Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D7ACDA0477911F09DC83A93DAE4EC9C.roa
File: 7D7ACDA0477911F09DC83A93DAE4EC9C.roa (raw, json)
Hash identifier: KZOslGYyRV8MRmvOIaOGsdNFYInQl4m7kiEESmW62Oo=
Subject key identifier: F3:33:F1:B5:48:43:14:11:6E:E8:66:3E:D2:18:3D:89:32:6E:9A:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018615
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D7ACDA0477911F09DC83A93DAE4EC9C.roa
Signing time: Thu 12 Jun 2025 10:39:17 +0000
ROA not before: Thu 12 Jun 2025 10:39:12 +0000
ROA not after: Mon 16 Jun 2025 10:39:12 +0000
asID: 137951
IP address blocks: 154.212.132.0/22 maxlen: 24
154.215.4.0/22 maxlen: 24
154.215.8.0/22 maxlen: 24
154.218.128.0/18 maxlen: 24
154.221.4.0/22 maxlen: 24
154.221.8.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 16 Jun 2025 10:39:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99861 (0x18615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 12 10:39:12 2025 GMT
Not After : Jun 16 10:39:12 2025 GMT
Subject: CN=684aae55-e2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ea:1e:77:ae:e3:9b:5c:5a:0d:da:55:1e:cd:
59:66:31:c0:03:56:fd:2b:45:4c:80:49:4f:d0:55:
40:00:af:26:25:1a:76:18:e9:eb:66:7c:ea:03:75:
01:85:c8:e9:5b:c2:df:03:de:58:43:f8:15:f9:84:
db:ac:b2:55:28:38:d2:af:a4:4f:35:e9:a6:12:01:
d0:27:08:ba:34:2c:40:bb:ac:94:26:3b:55:53:45:
31:fc:f1:8f:13:8d:65:bf:fa:72:f7:2b:20:e0:9e:
ad:11:3b:29:31:43:35:01:c7:45:16:58:ad:c1:47:
2a:ea:94:dc:70:83:e2:66:f2:73:e5:46:74:ec:41:
16:96:24:01:73:db:ab:c3:ae:57:4c:41:37:76:6e:
c5:a9:7f:3c:55:b8:e6:5b:99:9b:3b:be:16:8b:63:
8f:a4:1f:ad:69:fb:54:06:09:87:cf:ee:44:36:8e:
b8:fc:35:3e:58:9f:c6:55:23:02:d6:2a:34:85:cd:
78:8e:3f:69:00:67:8c:2b:c0:4c:b9:7d:4b:3d:4e:
f3:83:f2:59:92:03:04:12:71:38:66:90:71:99:7b:
a6:df:54:39:58:24:c2:cb:03:97:59:c2:ec:07:90:
17:3b:18:c3:45:6d:f9:3a:7e:2e:c9:b0:2b:45:6e:
57:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:33:F1:B5:48:43:14:11:6E:E8:66:3E:D2:18:3D:89:32:6E:9A:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D7ACDA0477911F09DC83A93DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.132.0/22
154.215.4.0-154.215.11.255
154.218.128.0/18
154.221.4.0-154.221.15.255
Signature Algorithm: sha256WithRSAEncryption
c1:18:76:4f:0e:9a:56:8b:ee:12:32:45:fc:6b:f1:21:cf:2c:
a7:5f:ff:e8:af:34:ef:f2:61:e1:7a:24:a0:cb:b3:7f:d4:a1:
a7:a7:75:cc:31:47:a2:e8:c5:46:ad:73:fa:c2:93:03:41:dc:
bb:92:65:a8:a0:ac:6a:1b:94:92:91:fd:96:98:ff:cd:4a:42:
19:ae:a3:41:6e:66:12:96:1d:6f:6e:1a:1c:c8:46:3e:8b:5b:
ec:19:09:4e:55:1f:31:85:9a:63:de:7b:22:8e:d3:6a:cb:97:
5c:e3:be:18:e7:30:eb:a3:39:0c:d4:10:1d:f7:20:47:4e:bd:
1e:4b:4c:9c:76:d3:98:12:fc:cf:0c:f9:cf:1d:6b:49:ca:e1:
47:f2:4c:8c:e4:4f:c9:a8:b7:37:79:06:3c:78:31:0b:e8:62:
22:1b:b0:5a:6e:51:06:70:ce:18:79:9f:17:8d:e9:19:51:60:
fe:35:13:16:4a:64:79:41:b1:18:94:0a:0b:da:09:d9:d4:7d:
e5:bc:d5:4f:e7:14:f0:16:11:de:98:b7:fd:56:ab:f0:6e:04:
f8:8c:1c:fd:ce:36:21:a0:1f:46:c6:af:c6:58:8e:12:74:af:
cb:69:cc:83:12:0f:4e:32:43:0c:ed:e5:9f:fe:be:4b:63:6b:
13:f7:b7:bf
-----BEGIN CERTIFICATE-----
MIIFpjCCBI6gAwIBAgIDAYYVMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjEyMTAzOTEyWhcNMjUwNjE2MTAzOTEyWjAYMRYw
FAYDVQQDEw02ODRhYWU1NS1lMmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0Ooed67jm1xaDdpVHs1ZZjHAA1b9K0VMgElP0FVAAK8mJRp2GOnrZnzq
A3UBhcjpW8LfA95YQ/gV+YTbrLJVKDjSr6RPNemmEgHQJwi6NCxAu6yUJjtVU0Ux
/PGPE41lv/py9ysg4J6tETspMUM1AcdFFlitwUcq6pTccIPiZvJz5UZ07EEWliQB
c9urw65XTEE3dm7FqX88VbjmW5mbO74Wi2OPpB+taftUBgmHz+5ENo64/DU+WJ/G
VSMC1io0hc14jj9pAGeMK8BMuX1LPU7zg/JZkgMEEnE4ZpBxmXum31Q5WCTCywOX
WcLsB5AXOxjDRW35On4uybArRW5X+QIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFPMz
8bVIQxQRbuhmPtIYPYkybprpMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83RDdBQ0RBMDQ3NzkxMUYwOURDODNBOTNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQCmtSEMAwDBAKa1wQDBAKa
1wgDBAaa2oAwDAMEAprdBAMEBJrdADANBgkqhkiG9w0BAQsFAAOCAQEAwRh2Tw6a
VovuEjJF/GvxIc8sp1//6K807/Jh4XokoMuzf9Shp6d1zDFHoujFRq1z+sKTA0Hc
u5JlqKCsahuUkpH9lpj/zUpCGa6jQW5mEpYdb24aHMhGPotb7BkJTlUfMYWaY957
Io7TasuXXOO+GOcw66M5DNQQHfcgR069HktMnHbTmBL8zwz5zx1rScrhR/JMjORP
yai3N3kGPHgxC+hiIhuwWm5RBnDOGHmfF43pGVFg/jUTFkpkeUGxGJQKC9oJ2dR9
5bzVT+cU8BYR3pi3/Var8G4E+Iwc/c42IaAfRsavxliOEnSvy2nMgxIPTjJDDO3l
n/6+S2NrE/e3vw==
-----END CERTIFICATE-----
Generated at Mon Jun 16 05:47:04 2025 by rpki-client