Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CF024B246EE511F0855D2BACDAE4EC9C.roa
File: CF024B246EE511F0855D2BACDAE4EC9C.roa (raw, json)
Hash identifier: kyKfS1TkSjR8v5aG17Rajw13QjFz8gapJuskaOYHcHM=
Subject key identifier: FD:AB:8B:30:46:C4:EE:5F:51:95:F6:72:D4:F0:8F:52:F3:03:C7:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019023
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CF024B246EE511F0855D2BACDAE4EC9C.roa
Signing time: Fri 01 Aug 2025 14:42:55 +0000
ROA not before: Fri 01 Aug 2025 14:42:50 +0000
ROA not after: Sat 30 Aug 2025 14:42:50 +0000
asID: 20326
IP address blocks: 154.202.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102435 (0x19023)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 1 14:42:50 2025 GMT
Not After : Aug 30 14:42:50 2025 GMT
Subject: CN=688cd26f-83ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:34:cc:6f:d4:de:16:bf:f4:db:f8:b1:00:95:
8f:d3:2c:9c:5f:c0:eb:16:48:c9:b4:91:9b:77:4e:
6c:b6:1a:ee:93:cf:9e:63:d6:c5:83:95:af:c1:6e:
c1:98:fe:b3:59:07:db:81:70:79:a5:bd:f1:10:d1:
69:cc:35:8f:48:c0:0d:7d:a1:f2:3b:19:f5:f6:71:
92:14:ba:45:be:63:1b:f2:32:41:ab:47:18:b1:23:
1e:17:dd:be:80:bd:e6:ab:5a:9f:1e:aa:07:bf:ac:
b5:e7:87:86:76:f5:cc:65:33:9d:9f:90:31:ad:94:
11:3d:1d:67:d0:64:19:bf:b2:1d:fb:e3:c9:ef:13:
21:30:1c:0a:4d:39:93:aa:f5:2b:70:b9:40:ad:af:
f0:7a:75:f9:b5:9a:2f:b8:90:b2:54:98:63:7c:7d:
25:a8:ca:e7:23:30:f2:c6:54:fd:11:99:8e:30:8f:
a4:3e:02:b8:3c:84:2a:c5:ee:0a:3b:98:98:10:d2:
ba:24:4d:92:18:8f:aa:fe:64:58:0c:da:69:38:fb:
a6:ee:32:d2:f6:c0:f5:e2:02:9d:27:09:14:f8:de:
4f:c2:56:4f:1b:e2:cd:c8:f6:6d:40:19:6f:c9:e2:
99:74:e3:3b:c1:ce:de:d1:45:e8:96:ca:d1:e3:80:
f8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:AB:8B:30:46:C4:EE:5F:51:95:F6:72:D4:F0:8F:52:F3:03:C7:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CF024B246EE511F0855D2BACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.4.0/24
Signature Algorithm: sha256WithRSAEncryption
91:75:55:f5:e1:02:01:15:15:12:e3:a6:68:a3:af:6e:3c:29:
fa:d9:5b:bb:11:78:37:6f:bf:3f:1a:15:d3:bd:20:bb:95:20:
70:fb:b5:31:74:0a:52:1c:45:dd:8e:e6:e2:e8:f2:43:06:15:
c6:88:2b:3a:13:83:1b:5b:22:5f:fd:cd:f7:d9:6f:e7:f8:92:
db:b2:93:9c:bc:1a:1a:27:b2:27:24:d8:76:2e:bd:a2:09:46:
6d:4e:9b:03:0c:04:50:8d:75:da:5a:0e:0c:a9:07:f7:a5:00:
e2:fe:a4:28:fb:6e:cc:cd:9e:f7:b9:a9:c9:19:48:a6:47:44:
0b:f5:2d:c9:80:ff:cd:82:16:5a:12:83:01:e0:de:bd:2c:61:
ab:bb:06:ee:db:4f:52:de:5e:13:ee:c0:7e:f2:39:e6:90:36:
97:86:a7:e4:ec:6f:66:d9:3d:38:4e:94:a1:23:d7:59:18:7e:
3b:26:cd:7c:bb:c6:59:73:87:18:75:3a:4a:1d:41:05:a8:32:
17:98:83:8a:2b:50:f2:f6:e2:4a:a0:80:26:89:e5:06:46:2b:
b8:1b:0f:49:0e:cd:ec:84:fc:ba:33:d5:f9:62:7f:8a:d4:f1:
65:eb:9d:d4:0c:ac:8a:3d:cc:85:b3:af:b8:00:34:74:31:cf:
71:1a:08:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:14:32 2025 by rpki-client