Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/919399C8201611F0A51973A6DAE4EC9C.roa
File: 919399C8201611F0A51973A6DAE4EC9C.roa (raw, json)
Hash identifier: /svV5tT3oKWt1AQ2MmNpvFPHaR0weawy/5latLiAWp4=
Subject key identifier: CD:15:C5:62:04:BB:75:67:88:09:E2:CF:65:0A:94:5D:50:93:B5:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017A9D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/919399C8201611F0A51973A6DAE4EC9C.roa
Signing time: Wed 23 Apr 2025 07:42:56 +0000
ROA not before: Wed 23 Apr 2025 07:42:50 +0000
ROA not after: Wed 25 Mar 2026 07:42:50 +0000
asID: 209242
IP address blocks: 154.83.22.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96925 (0x17a9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 07:42:50 2025 GMT
Not After : Mar 25 07:42:50 2026 GMT
Subject: CN=680899ff-db8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9a:53:91:38:5c:75:b1:0f:50:f4:f3:e9:36:
b3:b7:d7:45:20:5f:df:08:1c:a6:fe:92:ff:75:a7:
0f:e4:b0:eb:f7:61:a2:40:df:8a:00:e6:08:d9:d7:
59:e3:7e:71:27:f6:ca:51:77:f0:94:67:0c:65:57:
c6:0f:d8:7a:bc:18:b7:df:da:11:dc:69:d0:7b:5e:
e9:be:57:bf:03:ba:ee:52:00:ca:d5:4b:bb:c2:57:
1d:6c:1f:ec:af:2e:7f:26:53:ac:25:fa:d9:cf:ca:
63:6f:4e:28:53:bd:25:bb:2c:32:c2:02:92:31:6e:
73:b2:41:22:c5:2c:02:04:0a:b9:4b:ab:05:f4:6a:
a6:b1:fb:44:6e:2f:98:76:05:3c:97:e1:93:58:cc:
ab:18:5f:05:38:cf:be:eb:35:df:d5:50:81:2d:dc:
8a:c7:56:e9:31:12:8a:e9:5b:02:31:1c:d6:a6:62:
5c:f5:72:b2:0d:af:1f:a5:21:4d:96:73:85:21:6e:
a0:29:d6:ac:b1:b4:a3:dd:f4:8d:59:68:9a:dc:b0:
80:07:11:0a:b8:cc:a4:bf:7b:fb:df:ab:f1:30:6b:
51:18:59:25:82:9b:d2:82:4a:40:42:83:06:93:41:
8d:07:9d:f3:40:03:11:db:2c:2b:03:55:67:38:27:
d1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:15:C5:62:04:BB:75:67:88:09:E2:CF:65:0A:94:5D:50:93:B5:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/919399C8201611F0A51973A6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.22.0/23
Signature Algorithm: sha256WithRSAEncryption
55:bd:08:aa:59:c7:20:45:77:8e:28:03:df:b5:39:60:b9:15:
fe:cb:51:7e:8c:28:c6:dd:6e:05:8e:be:6d:05:88:04:ad:b2:
eb:8b:39:60:9b:1b:81:54:08:b8:10:5c:11:21:4d:4c:f3:2e:
fd:cf:a3:66:36:85:9f:b4:92:4e:b1:73:9d:16:9a:d9:f2:12:
78:19:ef:51:15:6e:1e:39:b1:76:67:b7:aa:ae:2f:be:f1:63:
5b:61:0b:d9:a6:a1:a2:35:47:43:2d:0b:d9:be:2d:70:b7:3b:
55:1d:a9:ad:c9:12:b7:35:fb:cb:ce:62:a8:c4:06:c1:01:91:
44:48:65:d9:52:99:96:70:c8:0d:47:f3:ac:48:e1:d0:15:aa:
ce:70:ad:c6:97:a0:bd:3c:21:43:c6:0f:39:b6:37:20:ca:ef:
9b:9f:60:82:73:e2:d7:8d:e5:21:2b:3c:51:c2:28:99:5c:ba:
d8:df:b1:17:db:ee:b7:be:55:53:1f:88:06:f4:49:8c:32:6a:
9b:7a:f3:0c:0b:d0:35:34:f0:bc:f5:eb:a4:c5:dc:8d:99:08:
0d:e8:1d:88:ad:1c:e2:ef:5a:87:b2:7a:d5:7f:c9:97:62:17:
d5:bc:aa:cf:51:31:2c:7c:3b:74:ff:b0:ec:82:56:8b:cf:09:
72:b1:00:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:57:27 2025 by rpki-client