Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/182663AC48FE11F08767EE86DAE4EC9C.roa
File: 182663AC48FE11F08767EE86DAE4EC9C.roa (raw, json)
Hash identifier: 8vOjcQIxv3UQ6S1t4xA/qMXnouybcj9SR5Vq7LS8VJs=
Subject key identifier: 3D:D8:DA:2C:D0:77:77:28:E1:97:2D:CF:CF:2F:BE:3F:57:F1:73:FA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018670
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/182663AC48FE11F08767EE86DAE4EC9C.roa
Signing time: Sat 14 Jun 2025 09:01:02 +0000
ROA not before: Sat 14 Jun 2025 09:00:56 +0000
ROA not after: Fri 04 Jul 2025 09:00:56 +0000
asID: 398478
IP address blocks: 154.92.176.0/20 maxlen: 24
154.199.208.0/20 maxlen: 24
154.199.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99952 (0x18670)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 14 09:00:56 2025 GMT
Not After : Jul 4 09:00:56 2025 GMT
Subject: CN=684d3a4d-fadf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f3:ba:3f:0f:d8:4c:a0:d7:9e:59:90:7e:0a:
f6:1f:f1:28:4f:e8:f1:4e:26:64:9b:98:92:65:b3:
25:c2:12:f9:c6:0c:84:25:d5:31:52:12:0a:64:1e:
ab:d4:c7:95:e3:96:4b:d7:27:dc:be:4e:6a:3f:59:
75:59:df:3f:3f:66:4d:60:2e:53:a9:83:32:f2:63:
9b:25:8a:32:f4:82:24:65:b5:03:06:73:dc:52:3c:
64:f9:d2:63:e8:56:83:fe:ad:42:60:17:8b:b5:80:
ef:bb:9f:ae:e5:5a:1b:21:d1:49:01:54:7f:76:ff:
6a:ab:71:0f:12:82:2c:b8:a2:bb:65:3c:e8:20:6d:
7d:94:81:97:d9:57:d0:dc:5b:2c:43:db:4f:37:a1:
2e:70:39:88:95:be:f3:c1:52:73:af:5b:c8:da:22:
f4:2a:eb:f7:92:a7:54:32:0c:6f:f3:00:87:9c:f5:
1d:98:87:a1:de:00:2f:bc:35:a9:70:8a:4a:64:81:
0e:4b:1c:38:30:af:a4:1e:7f:39:d5:f2:bd:36:7a:
63:db:db:d0:df:04:02:7a:e6:28:b2:68:f4:78:09:
ae:df:4d:73:62:13:ff:9a:8b:8e:8b:3f:18:a3:a6:
12:49:f0:65:87:fc:af:d7:b6:ad:2c:68:ce:d9:44:
1e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D8:DA:2C:D0:77:77:28:E1:97:2D:CF:CF:2F:BE:3F:57:F1:73:FA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/182663AC48FE11F08767EE86DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.176.0/20
154.199.208.0-154.199.255.255
Signature Algorithm: sha256WithRSAEncryption
78:d3:65:1f:28:a6:71:89:f6:9d:16:de:1a:d8:f1:d7:ae:91:
1f:f4:12:70:2c:68:1f:aa:84:cf:37:3f:11:61:1c:ea:0f:c3:
1a:ff:49:b6:50:bc:5c:dc:45:8e:23:66:77:9d:f0:8b:07:5c:
4e:df:25:c0:d9:03:ac:41:1f:11:79:a8:86:bf:10:4c:59:09:
c5:66:53:ed:61:0a:f4:91:9b:02:38:21:c9:f7:fe:09:c1:ca:
6d:f2:54:2d:ec:76:63:2c:4c:60:98:cf:d1:b6:56:98:98:2f:
4b:31:39:62:22:ed:a8:26:16:ac:80:c3:8f:50:35:a6:43:a7:
ba:87:9e:8f:69:75:23:0d:d6:28:64:4d:2b:f0:d2:9a:46:4e:
16:4d:b6:50:31:f7:ac:17:40:db:2c:cf:6d:17:f1:b3:0d:b1:
40:95:b3:81:28:27:36:47:0f:c2:5e:7a:44:40:7c:25:4e:1f:
5f:71:74:73:f9:4d:f5:67:a1:6c:cc:54:bb:ce:0f:f5:1e:f3:
97:87:97:8e:67:b2:3d:06:b6:61:5f:a1:7e:7c:a3:f6:a3:6a:
d7:08:05:5c:1f:75:60:cc:f4:38:33:ff:bd:6f:93:92:e0:b5:
ca:13:dc:2d:3c:6a:5d:95:16:83:2d:54:b6:04:c4:25:1b:d5:
25:5c:5e:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:47:01 2025 by rpki-client