0e:e6:
67:ed:d0:5b:dd:ea:5c:3b:40:1f:e9:20:64:e0:de:
ed:5a:8f:46:9c:60:b4:f4:8e:ce:cd:c2:85:34:ef:
24:c6:90:16:02:75:bf:bc:2f:12:2f:04:b1:4f:01:
ed:d7:6e:51:97:86:a9:e4:43:91:80:16:19:14:a9:
ab:16:67:7e:09:56:4a:04:8c:9d:1d:83:90:72:86:
83:2a:35:7d:9a:a4:2f:09:db:ae:6d:f6:98:46:ed:
cd:5a:f5:a1:d5:15:0c:19:cc:1d:78:da:c2:4a:cb:
a6:9b:ab:0b:94:1e:74:35:61:e4:35:23:e7:74:af:
6b:5c:be:bf:c4:7a:4d:6a:f1:7f:0e:06:77:24:13:
f0:7e:db:19:b9:e1:a1:dd:27:fc:e8:3c:64:73:2f:
65:f8:a7:e7:bc:48:ff:76:89:a2:b8:6b:80:f3:95:
3b:00:08:36:09:3b:c0:30:e7:53:d8:1c:75:2c:c6:
fe:62:60:d2:73:d3:b4:14:4d:5c:c3:4f:f8:ce:f8:
a3:7c:bc:12:26:f1:f1:95:43:02:c2:f4:95:52:ba:
17:4d:f5:41:31:c1:a7:05:91:1c:ce:7d:35:be:64:
26:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:53:2A:AB:76:A8:61:17:61:E0:FC:D2:EE:B6:1B:68:0D:FF:91:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0467C46A67A211F095176EE3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.17.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:e3:0f:1a:27:8c:59:38:24:b6:54:52:ef:d0:4c:c1:3a:c7:
4d:46:53:c6:e9:b2:62:65:87:a5:3f:8a:12:a2:c8:66:7d:7f:
33:08:18:af:d5:14:fc:7a:e9:85:63:21:5a:0e:86:d7:41:58:
19:5a:4a:b0:0f:a5:79:c6:66:8b:c4:2e:04:44:fa:3e:de:47:
88:f1:6d:f7:eb:c4:10:1b:4d:a3:22:22:d0:0a:87:66:d4:40:
4f:9a:93:53:fd:32:bc:2e:7d:1a:b1:4c:f7:86:6d:5d:20:79:
34:ed:e5:a7:28:dd:04:f4:b9:f4:a2:9c:fb:ef:35:32:a3:39:
79:12:a6:30:83:0b:d7:6e:b9:a3:3f:c7:2d:41:8d:0e:50:76:
34:30:35:9b:b1:f5:92:9e:27:f5:3f:0c:19:eb:83:16:e9:ac:
a0:15:49:8b:2c:f2:8c:5f:95:a2:10:25:e2:11:dd:80:4f:09:
26:83:e4:13:cb:56:4a:cd:59:e6:71:38:b5:26:18:4a:cf:d6:
7a:1c:3a:f3:51:2b:3c:9e:b1:c9:3d:f7:bf:c3:bc:8e:37:12:
16:57:23:51:a7:41:75:6f:50:2e:5f:2a:d7:88:3d:41:41:cb:
74:e2:72:62:45:96:c0:37:91:75:2f:52:37:78:8f:12:6a:c9:
ea:94:7f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 08:17:32 2025 by rpki-client