Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/267B029067B311F0867777D0DAE4EC9C.roa
File: 267B029067B311F0867777D0DAE4EC9C.roa (raw, json)
Hash identifier: vFpKEMI02MAl/IS2wwHLfi8VWxqGkNDLDKYfDseryu8=
Subject key identifier: 93:E5:03:3B:00:E9:F5:37:C5:40:A2:E1:5D:26:69:FB:4C:35:D2:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018F14
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/267B029067B311F0867777D0DAE4EC9C.roa
Signing time: Wed 23 Jul 2025 10:52:39 +0000
ROA not before: Wed 23 Jul 2025 10:52:35 +0000
ROA not after: Wed 03 Sep 2025 10:52:35 +0000
asID: 18779
IP address blocks: 154.203.51.0/24 maxlen: 24
154.203.52.0/22 maxlen: 24
154.203.56.0/22 maxlen: 24
154.203.60.0/23 maxlen: 24
154.203.62.0/24 maxlen: 24
154.206.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102164 (0x18f14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 23 10:52:35 2025 GMT
Not After : Sep 3 10:52:35 2025 GMT
Subject: CN=6880bef7-069e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7b:a0:2b:45:c6:2c:6d:d1:41:b3:71:f2:0f:
b0:80:90:75:53:92:16:f2:32:31:a4:86:df:3f:5a:
b4:85:ee:82:82:9c:71:36:7a:5a:c6:b7:d9:ce:40:
c9:a3:f2:29:bd:e1:ab:40:b0:e4:ba:6f:ac:2d:90:
46:b1:db:6e:f8:8e:31:8f:07:f0:19:83:9b:0c:5b:
a1:aa:ca:dc:24:bb:b8:4f:e3:36:9a:03:e1:42:84:
3d:a4:04:f2:1f:d1:af:4c:83:d2:b9:16:fb:95:4e:
e3:5f:e5:3d:96:d1:6e:4f:fd:04:ca:ab:7a:9b:fd:
b3:ed:49:77:9d:1c:0b:50:9a:b5:48:78:33:66:25:
54:75:33:ad:d5:1c:94:79:4b:26:ce:73:28:c5:9f:
30:60:59:ae:da:dd:e9:12:2c:4d:8a:fc:db:37:86:
86:d3:7e:51:f0:c0:90:3e:0a:12:97:de:e1:49:bb:
d0:d5:09:8f:0d:85:9a:d5:13:f5:d1:c3:f3:d6:a2:
1e:ad:bf:49:46:04:d3:d8:fc:1a:48:26:d4:2e:cb:
2a:06:d4:89:77:96:e0:5a:6b:6a:62:83:41:8d:6c:
3b:55:df:8c:92:a6:c1:b5:35:5e:1e:6f:4f:f4:35:
0c:0d:7c:ad:46:e7:4c:38:cc:da:66:ef:94:f4:43:
b7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E5:03:3B:00:E9:F5:37:C5:40:A2:E1:5D:26:69:FB:4C:35:D2:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/267B029067B311F0867777D0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.51.0-154.203.62.255
154.206.20.0/24
Signature Algorithm: sha256WithRSAEncryption
79:09:cc:b4:f7:bf:a0:92:06:ca:5a:16:35:07:fb:a7:d8:3f:
57:55:1e:ab:e3:d6:8a:ee:0c:41:72:9d:0f:40:56:d7:38:c8:
a1:3e:49:b9:79:02:4e:ce:78:6f:7e:0f:3c:9b:5c:ba:d0:59:
6a:06:b5:1c:cb:5b:46:10:a2:63:e4:1d:7f:43:b4:51:53:48:
b2:78:93:8e:20:a3:df:19:79:70:5a:b3:f7:2a:4f:dc:44:41:
08:c8:ff:7a:c9:bb:a0:6a:25:ad:de:b0:6f:b8:c3:79:65:77:
73:9c:e5:8b:81:64:01:1b:61:e7:02:25:3d:e8:85:60:47:04:
41:33:43:eb:72:6b:46:ef:6e:c8:bc:f7:e2:4d:b7:bc:bb:2c:
fc:09:87:5a:39:89:a6:12:6c:30:7f:ed:e3:70:6b:29:b9:a9:
47:8a:72:e9:40:f3:20:08:05:63:60:ef:9f:6b:e5:12:40:a4:
26:db:73:2c:44:75:a6:bb:46:98:18:4c:09:e7:f4:ce:9d:b5:
0f:09:38:49:5f:d8:04:6f:f3:18:05:cd:2c:37:6a:f2:8d:56:
d8:44:f0:39:fc:b9:74:a6:03:c3:2c:19:19:77:75:b7:04:ff:
28:6f:a8:e0:2c:7f:50:ae:f3:20:17:85:25:aa:be:ab:d6:b4:
09:6b:3b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 08:32:55 2025 by rpki-client