Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1369619C450811F087D036B5DAE4EC9C.roa
File: 1369619C450811F087D036B5DAE4EC9C.roa (raw, json)
Hash identifier: X0RbuHUeRewoe19hmr8pLe2mNZ3eqxkg2pmC9PuIGgg=
Subject key identifier: 32:C4:EA:3D:6C:CB:93:E6:6F:0F:31:6B:83:3C:99:A0:F2:22:CD:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018582
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1369619C450811F087D036B5DAE4EC9C.roa
Signing time: Mon 09 Jun 2025 08:02:24 +0000
ROA not before: Mon 09 Jun 2025 08:02:19 +0000
ROA not after: Wed 03 Sep 2025 08:02:19 +0000
asID: 135377
IP address blocks: 154.81.12.0/24 maxlen: 24
154.81.13.0/24 maxlen: 24
154.81.14.0/24 maxlen: 24
154.81.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99714 (0x18582)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 9 08:02:19 2025 GMT
Not After : Sep 3 08:02:19 2025 GMT
Subject: CN=68469510-e810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b6:c7:13:92:17:a7:7f:cb:9b:6c:6b:28:09:
29:52:db:97:08:95:19:5b:8c:86:ac:ee:8b:92:9b:
4e:dd:37:47:10:d6:98:fd:85:76:c7:44:1c:79:da:
f6:6c:1f:4a:0e:0e:6e:c5:ce:cd:b4:27:98:d7:12:
04:25:41:86:08:84:fa:df:b3:7a:96:23:fa:fb:3b:
f0:53:9b:46:a4:38:9b:c8:6b:01:3d:d9:5b:8f:0d:
17:21:46:b5:8b:2c:da:2e:9f:c9:ce:55:fd:ac:7e:
59:17:20:e4:aa:9a:7b:7d:f5:24:46:68:3a:99:29:
2e:28:53:ca:a4:78:88:cd:6c:89:25:f8:2e:d2:be:
df:33:49:57:36:51:2d:46:00:48:b6:ea:0a:ef:2f:
47:5f:83:40:5b:ff:9e:dd:9f:88:47:f3:66:f0:b9:
3f:90:73:b6:16:67:8d:4f:06:99:e4:9f:d5:63:90:
73:3f:15:c0:a2:4e:f3:07:96:67:b1:be:38:ef:3a:
ba:b7:bf:d3:a5:9a:30:2f:47:c5:7d:64:5b:b5:a1:
b8:33:85:21:d5:f6:1b:3e:21:4e:d5:0e:c1:7a:99:
52:ab:7a:47:e8:2e:47:4d:7a:7f:2a:91:ea:30:b6:
fa:64:c7:cc:b8:1b:1f:e7:15:1f:06:af:fa:93:ff:
1e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C4:EA:3D:6C:CB:93:E6:6F:0F:31:6B:83:3C:99:A0:F2:22:CD:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1369619C450811F087D036B5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.12.0/22
Signature Algorithm: sha256WithRSAEncryption
93:f4:09:d2:31:d5:22:6d:a1:90:59:c7:28:ce:fe:eb:d6:69:
de:bb:45:95:cd:03:8f:63:30:7a:cd:d0:1a:4e:22:38:d0:dc:
00:e6:2b:98:0e:43:b8:81:75:39:cc:8f:1b:15:7b:b6:d5:27:
bd:09:1a:d5:b5:73:e0:43:3e:ef:4a:a7:dc:f9:a4:b7:b3:aa:
94:2e:ff:72:39:03:2b:12:d8:8a:c7:4e:68:da:81:27:28:e3:
7f:01:be:fc:cb:76:8b:bd:b6:a5:c9:11:a0:a0:4e:d9:bc:6e:
c6:3c:08:1c:35:32:11:47:f4:a0:56:a3:2a:f8:7c:65:19:54:
db:f6:d5:d5:ae:a5:50:ed:13:37:f0:a9:59:0a:2e:f5:64:6a:
d0:01:01:b4:91:ce:0f:77:7f:fd:49:74:5d:26:45:b6:4e:5c:
a0:9f:92:1f:d9:db:35:c8:80:ba:aa:df:73:dc:51:a7:76:14:
49:44:3f:29:0f:de:64:30:4b:b0:37:bd:fb:97:17:01:22:a4:
0b:ab:97:4c:79:e0:03:ed:0f:94:e2:37:e8:f2:48:c5:fd:69:
74:dc:13:3a:56:dd:81:f4:2f:c0:50:f8:e2:02:81:b9:2f:02:
8e:76:5c:a5:c2:f2:2e:c1:0c:34:ab:05:71:a3:ec:dd:4c:ce:
e5:9e:7a:19
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYWCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjA5MDgwMjE5WhcNMjUwOTAzMDgwMjE5WjAYMRYw
FAYDVQQDEw02ODQ2OTUxMC1lODEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAurbHE5IXp3/Lm2xrKAkpUtuXCJUZW4yGrO6LkptO3TdHENaY/YV2x0Qc
edr2bB9KDg5uxc7NtCeY1xIEJUGGCIT637N6liP6+zvwU5tGpDibyGsBPdlbjw0X
IUa1iyzaLp/JzlX9rH5ZFyDkqpp7ffUkRmg6mSkuKFPKpHiIzWyJJfgu0r7fM0lX
NlEtRgBItuoK7y9HX4NAW/+e3Z+IR/Nm8Lk/kHO2FmeNTwaZ5J/VY5BzPxXAok7z
B5Znsb447zq6t7/TpZowL0fFfWRbtaG4M4Uh1fYbPiFO1Q7BeplSq3pH6C5HTXp/
KpHqMLb6ZMfMuBsf5xUfBq/6k/8eLQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDLE
6j1sy5Pmbw8xa4M8maDyIs1JMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xMzY5NjE5QzQ1MDgxMUYwODdEMDM2QjVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmlEMMA0GCSqGSIb3DQEB
CwUAA4IBAQCT9AnSMdUibaGQWccozv7r1mneu0WVzQOPYzB6zdAaTiI40NwA5iuY
DkO4gXU5zI8bFXu21Se9CRrVtXPgQz7vSqfc+aS3s6qULv9yOQMrEtiKx05o2oEn
KON/Ab78y3aLvbalyRGgoE7ZvG7GPAgcNTIRR/SgVqMq+HxlGVTb9tXVrqVQ7RM3
8KlZCi71ZGrQAQG0kc4Pd3/9SXRdJkW2Tlygn5If2ds1yIC6qt9z3FGndhRJRD8p
D95kMEuwN737lxcBIqQLq5dMeeAD7Q+U4jfo8kjF/Wl03BM6Vt2B9C/AUPjiAoG5
LwKOdlylwvIuwQw0qwVxo+zdTM7lnnoZ
-----END CERTIFICATE-----
Generated at Sun Jun 15 20:42:55 2025 by rpki-client