Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC89D0EE1CAA11F08B10C4B2DAE4EC9C.roa
File: BC89D0EE1CAA11F08B10C4B2DAE4EC9C.roa (raw, json)
Hash identifier: EvjU4hwoEEcFp710cMCyfsRzoeMAQf+Q533YNuRt8ZU=
Subject key identifier: BE:97:68:1D:C5:C8:F8:94:2E:71:E3:85:53:24:AA:C3:95:6A:89:A8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0179FE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC89D0EE1CAA11F08B10C4B2DAE4EC9C.roa
Signing time: Fri 18 Apr 2025 23:13:29 +0000
ROA not before: Fri 18 Apr 2025 23:13:24 +0000
ROA not after: Wed 04 Jun 2025 23:13:24 +0000
asID: 399195
IP address blocks: 154.90.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:06:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96766 (0x179fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 23:13:24 2025 GMT
Not After : Jun 4 23:13:24 2025 GMT
Subject: CN=6802dc98-f457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1e:38:33:56:b8:19:94:25:fa:4b:95:fc:42:
ec:df:f0:97:36:bb:41:21:c9:06:dd:f2:0a:03:15:
be:21:78:9b:9f:be:27:e1:d0:5a:5d:ad:22:66:aa:
86:e0:fb:72:c9:20:d2:28:5c:cd:0e:4e:54:c7:3f:
b2:ca:a4:c2:e5:ea:09:33:4f:78:dc:74:22:c5:89:
27:de:36:d7:c5:de:0d:93:80:72:89:2b:5e:7e:8e:
c0:ff:d1:8e:04:6f:d4:b6:3e:15:f0:92:c1:de:dd:
52:90:b6:23:fb:2a:b9:1c:4c:44:11:a1:52:50:22:
06:8f:60:17:17:55:06:cd:5f:34:5c:db:d0:1e:10:
a2:84:62:4c:35:ae:75:ac:43:7f:ad:0a:78:da:5b:
4d:1a:bd:c2:d3:a9:99:d1:9e:10:df:03:de:eb:59:
a2:be:84:fa:f0:8d:fd:4b:7f:f2:ba:36:8b:36:26:
94:9c:61:5d:df:c0:9c:56:36:bf:30:0a:8e:b6:d0:
00:76:66:5d:c0:2a:4b:da:4b:cd:90:50:04:20:b4:
18:08:70:8e:98:ff:87:c0:a3:42:05:5e:a0:1b:b0:
3e:f8:86:22:66:95:c8:de:db:64:5a:05:e7:3a:a9:
c1:76:e7:19:f0:31:91:57:86:57:4b:c8:c2:3a:6b:
de:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:97:68:1D:C5:C8:F8:94:2E:71:E3:85:53:24:AA:C3:95:6A:89:A8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC89D0EE1CAA11F08B10C4B2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.224.0/19
Signature Algorithm: sha256WithRSAEncryption
57:05:d9:62:74:eb:ff:49:3a:cc:09:d2:d4:62:1d:97:02:59:
38:6b:be:ed:3c:f9:0f:28:6a:51:01:f6:98:57:55:53:93:8c:
3f:d4:ff:d7:91:eb:af:d8:09:ec:2c:74:3d:03:00:ef:36:9c:
a0:dd:86:d7:a4:76:33:1b:9d:1b:b9:78:b5:c8:72:58:9e:cc:
48:e9:83:31:e6:f7:e4:8b:08:be:52:83:bf:e7:9c:9c:f7:f1:
d0:af:66:6e:5f:7f:55:e6:2d:00:f0:f1:76:4b:a8:bb:46:5e:
67:c0:36:6a:26:f0:b9:54:2c:ee:1a:ac:bd:d9:8a:56:5b:87:
b3:98:b5:45:e1:d7:a6:ea:4f:be:04:0f:dd:fb:eb:c4:0e:69:
56:46:2a:47:cd:e1:51:49:04:50:d6:f3:64:7a:cf:16:cd:a6:
cc:7c:2c:36:a0:c5:bf:c9:f3:46:d1:c6:81:64:0c:a7:72:d3:
c5:e7:bb:9e:cd:8d:0e:f7:9b:e6:8c:50:36:7c:3f:d7:72:8b:
3c:f9:2e:3d:14:fd:79:78:7a:bc:54:3a:fb:c2:6e:4d:83:fe:
69:95:ff:a3:09:b3:e9:8e:aa:ba:ed:a1:21:72:54:d8:dc:22:
17:78:e9:b0:34:40:ed:3a:d7:19:e1:b9:4c:6c:7d:b7:19:03:
5b:48:b5:26
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXn+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDE4MjMxMzI0WhcNMjUwNjA0MjMxMzI0WjAYMRYw
FAYDVQQDEw02ODAyZGM5OC1mNDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwB44M1a4GZQl+kuV/ELs3/CXNrtBIckG3fIKAxW+IXibn74n4dBaXa0i
ZqqG4PtyySDSKFzNDk5Uxz+yyqTC5eoJM0943HQixYkn3jbXxd4Nk4ByiStefo7A
/9GOBG/Utj4V8JLB3t1SkLYj+yq5HExEEaFSUCIGj2AXF1UGzV80XNvQHhCihGJM
Na51rEN/rQp42ltNGr3C06mZ0Z4Q3wPe61mivoT68I39S3/yujaLNiaUnGFd38Cc
Vja/MAqOttAAdmZdwCpL2kvNkFAEILQYCHCOmP+HwKNCBV6gG7A++IYiZpXI3ttk
WgXnOqnBducZ8DGRV4ZXS8jCOmve0wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFL6X
aB3FyPiULnHjhVMkqsOVaomoMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CQzg5RDBFRTFDQUExMUYwOEIxMEM0QjJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmlrgMA0GCSqGSIb3DQEB
CwUAA4IBAQBXBdlidOv/STrMCdLUYh2XAlk4a77tPPkPKGpRAfaYV1VTk4w/1P/X
keuv2AnsLHQ9AwDvNpyg3YbXpHYzG50buXi1yHJYnsxI6YMx5vfkiwi+UoO/55yc
9/HQr2ZuX39V5i0A8PF2S6i7Rl5nwDZqJvC5VCzuGqy92YpWW4ezmLVF4dem6k++
BA/d++vEDmlWRipHzeFRSQRQ1vNkes8WzabMfCw2oMW/yfNG0caBZAynctPF57ue
zY0O95vmjFA2fD/Xcos8+S49FP15eHq8VDr7wm5Ng/5plf+jCbPpjqq67aEhclTY
3CIXeOmwNEDtOtcZ4blMbH23GQNbSLUm
-----END CERTIFICATE-----
Generated at Sun Apr 27 13:02:26 2025 by rpki-client