Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D76ADEE410311F0B2198598DAE4EC9C.roa
File: 4D76ADEE410311F0B2198598DAE4EC9C.roa (raw, json)
Hash identifier: UfN6QTYx4aim518PY0aOLNydY6ysB8AmCAtB5whPgrI=
Subject key identifier: A1:A1:83:BE:18:E5:4C:82:1B:95:86:8E:79:D5:58:E3:44:75:99:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0184B2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D76ADEE410311F0B2198598DAE4EC9C.roa
Signing time: Wed 04 Jun 2025 05:18:09 +0000
ROA not before: Wed 04 Jun 2025 05:18:03 +0000
ROA not after: Sat 31 Jul 2027 05:18:03 +0000
asID: 984
IP address blocks: 154.199.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 16 Jun 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99506 (0x184b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 4 05:18:03 2025 GMT
Not After : Jul 31 05:18:03 2027 GMT
Subject: CN=683fd711-c4b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0a:87:e4:32:07:df:d4:d6:4c:72:a3:9e:a9:
68:60:d1:a8:40:3b:5e:5c:d3:0f:30:65:95:e6:39:
7a:e5:c7:f7:b7:9c:39:15:9a:10:cc:9f:df:f6:fb:
0e:97:38:6b:77:3a:04:05:ac:2b:86:e2:98:d3:43:
b5:62:3d:2e:08:8b:01:f8:6b:73:b8:d1:36:0e:da:
2a:55:83:f0:aa:f9:44:ff:61:51:ae:58:34:d7:68:
a6:20:f2:0f:32:38:2a:5e:bf:3a:42:ca:92:82:7e:
e8:09:da:e7:fc:75:22:d7:04:49:8b:a2:ca:6b:8f:
01:c9:d5:33:cc:fe:f9:b2:45:d6:ef:87:2c:78:88:
b3:45:2b:9d:64:41:0f:aa:cb:23:11:bb:7f:76:3f:
a4:23:b5:d7:6c:a7:fc:36:e1:2b:b1:a5:e2:1a:a1:
7a:f6:02:a3:2e:4d:28:a7:59:15:4d:4d:3f:07:33:
03:1c:cf:fe:c9:7d:46:80:0c:a3:7a:65:fb:a8:c7:
a4:c0:f8:0b:d5:9a:2d:4e:01:0b:85:69:0d:c0:1e:
8f:f5:b9:e8:02:1f:c7:93:a4:e7:11:f3:c1:af:1a:
fd:14:14:a6:5a:87:0f:33:37:dd:13:53:6e:b2:06:
02:c6:74:9e:cc:36:f5:43:a6:41:ba:47:28:1e:b1:
cc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A1:83:BE:18:E5:4C:82:1B:95:86:8E:79:D5:58:E3:44:75:99:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D76ADEE410311F0B2198598DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.3.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:e5:8b:c0:1f:b8:41:f2:b6:76:5b:76:0d:00:eb:92:f3:2f:
9b:f2:00:7b:2c:c4:7e:c2:eb:3a:08:57:0e:48:91:93:0c:e7:
34:ed:56:71:13:18:fe:28:10:8f:02:4a:c8:0d:28:91:51:95:
cc:09:00:71:ee:c6:9b:f0:55:f3:3d:8e:8a:e1:99:9d:b0:b0:
79:ab:d1:15:00:86:2a:26:d9:82:02:15:af:63:8a:14:de:70:
a8:ff:89:0f:5d:72:0c:83:95:41:31:cf:0f:16:ff:50:ac:9d:
3a:bf:5a:e8:3d:30:2b:4e:57:66:d6:39:3c:d5:47:bc:1d:c8:
85:81:55:92:d0:60:f2:ed:51:d6:72:2b:43:73:bc:7d:ad:f2:
c1:45:d0:02:bd:d4:7d:54:3b:14:46:3c:1c:5a:c1:21:dc:44:
05:4f:da:ba:cb:06:db:89:f1:6b:a9:02:51:b3:f1:24:20:89:
b1:30:f0:60:e4:84:41:e0:48:19:5e:e8:a6:a8:c5:af:0d:b8:
3f:e1:1c:d3:92:2e:99:e1:a7:f5:c8:84:bd:c0:43:3a:41:4e:
b4:a0:b1:c1:c6:0e:cf:45:4d:5a:02:c8:d4:68:17:69:33:2f:
c5:14:ee:11:60:ad:11:57:52:32:9f:19:ec:b4:a9:55:1b:1c:
80:b5:25:ff
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYSyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjA0MDUxODAzWhcNMjcwNzMxMDUxODAzWjAYMRYw
FAYDVQQDEw02ODNmZDcxMS1jNGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAywqH5DIH39TWTHKjnqloYNGoQDteXNMPMGWV5jl65cf3t5w5FZoQzJ/f
9vsOlzhrdzoEBawrhuKY00O1Yj0uCIsB+GtzuNE2DtoqVYPwqvlE/2FRrlg012im
IPIPMjgqXr86QsqSgn7oCdrn/HUi1wRJi6LKa48BydUzzP75skXW74cseIizRSud
ZEEPqssjEbt/dj+kI7XXbKf8NuErsaXiGqF69gKjLk0op1kVTU0/BzMDHM/+yX1G
gAyjemX7qMekwPgL1ZotTgELhWkNwB6P9bnoAh/Hk6TnEfPBrxr9FBSmWocPMzfd
E1NusgYCxnSezDb1Q6ZBukcoHrHMqwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKGh
g74Y5UyCG5WGjnnVWONEdZlbMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80RDc2QURFRTQxMDMxMUYwQjIxOTg1OThEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmscDMA0GCSqGSIb3DQEB
CwUAA4IBAQC25YvAH7hB8rZ2W3YNAOuS8y+b8gB7LMR+wus6CFcOSJGTDOc07VZx
Exj+KBCPAkrIDSiRUZXMCQBx7sab8FXzPY6K4ZmdsLB5q9EVAIYqJtmCAhWvY4oU
3nCo/4kPXXIMg5VBMc8PFv9QrJ06v1roPTArTldm1jk81Ue8HciFgVWS0GDy7VHW
citDc7x9rfLBRdACvdR9VDsURjwcWsEh3EQFT9q6ywbbifFrqQJRs/EkIImxMPBg
5IRB4EgZXuimqMWvDbg/4RzTki6Z4af1yIS9wEM6QU60oLHBxg7PRU1aAsjUaBdp
My/FFO4RYK0RV1IynxnstKlVGxyAtSX/
-----END CERTIFICATE-----
Generated at Sat Jun 14 17:34:48 2025 by rpki-client