Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E2DDAA638A011F0AF4A2E84DAE4EC9C.roa
File: 5E2DDAA638A011F0AF4A2E84DAE4EC9C.roa (raw, json)
Hash identifier: Hyws2/NSeVHkeTIV36Njnj9yuhFfx8y+J4y4DqNhmbA=
Subject key identifier: B8:56:D3:EB:5C:47:7B:75:A2:14:32:C0:12:38:EF:A8:4B:8D:8F:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018286
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E2DDAA638A011F0AF4A2E84DAE4EC9C.roa
Signing time: Sat 24 May 2025 13:09:48 +0000
ROA not before: Sat 24 May 2025 13:09:43 +0000
ROA not after: Thu 19 Jun 2025 13:09:43 +0000
asID: 214143
IP address blocks: 154.83.40.0/23 maxlen: 24
154.83.42.0/23 maxlen: 24
154.83.72.0/23 maxlen: 24
154.92.209.0/24 maxlen: 24
154.92.210.0/24 maxlen: 24
154.92.211.0/24 maxlen: 24
154.92.212.0/24 maxlen: 24
154.92.213.0/24 maxlen: 24
154.92.214.0/24 maxlen: 24
154.93.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 19 Jun 2025 00:06:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98950 (0x18286)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 24 13:09:43 2025 GMT
Not After : Jun 19 13:09:43 2025 GMT
Subject: CN=6831c51c-7b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8a:65:b4:11:a0:82:cc:eb:ba:15:7c:1d:7b:
cc:2f:d9:97:08:04:4c:b2:65:a3:27:7b:db:7c:b1:
c6:09:ce:fe:c0:13:62:94:6e:fd:12:71:ea:15:4b:
2a:85:13:a1:e0:74:73:65:ac:d6:39:b1:1d:42:38:
de:ee:eb:6f:2a:b7:23:09:cf:f4:c7:85:96:9c:e6:
19:2c:9d:e8:a4:24:c8:b7:ac:75:ec:41:39:a8:7a:
74:e4:af:1f:6e:ff:cc:45:d3:c0:d2:5d:9e:bc:9a:
b1:f0:36:a7:ac:2d:6e:23:50:60:e7:13:38:f9:96:
8f:2b:74:ef:c4:3d:a2:d5:37:00:91:00:8d:9f:6a:
35:e4:e6:2c:fe:40:c5:57:7d:2f:50:d4:2e:d4:df:
ae:22:05:b0:9b:0b:d4:c6:10:ce:50:a0:9d:15:40:
01:dc:2b:5c:b7:5e:de:ff:f2:20:c2:86:4f:b9:9c:
82:ee:8b:9d:9f:01:1c:99:43:f4:10:da:d1:2b:71:
5f:78:54:85:b4:4f:06:62:d7:be:17:b1:98:b9:40:
f9:89:66:df:89:11:bd:00:ac:25:f2:ca:40:f6:3b:
4e:6b:56:91:e6:c0:4a:61:ff:36:0a:a6:bf:fe:d7:
ff:44:25:32:bd:52:47:49:75:62:26:e5:0c:9a:97:
91:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:56:D3:EB:5C:47:7B:75:A2:14:32:C0:12:38:EF:A8:4B:8D:8F:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E2DDAA638A011F0AF4A2E84DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.40.0/22
154.83.72.0/23
154.92.209.0-154.92.214.255
154.93.28.0/22
Signature Algorithm: sha256WithRSAEncryption
d3:23:6b:4a:a0:47:eb:9a:44:8c:0b:a9:d9:55:67:d1:56:5c:
b0:fd:88:e5:53:ae:2c:9f:5f:c6:e6:51:7a:7b:8b:d6:45:d2:
61:77:c7:e6:63:4f:6b:00:c2:8a:f8:d7:cb:39:59:ca:6a:63:
e8:f2:bc:21:f9:75:15:23:0c:8f:21:b9:ac:78:7d:41:e9:cd:
da:a0:b4:b4:a1:a3:80:2e:45:1a:db:d5:c3:17:bd:68:52:a1:
f6:e0:ce:f3:eb:9a:4c:c4:56:63:9d:7e:d6:1d:d3:b6:6c:a4:
2d:a3:a0:0a:7b:21:e6:0e:2b:4c:01:4d:aa:c5:36:e7:11:93:
67:6f:0f:e1:c3:b6:0c:5d:0d:18:fe:ec:df:1c:7a:4e:70:47:
09:0a:40:9c:0e:b9:e8:2e:0c:76:14:81:c7:0f:e6:cd:05:b5:
f6:30:8d:d6:55:34:2e:09:6b:09:ff:62:8a:9c:1f:d5:d3:d7:
5f:32:0a:79:65:f7:f1:05:82:67:10:56:5b:a3:62:a2:7c:25:
9d:49:77:8d:59:9b:df:7f:d2:0d:1a:fe:17:ab:61:4a:38:2c:
eb:9f:55:f0:f0:86:71:e7:73:25:30:a7:5e:de:c2:0c:6e:44:
96:df:70:af:1f:74:70:d2:55:e8:5c:fe:83:79:29:23:f3:8c:
f9:0e:63:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 00:09:37 2025 by rpki-client