Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91BC1C2A380011F0B77D26ECDAE4EC9C.roa
File: 91BC1C2A380011F0B77D26ECDAE4EC9C.roa (raw, json)
Hash identifier: EbAxii2YCPrdsrXnx4CybSlz31R3sFIzKchKC7NkOkQ=
Subject key identifier: 5A:F9:0F:92:10:4D:EF:AB:F1:E0:2E:B4:DA:9E:0B:40:34:1A:70:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01824B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91BC1C2A380011F0B77D26ECDAE4EC9C.roa
Signing time: Fri 23 May 2025 18:05:55 +0000
ROA not before: Fri 23 May 2025 18:05:50 +0000
ROA not after: Thu 03 Jul 2025 18:05:50 +0000
asID: 203020
IP address blocks: 154.223.141.0/24 maxlen: 24
154.223.142.0/24 maxlen: 24
154.223.162.0/24 maxlen: 24
154.223.163.0/24 maxlen: 24
154.223.172.0/24 maxlen: 24
154.223.173.0/24 maxlen: 24
154.223.174.0/24 maxlen: 24
154.223.175.0/24 maxlen: 24
154.223.184.0/24 maxlen: 24
154.223.185.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 19 Jun 2025 00:06:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98891 (0x1824b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 18:05:50 2025 GMT
Not After : Jul 3 18:05:50 2025 GMT
Subject: CN=6830b903-4eec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e1:c8:64:4a:93:3e:b8:fe:3e:3f:e0:f0:85:
0c:b6:38:98:32:a5:f4:c4:94:39:1f:44:01:6b:e3:
81:b5:08:7b:07:79:a0:67:58:7f:70:f2:d1:dd:d8:
7d:b0:91:ef:b4:aa:78:c8:f1:0a:d4:c1:ce:bc:60:
1c:e7:0f:2c:df:1e:4b:af:68:2c:d6:68:22:e3:86:
92:e5:c5:58:21:8d:0a:de:aa:00:87:4c:35:3c:54:
b5:d6:f7:70:d4:90:41:65:d5:40:8c:85:ba:e0:a7:
39:27:bd:da:ca:40:d0:1a:06:1d:c0:54:25:9c:fd:
9d:17:e0:da:9f:e0:7f:6d:3b:86:18:0c:36:33:53:
14:76:e2:38:c0:98:16:66:52:e5:57:62:de:bc:ad:
83:f6:3d:b1:fc:d7:c8:50:38:83:a1:f4:3f:bc:fa:
0d:87:9e:af:0b:31:19:75:0f:5a:1c:1f:17:b0:e9:
13:e1:bb:d7:f8:d6:77:42:26:ff:16:1d:cf:90:65:
e9:4d:0c:6b:de:87:fd:3f:ba:94:33:fc:a0:9f:dd:
15:f3:08:91:e4:fb:2c:01:13:44:ac:9d:de:f1:18:
1a:33:16:7f:95:50:0f:0d:1c:ee:ca:8c:e4:8c:0c:
7b:50:24:23:d7:d5:62:ad:0f:eb:66:7c:8d:1f:cd:
22:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F9:0F:92:10:4D:EF:AB:F1:E0:2E:B4:DA:9E:0B:40:34:1A:70:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91BC1C2A380011F0B77D26ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.141.0-154.223.142.255
154.223.162.0/23
154.223.172.0/22
154.223.184.0/23
Signature Algorithm: sha256WithRSAEncryption
91:50:f7:d4:c9:2f:76:16:92:32:85:34:4f:60:c9:67:a3:3a:
00:4c:90:d8:bc:e1:a4:89:a2:38:33:10:37:99:56:c1:46:ec:
71:7e:92:88:70:35:e2:1e:a5:a0:8f:cf:ec:0b:0f:7d:e8:82:
c2:ad:08:21:4a:04:27:44:12:ba:20:a9:2a:51:6e:d3:32:aa:
75:40:47:77:5d:1c:44:2f:94:50:c3:be:fb:bb:7d:d3:33:01:
cf:42:7c:bb:b3:31:d3:c5:49:56:9f:07:56:9e:ce:b6:79:ef:
9a:f1:d0:69:2e:e5:85:54:bc:90:6f:e7:03:ca:99:3a:71:8f:
87:82:f5:91:97:44:35:d8:f9:39:fe:e5:c5:8e:4d:49:a3:d5:
81:a1:5e:dc:6e:4e:e1:df:10:dc:80:26:73:bd:95:37:20:e2:
33:14:6d:93:d0:48:79:02:f6:3f:a2:43:57:70:90:f4:16:c2:
b8:cb:23:3e:d9:98:1f:47:a4:01:45:03:e0:49:41:49:bd:dc:
13:49:44:86:09:29:92:ec:b0:89:89:36:ea:e5:a2:d1:7d:40:
c2:98:98:b6:47:5f:9c:9d:00:d5:6b:33:f0:aa:57:2b:21:bd:
ed:ff:77:0e:8e:bb:2f:3d:b4:be:3b:41:56:df:2d:9d:f9:09:
80:f0:e7:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 05:55:32 2025 by rpki-client