Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8ADA9263E3A11F0A772D4F4DAE4EC9C.roa
File: B8ADA9263E3A11F0A772D4F4DAE4EC9C.roa (raw, json)
Hash identifier: pVa6/2/XLymcY5QRyWMMoqfdx7Ud9wL0DIHHhipfz6k=
Subject key identifier: 02:5E:C6:6D:1C:30:93:35:AD:2B:50:FD:10:3B:04:DF:92:B8:0E:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01842C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8ADA9263E3A11F0A772D4F4DAE4EC9C.roa
Signing time: Sat 31 May 2025 16:17:18 +0000
ROA not before: Sat 31 May 2025 16:17:13 +0000
ROA not after: Wed 17 Jun 2026 16:17:13 +0000
asID: 139811
IP address blocks: 154.205.4.0/23 maxlen: 24
154.210.12.0/24 maxlen: 24
154.210.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99372 (0x1842c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 31 16:17:13 2025 GMT
Not After : Jun 17 16:17:13 2026 GMT
Subject: CN=683b2b8e-2ad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8d:4b:9b:3e:24:69:22:2b:9a:21:08:30:70:
5d:df:18:fa:ef:a2:f6:52:a9:18:58:ec:4d:14:2e:
50:d9:63:73:a5:4b:9a:f1:ca:38:d8:6b:9f:79:a4:
0f:21:93:48:7a:44:fe:48:42:c0:f0:c6:a9:65:b2:
33:b2:90:dc:2e:89:66:0b:6a:92:0a:b4:d1:fc:ae:
c5:05:b3:7f:2c:8e:b2:4f:dc:ab:0a:0e:9c:3c:e7:
57:68:fb:53:08:0e:9c:11:e1:1d:54:79:3b:ca:27:
6d:e5:83:9d:10:54:e0:95:31:30:e7:e7:a4:21:25:
04:3a:9b:d2:bc:2b:dd:13:59:a7:ef:ad:c5:26:7b:
d8:ff:94:fe:c3:2a:5b:58:4f:c8:a8:9e:10:da:5b:
44:ac:ea:d8:04:63:0a:c2:e0:6d:fc:b1:bf:32:b5:
12:84:21:78:52:95:80:ba:c6:04:49:63:c9:cf:31:
b1:a0:04:99:c8:f4:17:fa:b7:8e:ba:60:a2:c6:0d:
68:04:0b:c1:17:2f:a2:2d:fc:c3:3f:46:f0:83:ad:
1f:f8:af:a5:0e:7a:9c:49:80:25:f4:7c:16:30:3c:
10:78:48:42:a3:70:c4:09:83:e4:a2:f2:0c:d3:51:
e9:15:86:ce:17:3d:18:29:17:b1:46:f0:40:ab:67:
96:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5E:C6:6D:1C:30:93:35:AD:2B:50:FD:10:3B:04:DF:92:B8:0E:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8ADA9263E3A11F0A772D4F4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.4.0/23
154.210.12.0/24
154.210.15.0/24
Signature Algorithm: sha256WithRSAEncryption
89:89:a0:ba:ce:02:f0:df:cd:5c:dc:e1:eb:0d:59:66:4f:2b:
73:64:ac:92:6e:11:09:df:06:c8:6a:a9:d1:f2:59:d3:29:4e:
19:c9:90:2d:1d:f9:8c:82:58:dc:94:25:44:c8:e4:e4:96:50:
7d:ea:5b:c8:8b:a9:93:39:3f:d1:b2:d8:18:9b:ea:1c:46:fa:
7f:8e:e2:6b:1e:8f:09:32:71:76:90:28:e3:2f:8f:b1:9b:9e:
b0:ef:1d:cf:7f:5a:9d:88:c5:7b:be:66:12:a3:60:ef:55:c6:
a4:89:95:5c:b0:80:d8:0d:16:31:69:0f:9c:30:3a:44:f6:b8:
cb:85:e4:81:3b:e6:80:e9:5b:4a:c0:28:23:6f:0e:46:12:b1:
c4:51:ce:e2:55:3e:9a:bb:93:c2:9e:04:3d:8a:4c:1e:91:d8:
72:e6:94:aa:6f:24:57:55:4b:24:65:4b:5c:83:54:f8:7b:11:
0d:87:52:30:3c:aa:50:fb:9c:f6:00:f3:a6:a7:9c:22:4c:30:
80:d9:8e:ee:fc:04:f0:16:aa:2e:33:a6:3e:68:8a:24:fe:9a:
ec:bc:f7:db:dc:e2:a5:93:f8:94:d7:4c:5f:28:1a:96:d8:ce:
d7:b5:46:5e:27:b3:97:9c:dc:87:b8:bd:e6:bf:5c:e4:ee:24:
5c:21:30:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 05:14:02 2025 by rpki-client