Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DD140106C2B11F0822EA1E5DAE4EC9C.roa
File: 1DD140106C2B11F0822EA1E5DAE4EC9C.roa (raw, json)
Hash identifier: VvKJe8bBcotfwKUsVjs1ufJqZr9v5ZHsnoWmYZKTrdc=
Subject key identifier: 37:37:87:F1:D4:07:47:55:CD:2A:17:8E:2A:48:DC:5A:A0:F2:91:DE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018FD9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DD140106C2B11F0822EA1E5DAE4EC9C.roa
Signing time: Tue 29 Jul 2025 03:21:29 +0000
ROA not before: Tue 29 Jul 2025 03:21:24 +0000
ROA not after: Wed 29 Oct 2025 03:21:24 +0000
asID: 9294
IP address blocks: 154.195.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102361 (0x18fd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 29 03:21:24 2025 GMT
Not After : Oct 29 03:21:24 2025 GMT
Subject: CN=68883e39-0d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:06:ab:1f:65:12:9a:77:1c:d2:7f:45:46:bc:
83:bf:07:39:12:ca:d1:85:3e:71:9f:39:6c:f4:d3:
a5:27:b0:98:b3:e3:b5:67:ce:d1:f0:92:90:4d:40:
06:82:6f:5f:b6:bd:2f:ce:dc:7a:cd:d9:02:b1:ca:
b5:44:51:cc:61:a3:bb:35:78:6c:f3:c5:b7:27:31:
51:2f:e8:a3:23:81:97:d2:2a:af:7d:6d:59:3b:6d:
c7:d9:e1:06:0e:2e:83:d2:1d:3e:9c:73:d9:97:41:
6b:3e:b6:82:19:f8:c2:2d:77:35:75:ac:f5:69:61:
17:cd:4b:ef:03:47:67:3d:d7:17:98:a9:39:57:cb:
ad:b3:03:de:26:42:b4:43:c6:46:61:18:32:f4:6f:
30:43:7c:a7:e6:0a:46:f3:38:8b:33:60:25:6c:ea:
2f:c9:5e:fb:49:6b:ba:51:5b:8d:22:e3:dd:88:c5:
eb:55:37:04:bc:eb:c6:72:1b:55:0c:69:07:ec:30:
a6:ad:19:5b:0e:11:f2:2d:27:f8:cd:1f:6c:76:4f:
9b:b0:d7:5b:a8:92:78:06:65:bd:89:12:56:3c:d7:
be:a4:e0:cd:2b:61:6e:30:a5:be:2e:b9:ab:3c:88:
ff:a0:ad:06:04:78:f4:c6:04:f5:54:e7:9a:77:f8:
fe:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:37:87:F1:D4:07:47:55:CD:2A:17:8E:2A:48:DC:5A:A0:F2:91:DE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DD140106C2B11F0822EA1E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.64.0/19
Signature Algorithm: sha256WithRSAEncryption
99:13:fd:72:c3:fc:29:b5:e6:6c:31:22:6f:06:82:ab:5f:6a:
aa:9b:3a:74:47:e6:e1:cf:5e:2d:fd:a0:27:dc:60:b7:56:80:
1a:27:a2:16:7e:b4:a3:c3:b9:e6:d9:f4:48:78:ec:c8:3f:2a:
d3:fe:d2:cb:8b:36:69:6a:1e:50:79:51:44:2e:16:5a:2f:2e:
9a:e2:89:b4:a9:a5:35:63:60:89:ea:d8:6d:84:af:9b:84:77:
23:e7:8e:6a:20:5d:b3:f9:93:3e:a0:5c:c8:cd:55:2f:71:2c:
00:6b:7b:74:8f:a9:f0:cd:73:94:e0:d7:72:44:19:8c:ba:4d:
24:39:f0:37:56:42:7d:a4:cf:d4:cc:d3:a6:17:ba:c6:5b:31:
9e:04:3f:ea:20:9c:ac:c8:e2:ff:07:87:a1:5a:7f:5f:d8:a8:
40:b4:cb:18:09:9d:4c:aa:eb:3b:03:48:fc:bc:50:88:a5:a2:
f1:8f:85:b2:35:08:6c:29:88:c4:7b:64:3f:e9:13:a2:2b:3c:
f9:b4:5e:0e:62:2f:22:95:3d:58:05:49:23:d5:6e:c2:69:e9:
18:b0:c6:2b:82:3f:32:eb:db:cb:21:c2:32:cd:7f:b8:5a:fe:
b7:d7:83:d1:4f:a5:b4:43:7f:49:9b:8d:94:f8:07:ae:13:59:
28:d1:d8:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 12:38:36 2025 by rpki-client