Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B555226407A11F091F1A196DAE4EC9C.roa
File: 7B555226407A11F091F1A196DAE4EC9C.roa (raw, json)
Hash identifier: wSApKvZyxzrOYG75OIoDV4LkChjBCBe4kOIPWfExBR4=
Subject key identifier: E4:63:79:88:4F:A3:1A:86:9E:0F:13:31:12:9A:CE:6A:8B:E5:3D:A4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018481
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B555226407A11F091F1A196DAE4EC9C.roa
Signing time: Tue 03 Jun 2025 12:58:45 +0000
ROA not before: Tue 03 Jun 2025 12:58:40 +0000
ROA not after: Tue 15 Jul 2025 12:58:40 +0000
asID: 138915
IP address blocks: 154.203.143.0/24 maxlen: 24
154.206.80.0/23 maxlen: 24
154.206.82.0/23 maxlen: 24
154.206.84.0/23 maxlen: 24
154.206.86.0/23 maxlen: 24
154.206.88.0/23 maxlen: 24
154.206.112.0/23 maxlen: 24
154.206.114.0/23 maxlen: 24
154.206.116.0/23 maxlen: 24
154.206.118.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 19 Jun 2025 00:06:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99457 (0x18481)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 12:58:40 2025 GMT
Not After : Jul 15 12:58:40 2025 GMT
Subject: CN=683ef185-8778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:6a:3c:da:22:ce:aa:b9:2f:fd:e4:4b:26:8b:
dc:62:32:66:b7:83:df:8a:f7:0a:8c:73:68:d8:9a:
69:bf:f6:7a:63:31:d3:d1:d7:2c:44:ad:38:e0:77:
87:f1:68:05:c2:83:c0:6c:b8:75:93:c8:7a:0b:f0:
fa:e8:38:cc:be:a4:03:f6:21:82:0c:fb:76:d7:8a:
a9:3f:22:53:07:63:8a:79:d4:1a:5d:59:7e:5c:93:
39:59:ff:62:9c:48:7b:45:36:7b:2d:00:0f:54:6f:
7d:61:a5:4f:9b:10:50:f8:d5:1d:96:7a:b2:08:28:
9c:14:73:8f:5e:b4:ea:da:39:4f:9f:a7:b8:87:a1:
7e:0e:4f:1f:c6:3f:f3:db:1c:12:6c:72:da:e7:f7:
fa:41:22:b1:0c:f3:e7:25:79:04:fc:d6:07:d5:f7:
e4:e0:5a:e6:b1:d7:fc:4a:82:e5:43:bf:4d:1e:77:
5e:5b:73:c8:e8:66:8b:36:10:f2:6a:42:fe:7d:8c:
e9:fd:03:15:4b:03:8f:17:25:5d:20:16:30:d9:09:
13:22:89:8d:fa:ee:b4:d6:5c:de:e6:5e:7d:4b:6b:
46:24:51:0b:ef:55:18:4e:08:60:69:1f:b7:31:5d:
ad:5b:cb:b2:3e:dd:64:cc:15:47:32:56:d4:6b:b2:
dd:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:63:79:88:4F:A3:1A:86:9E:0F:13:31:12:9A:CE:6A:8B:E5:3D:A4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B555226407A11F091F1A196DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.143.0/24
154.206.80.0-154.206.89.255
154.206.112.0/21
Signature Algorithm: sha256WithRSAEncryption
80:81:d3:97:20:4d:5f:a4:2f:13:53:a6:d3:8c:90:b6:c9:b9:
e7:36:7f:81:ad:78:aa:9e:7a:91:64:fb:b7:9a:4c:4c:4b:fa:
7b:a4:9e:d6:0e:34:ab:a8:70:00:6e:f9:67:f9:85:57:9a:34:
d9:42:c0:db:fd:54:f1:bf:84:e1:83:7c:49:21:72:03:25:04:
76:9a:3b:b3:37:6e:f6:ae:78:ba:8c:59:02:f1:75:17:40:f1:
d2:dc:99:0d:8f:74:d2:cc:f9:4c:52:0b:74:94:ab:45:de:ab:
91:3b:61:e1:9d:f5:bd:8b:aa:c7:e5:61:1c:64:0a:e8:13:55:
c1:55:01:4c:a2:60:be:a4:d2:f4:75:4b:62:dc:9b:6b:78:ad:
2f:be:04:a7:c4:40:7f:55:79:56:d3:fb:90:87:4f:0e:22:8d:
b8:ab:18:de:fb:2e:ac:92:d8:03:d3:5f:e1:73:aa:4b:a6:b2:
1a:c4:82:92:bd:a9:e1:cd:f7:fa:14:ad:cc:14:2b:19:9e:4e:
4b:e9:06:0e:0a:48:fb:e4:45:31:77:e5:c0:1c:67:7f:92:13:
58:92:b5:ac:aa:95:9b:5e:c3:df:02:48:08:6c:03:c5:e5:93:
85:b2:8d:cd:f1:65:46:bb:f2:d4:15:4b:33:f2:5f:74:33:65:
9c:df:57:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 04:39:10 2025 by rpki-client