Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/202450E4665111F089BCEFC6DAE4EC9C.roa
File: 202450E4665111F089BCEFC6DAE4EC9C.roa (raw, json)
Hash identifier: P76v5go5uI84TffIJvG3bxvwsILNBaVcelzBY4qlU5M=
Subject key identifier: C0:17:BC:02:B5:B3:70:31:23:48:25:64:C0:91:3B:79:2F:B2:B3:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018E8D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/202450E4665111F089BCEFC6DAE4EC9C.roa
Signing time: Mon 21 Jul 2025 16:38:27 +0000
ROA not before: Mon 21 Jul 2025 16:38:22 +0000
ROA not after: Wed 27 Aug 2025 16:38:22 +0000
asID: 395793
IP address blocks: 154.200.80.0/21 maxlen: 24
154.223.248.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102029 (0x18e8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 21 16:38:22 2025 GMT
Not After : Aug 27 16:38:22 2025 GMT
Subject: CN=687e6d03-ae28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:af:c5:d3:24:cc:d8:db:5d:41:9f:cd:32:a2:
60:9d:52:4b:f9:1a:f4:45:98:09:6a:a4:55:44:b6:
9c:bc:0f:06:9b:42:4e:0d:9f:0e:65:d7:f1:59:6f:
bc:19:39:1c:7f:19:67:bb:3b:f7:0a:f4:46:92:32:
51:3f:12:f8:12:4f:db:2b:e8:a4:f0:89:d7:30:c0:
21:4d:8c:5c:85:55:94:fe:d3:63:16:96:ef:11:d8:
b4:b5:2c:fc:9b:25:0b:b7:fa:62:55:ee:80:0d:5b:
db:4a:e7:d2:e6:0e:f2:c9:ff:c0:7e:c1:72:f8:8b:
4f:20:3e:9c:e3:f2:51:68:7b:ee:1d:75:d2:c4:5a:
8e:47:8e:4d:4e:87:db:b8:d0:4b:30:38:e9:74:69:
64:89:5e:9a:20:a7:d2:a9:e2:b6:e2:8e:fb:66:81:
3e:35:10:f2:ae:9e:ff:4a:46:b4:22:e8:8c:a0:cd:
f7:4f:bf:b1:ce:5c:5a:54:09:9e:dc:aa:8d:79:69:
26:d7:de:1c:38:c7:5e:e8:a4:b2:9d:85:2c:31:b9:
0e:d6:a3:1c:4c:f3:e2:4e:93:6e:40:04:78:5e:68:
a3:d8:2c:81:6f:43:f6:4b:99:f7:a7:9d:53:7f:fe:
6a:03:84:f0:5b:c4:8b:1e:df:0f:23:f3:d5:4c:28:
87:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:17:BC:02:B5:B3:70:31:23:48:25:64:C0:91:3B:79:2F:B2:B3:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/202450E4665111F089BCEFC6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.80.0/21
154.223.248.0/21
Signature Algorithm: sha256WithRSAEncryption
27:1b:2e:46:0e:b2:2b:e9:e0:2b:1a:e3:bf:56:4a:5a:3c:c2:
c2:af:9f:e5:9c:49:b7:af:36:31:74:f8:cd:b9:65:49:39:d4:
61:fd:30:26:1f:e6:9f:89:1d:ad:e4:a9:3e:90:73:d5:fb:7d:
f6:e9:d6:64:85:e0:ab:96:22:d9:1d:95:17:7c:69:e7:8f:9d:
53:22:78:e6:bf:41:01:f8:99:28:d8:5b:6e:62:e7:25:cb:74:
fb:1d:64:cc:d0:6a:11:6a:dd:73:65:ca:a2:f2:8b:f6:93:01:
51:17:22:87:e0:65:3c:f5:c7:2d:55:a7:8f:94:d3:c6:5d:a4:
78:08:1b:97:0c:fe:61:88:fc:4b:a2:ba:1b:cb:6f:43:dd:90:
d6:8a:b3:d4:f0:58:d9:59:06:c5:74:40:40:05:f5:7d:71:aa:
56:db:a9:2b:82:c5:1c:3c:ff:26:49:78:81:96:2a:e2:8e:af:
0c:20:d7:b4:bc:14:6a:71:36:d6:f0:22:7d:74:d2:a5:6e:02:
09:7f:6c:e0:c2:61:e4:33:ab:f7:5e:32:ee:90:f3:04:9f:86:
48:13:36:78:68:49:1c:cf:41:d8:a5:d3:2b:29:ba:34:b9:74:
9a:de:69:4e:8b:40:f1:57:4f:e2:44:ab:1b:44:f1:a0:67:f0:
05:50:23:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:54:39 2025 by rpki-client