Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D7FE73067C011F0B47721A5DAE4EC9C.roa
File: 5D7FE73067C011F0B47721A5DAE4EC9C.roa (raw, json)
Hash identifier: TOSFT3mBhanqMaANtNaqixDjWV816LeUkEhrbTYpBC8=
Subject key identifier: 25:82:0C:F1:5F:70:DE:E7:0C:AA:6F:41:E4:4A:11:09:FF:53:E6:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018F1E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D7FE73067C011F0B47721A5DAE4EC9C.roa
Signing time: Wed 23 Jul 2025 12:27:15 +0000
ROA not before: Wed 23 Jul 2025 12:27:09 +0000
ROA not after: Fri 05 Sep 2025 12:27:09 +0000
asID: 21859
IP address blocks: 154.83.71.0/24 maxlen: 24
154.83.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 Aug 2025 00:06:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102174 (0x18f1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 23 12:27:09 2025 GMT
Not After : Sep 5 12:27:09 2025 GMT
Subject: CN=6880d523-7700
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0e:55:3f:cc:59:75:ad:9f:01:14:14:43:de:
dc:53:33:64:0d:18:b8:c3:37:31:51:eb:3f:8b:a0:
0e:42:6a:40:ca:89:ee:8b:4d:49:16:d9:f9:9f:73:
5c:5f:ab:8a:53:6c:97:cb:d0:21:1f:5d:25:a4:95:
c6:52:ca:77:1e:84:d4:11:b9:0e:47:36:df:ca:5c:
3d:94:cd:0b:9f:19:d8:ad:a0:c7:ff:7a:09:fa:65:
e9:a8:64:c8:c5:27:3a:0c:39:64:e1:db:f3:6a:2e:
bf:7e:4e:92:d9:e6:15:a4:e5:22:e4:ad:3b:3a:92:
dc:33:a7:9d:bf:84:9f:e1:00:6f:fa:58:e9:d1:41:
54:eb:8d:96:0c:32:86:95:8c:b8:71:36:68:1f:80:
3a:b9:61:b9:8d:dc:8f:58:76:3a:e6:55:c8:72:54:
54:4d:c6:ec:8e:22:94:68:97:d9:5c:8d:32:f2:36:
0c:c8:f7:21:f4:2f:bf:db:bb:dc:94:1e:34:c1:6c:
77:47:4d:ee:07:b7:20:4c:4b:71:fe:6e:98:d2:26:
16:6c:61:d7:44:2a:ec:0f:79:2f:a1:94:0f:e9:ec:
c0:ae:62:a2:83:ea:81:37:82:5c:f9:bb:44:17:71:
4b:1d:53:81:e7:93:4d:4f:ab:6b:ca:62:31:10:d0:
a4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:82:0C:F1:5F:70:DE:E7:0C:AA:6F:41:E4:4A:11:09:FF:53:E6:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D7FE73067C011F0B47721A5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.71.0/24
154.83.78.0/24
Signature Algorithm: sha256WithRSAEncryption
34:15:72:26:0c:6c:46:68:36:9f:6c:c2:a8:66:ac:16:f9:5d:
94:75:8c:24:5f:5a:61:d0:71:2e:3e:0d:45:48:38:e4:b4:a3:
8f:f0:96:bc:76:a5:d2:e3:65:aa:59:3d:e8:4b:e2:e2:c6:bf:
e5:43:df:ae:03:50:c8:74:cc:bd:5a:c4:89:ce:70:2e:d3:9b:
4c:10:0a:a0:bd:69:06:a2:91:00:41:2e:e7:d4:b2:69:00:bf:
d4:1c:4a:5e:91:af:e6:a5:e6:85:34:88:56:80:2c:c5:4c:8f:
79:50:f5:0a:7d:7d:90:96:55:4a:ea:08:9f:39:c0:4a:46:db:
ca:b0:ec:2e:7b:41:a3:e9:41:83:20:bf:c4:2c:8b:a1:5f:3b:
37:77:32:a0:dd:1f:fe:4b:25:02:1f:96:b2:e2:48:cd:79:d0:
03:e7:80:d4:57:04:2d:e9:b4:d2:92:08:16:f7:eb:bc:e2:a4:
e3:4b:95:d6:0f:73:18:ae:6d:9d:55:07:70:7a:b7:d6:cf:45:
53:04:3d:13:45:9f:23:b9:2e:f0:31:34:34:34:46:31:55:bd:
8d:11:83:26:73:9d:1a:3a:c9:b1:15:c3:69:04:1d:c6:02:33:
b5:c5:4d:e7:e1:00:c0:51:8b:fd:8c:e9:37:e4:4f:36:39:95:
fe:43:6a:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 10:38:51 2025 by rpki-client