Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9A1812A4413111F09CCD26BEDAE4EC9C.roa
File: 9A1812A4413111F09CCD26BEDAE4EC9C.roa (raw, json)
Hash identifier: eE9NKVTlRDctQW9v7U+CnK15SGn+/vtczfAGrOoDKcU=
Subject key identifier: 14:5C:73:E3:75:1A:A4:4A:4A:D2:25:BC:7C:21:91:FF:F1:86:B9:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0184C4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9A1812A4413111F09CCD26BEDAE4EC9C.roa
Signing time: Wed 04 Jun 2025 10:49:35 +0000
ROA not before: Wed 04 Jun 2025 10:49:30 +0000
ROA not after: Sat 04 Jul 2026 10:49:30 +0000
asID: 984
IP address blocks: 154.83.166.0/24 maxlen: 24
154.83.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 16 Jun 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99524 (0x184c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 4 10:49:30 2025 GMT
Not After : Jul 4 10:49:30 2026 GMT
Subject: CN=684024bf-c572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e0:7a:a2:48:98:b3:5b:ad:09:f6:6c:ba:b8:
e7:e3:81:91:03:9f:c7:1b:d3:e0:b7:95:c3:7f:91:
b2:0a:e0:1f:95:de:47:ed:10:92:15:b6:87:d6:a9:
71:ef:fd:12:ed:53:55:a3:0b:64:5d:5a:6b:8a:4a:
c9:c3:85:39:1f:76:40:f5:01:a9:f0:cf:cb:20:7b:
48:88:e1:7b:6f:20:fd:e9:82:bd:22:20:8f:55:be:
50:48:e3:5e:5c:a0:0e:3f:f5:ed:19:ac:d1:b1:d3:
7d:64:56:f8:1d:c0:b6:1b:98:80:78:8a:77:29:8f:
d9:8c:7d:85:6c:e9:f7:71:e9:96:3e:60:d2:9f:9a:
3b:07:81:c7:f1:fd:96:a7:e9:27:f3:2a:b5:91:73:
8b:0e:5a:20:09:5d:89:9c:9e:31:cc:2f:3d:78:4e:
ee:64:45:7e:cb:9e:d9:e8:b2:70:71:80:fd:dc:7a:
ed:14:3a:0a:8b:53:99:38:05:e8:07:f3:1f:06:17:
bc:b8:68:5d:f9:a3:c2:6c:95:9c:17:b8:88:ee:2e:
cd:e5:e4:08:29:dc:6d:f0:2d:ee:ff:ac:fd:b7:91:
57:23:00:3b:12:e0:3d:14:93:4e:72:19:c8:5e:94:
5a:f9:a4:5f:59:3d:e5:f2:15:52:3e:74:be:7c:94:
3a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:5C:73:E3:75:1A:A4:4A:4A:D2:25:BC:7C:21:91:FF:F1:86:B9:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9A1812A4413111F09CCD26BEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.166.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:78:a1:6d:f6:52:39:09:ba:c5:79:7f:9c:6e:cd:aa:9a:d1:
e4:f0:b5:44:40:32:fa:9c:ba:1e:d0:0a:f5:bb:db:07:c9:ff:
8b:2b:a4:3d:b2:e5:13:f5:00:20:2a:d9:09:39:80:d7:29:0d:
ac:27:9d:7a:59:74:9a:72:d3:43:8d:2b:6a:8a:24:e1:69:11:
31:b1:df:f0:df:18:19:2f:dc:bb:92:f4:b5:8d:61:3d:db:7e:
f5:10:10:3e:10:d1:25:79:45:e1:b9:85:bc:80:5f:7e:1a:04:
09:7e:4a:ed:4e:50:9a:8e:9a:4a:1c:60:2b:ef:c5:db:34:12:
44:ea:97:6f:08:50:6f:8d:28:a0:04:54:28:78:33:98:fe:4b:
05:57:8e:f9:18:86:08:8f:23:3d:3a:ee:1a:c1:1f:fe:c5:79:
6e:84:fa:c8:31:3e:5c:bc:4d:ca:70:b9:f8:82:52:8e:bb:0f:
d8:27:c4:ec:42:bd:98:02:8a:ec:f6:31:f9:1d:94:69:be:96:
0c:93:3b:fa:a1:90:ed:16:84:14:2c:ac:5d:a1:ac:b7:22:08:
4e:08:13:d4:60:e6:27:c1:34:8a:52:56:c8:e7:17:28:79:d1:
a7:9a:7f:26:98:96:ac:13:86:c4:03:1a:64:ef:e3:7b:01:94:
58:ae:16:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 04:24:05 2025 by rpki-client