Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36695118381D11F0A4CC08A4DAE4EC9C.roa
File: 36695118381D11F0A4CC08A4DAE4EC9C.roa (raw, json)
Hash identifier: RIqe2SIRHivi4PGnkGvBchIgm8sZAnuE2ksHJCDb38Y=
Subject key identifier: 4B:DE:3E:6A:D7:CC:C6:59:16:CB:2B:10:D9:C0:58:EF:E6:EE:34:FD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018269
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36695118381D11F0A4CC08A4DAE4EC9C.roa
Signing time: Fri 23 May 2025 21:30:57 +0000
ROA not before: Fri 23 May 2025 21:30:52 +0000
ROA not after: Mon 28 Jul 2025 21:30:52 +0000
asID: 52263
IP address blocks: 154.194.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98921 (0x18269)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 21:30:52 2025 GMT
Not After : Jul 28 21:30:52 2025 GMT
Subject: CN=6830e911-ae99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f0:4f:e3:39:84:9b:56:c2:31:58:f0:92:2a:
84:25:03:b5:a3:ac:77:c8:1e:e0:71:4b:81:03:ca:
1f:3b:62:55:cd:50:91:8d:02:e6:7c:ae:3d:07:7d:
25:a5:e9:21:88:cb:dc:62:40:71:0f:8f:21:23:46:
52:82:39:7f:58:f7:fe:84:dc:24:f0:38:a8:49:d9:
e9:bc:63:07:ae:59:6b:3e:04:db:e9:c1:b4:6f:13:
ed:9c:3b:b9:86:7a:eb:17:7d:89:44:86:bb:26:8f:
8c:12:94:a6:17:84:3d:69:67:0a:dd:5f:4d:84:41:
84:04:53:74:b5:9f:60:86:88:8e:f8:7d:e8:27:b0:
6e:4f:85:76:9c:67:f9:ed:cf:4a:71:9d:f3:45:bb:
01:3d:a1:0a:bc:ca:25:e6:49:41:1a:84:13:e2:3b:
39:8c:aa:17:0c:c7:d4:67:95:5e:dc:6f:02:84:b3:
02:9d:2c:95:6f:32:30:91:e5:76:85:09:e3:26:fa:
9c:ea:99:39:c7:d2:e4:e4:dd:bd:13:00:88:0d:9f:
48:75:3d:6f:d0:9f:30:60:48:74:38:4a:8c:4c:f6:
bf:6e:14:03:a1:a0:0f:f3:c8:ad:f8:62:c2:5f:58:
99:07:df:5c:fa:15:d0:1e:23:f5:cb:72:c9:42:7f:
a6:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:DE:3E:6A:D7:CC:C6:59:16:CB:2B:10:D9:C0:58:EF:E6:EE:34:FD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36695118381D11F0A4CC08A4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.69.0/24
Signature Algorithm: sha256WithRSAEncryption
87:52:35:ca:31:95:85:e6:57:09:95:f9:42:4a:77:86:f7:88:
25:3c:67:96:10:d8:07:c4:d8:44:12:31:92:d8:71:7d:73:d4:
b8:6e:55:42:54:b8:56:5f:ed:ff:98:57:36:85:bf:33:0a:79:
fa:4a:a9:4c:a6:77:e0:5b:9a:50:67:65:eb:01:1b:42:db:65:
0d:df:0a:2b:64:aa:a3:e7:68:9e:af:06:f0:58:40:21:dc:6f:
76:91:78:a5:82:96:2f:21:57:02:d6:63:31:61:52:a8:e2:2c:
af:7e:a6:d3:29:7a:09:cf:d4:69:3f:90:2a:40:f4:49:39:fd:
30:eb:a3:9f:29:40:ca:f9:7c:66:90:6f:82:d2:6d:cd:df:df:
59:a3:b9:a0:b3:a5:22:e9:43:62:ea:24:a5:f5:7d:ff:cc:7c:
7b:e3:92:64:8c:e6:d6:60:5a:8d:88:f3:dd:1e:cd:13:82:47:
de:f2:e5:ee:63:5c:8d:8a:97:5f:9a:ce:72:65:ec:8f:8e:1c:
df:16:e3:b9:a8:92:1c:da:8a:a4:0c:06:aa:48:e0:43:c6:ef:
b8:d5:7d:ae:fb:e6:f9:0d:84:aa:f4:04:13:5d:72:51:fa:9c:
95:aa:16:af:fb:a1:62:08:e3:58:7c:09:0b:fd:32:9a:46:5c:
02:de:e0:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:50:31 2025 by rpki-client