Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/980F361666B811F0A41C36F4DAE4EC9C.roa
File: 980F361666B811F0A41C36F4DAE4EC9C.roa (raw, json)
Hash identifier: 37N7umTEhdHzAeRSPsGUX9vO/xLPAYkfvgALwGNau/w=
Subject key identifier: 03:EB:A1:2C:52:01:11:46:CF:FC:AF:FA:80:7A:98:B8:EC:D2:99:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018EA5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/980F361666B811F0A41C36F4DAE4EC9C.roa
Signing time: Tue 22 Jul 2025 04:59:06 +0000
ROA not before: Tue 22 Jul 2025 04:59:01 +0000
ROA not after: Wed 16 Sep 2026 04:59:01 +0000
asID: 13335
IP address blocks: 154.223.134.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 05 Aug 2025 00:06:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102053 (0x18ea5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 22 04:59:01 2025 GMT
Not After : Sep 16 04:59:01 2026 GMT
Subject: CN=687f1a9a-fd5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:67:18:fc:9b:22:03:20:b9:7a:3e:86:99:4e:
18:2c:ea:a2:6f:aa:2a:4c:5b:01:40:cc:11:ad:c1:
57:22:7f:36:27:c3:8e:f8:3d:a3:40:2a:eb:bb:1f:
5e:66:bb:85:ed:42:dc:0a:d4:3f:88:15:36:9f:66:
a2:73:3f:bf:aa:8c:c2:62:17:ab:13:58:6d:b3:c4:
22:82:bd:ae:27:dc:f9:5a:46:f7:c4:1a:62:9a:72:
5d:ee:58:5f:92:1a:b5:36:34:39:f2:a3:fd:67:cd:
f0:18:88:bf:96:92:9d:99:d0:8c:03:d2:cf:b1:8c:
88:87:80:8b:ea:b7:2f:68:2f:50:d6:aa:ee:db:52:
cf:b0:19:a9:49:e3:83:72:b8:ba:49:27:5c:26:21:
4e:15:7b:9e:c5:3d:19:a3:49:46:40:e3:7b:5f:eb:
48:b5:54:23:62:73:02:f6:d2:18:57:06:ec:bd:29:
62:1e:21:b0:46:18:6f:96:ec:d4:65:be:8c:99:79:
c2:d8:fd:3e:d8:74:2f:82:c5:a0:72:43:1a:8d:7c:
e0:ce:cb:08:2d:63:fe:29:e5:cd:c9:b7:05:11:e9:
f9:87:53:85:35:96:64:67:f4:d9:84:bf:32:a0:af:
b9:09:1a:f7:16:9b:db:c5:ba:3b:03:37:83:1c:80:
e3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EB:A1:2C:52:01:11:46:CF:FC:AF:FA:80:7A:98:B8:EC:D2:99:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/980F361666B811F0A41C36F4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.134.0/23
Signature Algorithm: sha256WithRSAEncryption
11:93:1f:ae:1a:8e:41:00:d3:76:9c:5d:66:9b:a1:96:ec:de:
86:7a:b4:d7:9d:d1:6c:b9:61:46:1a:98:c1:f6:a2:81:74:ed:
fd:f9:9a:ce:76:d8:9e:94:12:37:9b:b4:29:99:64:36:c7:d4:
2c:08:07:f8:ed:d2:4c:b0:f6:5d:45:95:4c:3c:4f:1c:78:92:
fa:4b:8c:48:89:f1:cd:50:74:0e:4b:84:77:05:78:f8:68:bd:
84:6f:e0:a6:67:0c:e3:af:40:ea:9a:8d:e9:4c:54:e6:87:32:
3b:44:41:8b:80:6a:c3:01:e5:5a:b2:ac:39:4e:8d:ed:db:93:
c4:f5:04:46:b3:f3:01:08:73:38:34:30:4f:cf:0d:d1:47:27:
4e:e4:f3:37:ac:12:e6:c1:9e:1d:75:fa:9c:f7:c3:4d:9b:6c:
7e:67:91:ad:46:ec:5d:e8:f8:f4:96:d9:37:9c:f0:1b:de:d3:
35:b2:9c:d9:0a:6a:1b:ee:39:4b:29:50:b4:30:14:fd:5e:73:
dd:02:c8:46:a9:57:16:4f:fd:6d:d9:44:db:a1:88:a1:a7:f2:
9d:a0:a9:4d:9b:01:90:e4:c9:8b:48:d8:f4:03:a2:93:96:5a:
af:78:1b:a4:8b:f0:8b:58:4d:93:ca:83:d9:03:99:a8:9a:4c:
91:96:42:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 01:45:31 2025 by rpki-client