Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C955DBE043A811F0BC26CDC2DAE4EC9C.roa
File: C955DBE043A811F0BC26CDC2DAE4EC9C.roa (raw, json)
Hash identifier: V3Bsl5OvPKGjdTFvdtmU6+1o+zuETspvDj6jASaHULk=
Subject key identifier: 0F:DD:CA:8C:86:52:B0:5C:B8:E4:23:D8:C3:CA:97:47:4F:DF:9C:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01856C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C955DBE043A811F0BC26CDC2DAE4EC9C.roa
Signing time: Sat 07 Jun 2025 14:07:46 +0000
ROA not before: Sat 07 Jun 2025 14:07:41 +0000
ROA not after: Tue 15 Jul 2025 14:07:41 +0000
asID: 20473
IP address blocks: 154.197.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99692 (0x1856c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 7 14:07:41 2025 GMT
Not After : Jul 15 14:07:41 2025 GMT
Subject: CN=684447b2-01b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:41:c6:15:6c:83:c9:51:24:33:68:e6:93:3d:
f8:b7:eb:f6:94:66:db:5f:2c:81:eb:4e:9c:c6:d6:
ff:05:51:56:55:e3:70:c4:b8:e7:c7:b7:1b:64:cc:
28:4a:6b:56:a6:2e:9b:79:7b:aa:10:98:6f:2f:a8:
7d:ef:30:30:6c:b9:0a:59:49:38:42:e2:01:0c:21:
82:9d:6e:ab:52:44:4f:51:8f:10:69:3f:9f:03:16:
a4:e7:fc:41:2f:72:af:dd:38:e7:90:39:a4:fd:8e:
b4:9f:35:ba:99:6b:2b:dd:97:ff:0f:e7:7d:6c:3a:
99:71:45:73:8e:1e:12:53:ec:34:ba:38:38:ab:8e:
0b:e1:8c:79:ae:d5:7b:c1:34:8b:d0:59:4d:a5:0a:
a8:2a:1f:fb:b7:50:b2:fb:2a:10:9f:36:a6:86:49:
c2:8b:88:5d:31:03:4a:f9:77:40:3d:af:29:dd:41:
e0:aa:55:f5:a5:98:ed:1a:2b:89:f9:cd:d4:91:bf:
65:30:4c:78:36:bd:33:6e:91:50:73:98:69:69:77:
b8:87:88:1d:3c:5e:cb:62:80:f4:57:c1:f8:34:02:
a5:6d:dc:36:da:33:0d:70:1a:9d:7c:9a:1f:47:59:
3a:7f:1b:c4:cb:69:60:d5:dc:c5:53:a4:20:c9:4d:
3a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:DD:CA:8C:86:52:B0:5C:B8:E4:23:D8:C3:CA:97:47:4F:DF:9C:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C955DBE043A811F0BC26CDC2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.32.0/24
Signature Algorithm: sha256WithRSAEncryption
88:f4:94:79:8a:8a:a1:22:32:0c:e9:1d:91:84:be:43:8c:a4:
94:13:6b:d4:e0:95:34:04:e8:1e:2f:47:39:f6:1f:7b:17:43:
4b:1d:c2:95:2e:88:b6:b0:38:d3:0d:49:01:9f:ad:96:72:49:
5f:d8:bd:36:18:74:62:ca:b5:27:ce:5b:5a:12:2b:3d:49:bb:
31:c4:98:98:8b:2e:90:33:66:d4:0e:2c:81:bf:70:f5:63:ac:
6a:e4:4a:10:5d:f0:c5:30:39:52:49:7f:28:87:a1:28:9d:b6:
b8:c3:4b:37:1e:93:d4:33:68:02:96:52:c5:0b:4b:71:c9:8b:
73:57:18:7a:9c:e4:af:1f:28:c9:58:43:d4:97:b1:63:26:14:
f9:7d:50:45:93:fe:f2:a4:bb:2f:3d:56:e7:d5:39:14:06:f4:
04:f2:02:97:75:9e:f1:7e:09:a3:33:a2:d8:fc:d2:fa:8d:ab:
f5:09:1a:b6:d8:81:7d:d6:9b:28:77:c3:c7:2f:7e:20:23:d0:
ea:82:ab:a3:e3:f2:dc:45:1d:ef:ed:4c:de:32:ee:b3:ae:aa:
a7:06:78:77:c9:9e:f6:7d:65:9a:b9:83:66:19:fd:5a:54:82:
65:3e:2c:f7:e7:a4:90:64:f4:f1:ee:d7:8b:12:e4:bc:8c:8c:
d6:5f:1a:01
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYVsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjA3MTQwNzQxWhcNMjUwNzE1MTQwNzQxWjAYMRYw
FAYDVQQDEw02ODQ0NDdiMi0wMWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAmUHGFWyDyVEkM2jmkz34t+v2lGbbXyyB606cxtb/BVFWVeNwxLjnx7cb
ZMwoSmtWpi6beXuqEJhvL6h97zAwbLkKWUk4QuIBDCGCnW6rUkRPUY8QaT+fAxak
5/xBL3Kv3TjnkDmk/Y60nzW6mWsr3Zf/D+d9bDqZcUVzjh4SU+w0ujg4q44L4Yx5
rtV7wTSL0FlNpQqoKh/7t1Cy+yoQnzamhknCi4hdMQNK+XdAPa8p3UHgqlX1pZjt
GiuJ+c3Ukb9lMEx4Nr0zbpFQc5hpaXe4h4gdPF7LYoD0V8H4NAKlbdw22jMNcBqd
fJofR1k6fxvEy2lg1dzFU6QgyU06jwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFA/d
yoyGUrBcuOQj2MPKl0dP35wOMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DOTU1REJFMDQzQTgxMUYwQkMyNkNEQzJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsUgMA0GCSqGSIb3DQEB
CwUAA4IBAQCI9JR5ioqhIjIM6R2RhL5DjKSUE2vU4JU0BOgeL0c59h97F0NLHcKV
Loi2sDjTDUkBn62Wcklf2L02GHRiyrUnzltaEis9SbsxxJiYiy6QM2bUDiyBv3D1
Y6xq5EoQXfDFMDlSSX8oh6Eonba4w0s3HpPUM2gCllLFC0txyYtzVxh6nOSvHyjJ
WEPUl7FjJhT5fVBFk/7ypLsvPVbn1TkUBvQE8gKXdZ7xfgmjM6LY/NL6jav1CRq2
2IF91psod8PHL34gI9Dqgquj4/LcRR3v7UzeMu6zrqqnBnh3yZ72fWWauYNmGf1a
VIJlPiz356SQZPTx7teLEuS8jIzWXxoB
-----END CERTIFICATE-----
Generated at Sun Jun 15 04:42:33 2025 by rpki-client