Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFD8D6B86C2C11F093BE6EF3DAE4EC9C.roa
File: DFD8D6B86C2C11F093BE6EF3DAE4EC9C.roa (raw, json)
Hash identifier: oIlmWP/uuO9lMnh/BMNpgzrn4DUDCquVguR4v/C8BgU=
Subject key identifier: 95:11:33:D2:93:0E:1F:A4:68:B8:76:18:DF:F7:CC:E8:9F:0B:3F:1F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018FDD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFD8D6B86C2C11F093BE6EF3DAE4EC9C.roa
Signing time: Tue 29 Jul 2025 03:34:04 +0000
ROA not before: Tue 29 Jul 2025 03:34:00 +0000
ROA not after: Wed 29 Oct 2025 03:34:00 +0000
asID: 9294
IP address blocks: 154.205.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102365 (0x18fdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 29 03:34:00 2025 GMT
Not After : Oct 29 03:34:00 2025 GMT
Subject: CN=6888412c-47f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e7:7d:09:65:d4:4b:52:a2:d9:d6:3e:f3:99:
24:e1:73:5d:0f:f9:88:a3:75:f7:68:0b:fe:3a:5b:
7e:b8:13:4e:77:c5:8c:e8:06:e1:58:94:3f:89:08:
3f:1a:45:36:da:a1:d8:91:ac:01:59:3b:bb:ea:68:
ee:dc:2a:53:d9:a6:63:3b:1f:42:dd:a2:fc:7a:b1:
ca:29:41:c9:cc:3c:0c:52:55:24:a3:78:8c:f5:10:
49:74:1f:de:9f:fc:01:47:a6:ec:c7:b8:72:28:5a:
53:b2:58:e5:9e:cd:98:30:94:d3:79:e5:10:b7:6c:
66:bd:7a:92:e0:29:56:c7:22:1b:8e:95:03:64:63:
5f:e2:9e:46:81:af:7b:9e:86:47:ce:ad:64:05:52:
4d:81:6d:68:a9:ba:0d:72:5d:cf:8f:f2:11:30:c7:
6f:11:77:8e:3c:9f:d2:c2:7b:28:3f:08:4c:20:cf:
e0:fb:ae:12:d6:ec:ef:d6:14:7c:60:65:a1:39:63:
5f:40:9c:f0:02:ef:94:0d:8d:cb:b9:fa:dd:56:a0:
04:a8:03:67:3a:97:da:4e:61:86:02:df:41:4a:47:
cc:38:94:74:f8:00:c7:62:9a:47:ed:1a:6b:99:6d:
df:6c:af:9b:bd:3a:57:5e:88:db:de:60:5f:38:89:
a3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:11:33:D2:93:0E:1F:A4:68:B8:76:18:DF:F7:CC:E8:9F:0B:3F:1F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFD8D6B86C2C11F093BE6EF3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.64.0/18
Signature Algorithm: sha256WithRSAEncryption
3f:ca:6d:04:81:a2:1d:43:eb:ce:5e:1e:e9:af:83:72:78:98:
47:18:b5:74:16:3e:0a:72:2a:ca:3b:59:45:5f:e4:8b:7c:65:
b4:87:5f:2a:db:52:5a:7d:1c:3f:0d:62:ee:c8:9c:3f:fa:ba:
9b:8a:d4:1e:2a:5e:39:12:09:5f:5c:41:fa:b0:1e:87:50:41:
81:40:cd:ba:8c:cb:52:dc:e4:16:b2:0a:83:7e:4a:46:e2:d2:
a5:3d:1c:f9:d2:c0:8c:1e:9a:61:f5:db:4c:0e:86:d1:ce:57:
79:24:67:56:35:02:1b:c7:3a:11:dc:0a:54:c3:9d:55:62:8e:
2a:59:24:5c:27:93:9e:92:4f:c4:0b:2d:cb:89:39:7d:8f:43:
c7:cb:91:43:c6:e6:3b:e5:b9:6e:1d:73:57:71:d3:65:86:fb:
7f:98:93:eb:eb:e4:a3:cc:3c:4b:85:b1:48:1a:4b:44:ff:db:
8b:2e:f6:43:94:67:d5:46:16:17:fd:2d:0d:20:9a:49:ba:29:
42:55:15:d1:fb:89:cb:18:1d:da:c1:09:fb:d2:f8:14:4f:11:
f0:56:0b:48:98:d4:97:0a:fd:22:43:c2:80:0d:7f:f7:68:0a:
75:75:69:af:a6:7e:a4:94:83:3f:6c:31:24:d1:9d:0e:03:b8:
ab:94:3c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:12:26 2025 by rpki-client