Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABC311DE484811F0A7DD85E8DAE4EC9C.roa
File: ABC311DE484811F0A7DD85E8DAE4EC9C.roa (raw, json)
Hash identifier: sCcj9vR0xtgULXc4D/f0AUTvHtSl+NzKA8caf9d59p0=
Subject key identifier: 7B:73:CF:27:B6:23:76:BC:07:84:88:47:35:46:19:9F:71:27:C1:DE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01866A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABC311DE484811F0A7DD85E8DAE4EC9C.roa
Signing time: Fri 13 Jun 2025 11:22:22 +0000
ROA not before: Fri 13 Jun 2025 11:22:15 +0000
ROA not after: Fri 20 Feb 2026 11:22:15 +0000
asID: 45669
IP address blocks: 154.80.0.0/17 maxlen: 24
154.81.224.0/19 maxlen: 24
154.91.160.0/22 maxlen: 24
154.91.164.0/23 maxlen: 24
154.198.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99946 (0x1866a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 13 11:22:15 2025 GMT
Not After : Feb 20 11:22:15 2026 GMT
Subject: CN=684c09ee-7559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:93:f6:67:9f:54:4c:d9:59:86:e3:b0:71:0b:
f2:2c:c7:18:18:3f:6b:65:6a:22:57:08:4c:98:a5:
53:49:50:59:30:f4:f5:61:c5:31:15:bd:92:36:a3:
de:c0:ef:e6:f3:48:d3:16:94:a8:10:97:7f:66:b7:
41:b4:9e:30:df:9b:54:f7:5f:7f:69:b0:54:3b:68:
a4:8e:6b:b8:eb:1f:35:8e:83:bc:62:7f:a8:88:37:
d6:73:1a:a5:fb:bc:cf:29:af:a5:68:b5:c3:47:3b:
2d:67:d0:d7:cd:b6:17:e9:e4:e6:32:2e:38:41:81:
67:d1:fe:01:06:75:a1:c5:0c:c0:c1:8b:0c:b8:3d:
7c:2f:4c:9c:b8:f9:af:c6:a8:f1:75:e6:3b:33:0f:
c4:ad:6c:eb:21:76:c4:7c:c7:c7:f2:23:17:ec:ad:
eb:f7:47:99:ed:e2:3a:b8:10:9b:63:55:8f:d7:b7:
6e:7c:a5:b4:40:86:62:13:ee:7a:1f:a9:97:9c:72:
ef:c1:35:15:1d:01:fa:d6:7f:7b:b7:26:1c:77:eb:
53:b3:45:e1:92:fe:5b:ca:7a:e7:01:f6:61:33:a4:
64:4a:f0:4e:53:6a:69:d7:b2:3d:a7:d0:36:93:af:
c7:0a:d4:8e:6a:b1:32:26:15:c8:70:eb:27:32:d0:
43:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:73:CF:27:B6:23:76:BC:07:84:88:47:35:46:19:9F:71:27:C1:DE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABC311DE484811F0A7DD85E8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.0.0/17
154.81.224.0/19
154.91.160.0-154.91.165.255
154.198.64.0/18
Signature Algorithm: sha256WithRSAEncryption
0b:43:c6:70:2a:8d:45:ef:ba:27:67:45:c3:e0:11:8a:4f:33:
34:e0:b6:29:89:a2:e3:fc:51:e0:46:05:a9:b5:8a:8e:e4:aa:
8d:b5:5d:69:be:64:a0:a5:95:d1:a8:5f:f6:4c:b7:0b:57:f3:
bd:ff:af:02:7d:c0:2b:9c:fa:42:1f:3c:e9:d8:31:4e:0b:16:
f7:f7:ef:93:59:b2:02:2f:50:dc:68:1f:f9:52:1f:f6:ea:97:
d5:ff:68:c4:37:41:81:34:6e:5c:5f:4a:58:a0:6b:77:e8:15:
cd:82:0e:c9:0f:2b:b9:b2:5c:68:4d:56:db:38:e7:7a:d8:c5:
7c:99:2b:ff:66:7b:25:ae:c4:95:f3:8c:b4:04:57:57:43:36:
47:71:da:02:19:aa:9e:ff:2f:71:3e:b1:e4:3d:03:56:fa:67:
45:8b:64:c2:9a:c2:5c:c7:2c:4c:96:34:00:94:34:1c:17:6d:
bf:a1:35:86:a4:6d:b1:c7:f5:39:56:98:60:ec:3b:5d:75:b6:
68:1f:a1:c0:2d:2e:df:16:e7:36:a5:d5:05:1f:40:af:40:26:
58:d2:44:da:ff:4a:dd:9b:cd:9f:a4:7e:c5:1c:ef:91:f0:65:
42:0f:cb:0d:26:33:ba:d4:5f:af:26:4d:09:52:41:b6:e3:cd:
e7:42:96:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 20:07:04 2025 by rpki-client