Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18A71CC8490C11F0AEDA31E0DAE4EC9C.roa
File: 18A71CC8490C11F0AEDA31E0DAE4EC9C.roa (raw, json)
Hash identifier: K8vsra7UXn6t9OelqNX5aVMq6j//Tv9aHtUGlOQZ7DE=
Subject key identifier: EC:18:15:97:2B:9D:D8:04:EA:39:80:D7:87:D9:40:33:CE:6C:5A:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018695
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18A71CC8490C11F0AEDA31E0DAE4EC9C.roa
Signing time: Sat 14 Jun 2025 10:41:15 +0000
ROA not before: Sat 14 Jun 2025 10:41:11 +0000
ROA not after: Sun 22 Jun 2025 10:41:11 +0000
asID: 138678
IP address blocks: 154.202.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 20 Jun 2025 11:43:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99989 (0x18695)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 14 10:41:11 2025 GMT
Not After : Jun 22 10:41:11 2025 GMT
Subject: CN=684d51cb-9a07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:58:64:6d:ac:bf:6c:8f:97:32:b4:96:55:79:
47:4a:c1:de:58:77:ed:ca:e4:7a:29:4b:11:96:c5:
4f:29:19:41:c7:70:48:4a:77:99:cd:51:02:07:4b:
3f:e2:f7:d6:17:26:4b:55:64:35:10:71:cd:5f:91:
0c:c1:98:44:57:5f:58:d7:19:e0:bb:a2:2f:75:ae:
65:35:47:bb:17:79:5f:b5:da:01:37:02:41:40:ad:
ed:1b:2b:98:66:2d:bd:9c:d6:2b:c4:da:0f:9e:df:
6e:cf:69:73:53:6a:b2:cb:0b:fb:4a:96:3c:88:f9:
ec:7d:30:a4:0c:43:e8:b8:05:03:f3:0c:e7:cc:33:
74:06:91:f0:7e:bc:5f:b5:b3:b0:e2:b9:54:6d:b0:
0d:e8:ac:86:f3:bc:ca:b9:b5:f5:9e:5f:11:17:cd:
e5:4c:1c:c1:d4:03:41:aa:c0:cb:2f:50:6b:f2:6b:
77:ea:97:b1:fa:90:fd:b5:f9:37:4a:a8:1b:20:2c:
10:fa:bb:12:b9:91:10:2c:4f:b1:64:e7:56:58:c9:
82:1f:fb:00:01:1c:c5:e0:40:85:c3:e2:dd:2d:db:
7b:bd:21:cd:9e:e5:c1:74:0c:3c:2b:6f:1c:53:e5:
4d:d0:35:9c:82:f0:b9:15:ce:64:96:b6:21:5b:02:
d2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:18:15:97:2B:9D:D8:04:EA:39:80:D7:87:D9:40:33:CE:6C:5A:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18A71CC8490C11F0AEDA31E0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.1.0/24
Signature Algorithm: sha256WithRSAEncryption
26:03:0f:cf:6b:43:60:53:7d:65:a2:12:96:1b:93:b8:a5:b3:
8f:9a:88:7a:78:7b:96:90:b3:57:5b:de:32:f1:f0:33:b4:ad:
d3:56:67:23:d8:69:ef:0a:79:8b:38:c7:7c:f7:39:a6:0b:31:
6e:aa:8c:88:f8:c0:6d:5c:72:fc:2e:58:80:d3:75:65:9d:8b:
1e:30:5a:c0:88:b2:2a:b7:1d:a6:8f:2a:eb:5c:2f:fd:a1:98:
4f:26:6f:8b:40:31:df:fa:e3:03:e8:b8:8b:8b:2b:1f:de:74:
7c:c6:ba:32:92:85:2f:ac:f4:cb:56:70:1f:e1:0a:ac:09:2d:
3d:a3:c2:ea:2d:d1:d0:a0:0c:45:5f:18:fb:23:88:5f:b2:18:
e1:e0:e2:73:a5:7d:c7:60:57:1d:ec:a2:77:29:6d:b9:bc:f4:
d9:c8:23:41:33:3e:b7:b3:a6:27:b6:7f:12:18:0b:b0:04:65:
a1:71:58:99:49:83:3b:f8:8b:1c:31:56:70:08:af:c3:1c:d1:
8c:5c:1b:d4:43:6f:d9:a4:44:52:94:6c:3f:78:19:3c:2f:04:
cd:37:3d:a1:dc:1f:8a:c5:a6:99:0c:b5:58:0d:92:a3:0e:57:
33:6a:91:cc:0b:c5:05:85:40:64:6b:dd:80:1e:4f:75:a9:c2:
39:ec:b8:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 15:35:07 2025 by rpki-client