Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E10C7012450D11F08DEF27D8DAE4EC9C.roa
File: E10C7012450D11F08DEF27D8DAE4EC9C.roa (raw, json)
Hash identifier: PyyIWl7eNFC4nBMK4sHLWvelo7uEZ/xjO86Mz86Fm1w=
Subject key identifier: 03:8F:BF:4C:6C:A0:54:62:1E:44:23:FC:9F:1C:B3:8D:2E:16:B2:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018588
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E10C7012450D11F08DEF27D8DAE4EC9C.roa
Signing time: Mon 09 Jun 2025 08:43:56 +0000
ROA not before: Mon 09 Jun 2025 08:43:52 +0000
ROA not after: Wed 16 Jul 2025 08:43:52 +0000
asID: 395793
IP address blocks: 154.83.8.0/24 maxlen: 24
154.83.9.0/24 maxlen: 24
154.83.10.0/24 maxlen: 24
154.83.11.0/24 maxlen: 24
154.83.24.0/24 maxlen: 24
154.91.152.0/24 maxlen: 24
154.91.153.0/24 maxlen: 24
154.91.154.0/24 maxlen: 24
154.91.155.0/24 maxlen: 24
154.91.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99720 (0x18588)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 9 08:43:52 2025 GMT
Not After : Jul 16 08:43:52 2025 GMT
Subject: CN=68469ecc-e53a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b5:cb:31:54:de:51:6f:0b:f9:6b:80:14:9a:
d4:e2:f5:c6:55:4d:a5:d1:fa:af:ad:be:71:9f:e8:
5a:de:00:34:4c:94:44:6d:db:27:bb:3a:d4:4a:a2:
d5:fd:ca:c0:c9:ea:ec:d4:0b:c3:18:d8:f7:1a:90:
e0:fe:15:17:a9:e9:72:14:02:fe:18:61:5d:e7:1e:
1a:6d:a8:1a:f5:2e:dd:ed:51:eb:c2:c0:74:0a:ae:
32:7b:e2:60:4f:f8:0d:ea:57:db:0c:27:4a:e9:f6:
d6:a9:3d:ee:a8:ef:3a:90:31:30:c8:36:0d:a6:57:
58:b0:19:65:4e:52:31:db:43:35:ec:fa:48:65:8a:
9c:a5:a4:39:8a:01:7d:c5:2a:e2:30:e4:1b:47:75:
42:d8:6e:10:f9:fd:b8:70:98:17:e7:48:1a:81:e7:
c4:38:fb:66:d3:23:42:38:fa:f0:a3:68:eb:2c:12:
f5:b5:bb:06:63:9c:bf:44:ba:b2:85:14:2c:67:a9:
a3:d7:27:cf:dc:42:4b:60:c1:66:dd:df:7a:0a:e7:
4e:19:4f:03:89:d4:8f:26:c0:86:29:ee:32:8a:88:
29:6d:36:e6:db:cd:32:89:a1:a2:95:76:e8:fb:12:
38:f1:ea:85:6f:5c:8d:20:9f:e2:33:e2:77:1e:2b:
bb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8F:BF:4C:6C:A0:54:62:1E:44:23:FC:9F:1C:B3:8D:2E:16:B2:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E10C7012450D11F08DEF27D8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.8.0/22
154.83.24.0/24
154.91.152.0-154.91.156.255
Signature Algorithm: sha256WithRSAEncryption
7b:0e:e5:fe:80:76:e4:66:27:54:30:79:32:19:59:a2:d4:71:
c0:e7:3b:cb:ab:a9:a0:b3:54:35:4e:dc:e0:ba:d7:fa:7d:1c:
b3:1d:26:5e:02:35:ea:ac:02:80:55:b1:fa:e5:e1:cc:59:6b:
b2:b8:b8:48:ca:a2:ef:22:37:20:d6:91:15:66:f9:93:12:ec:
19:7a:de:eb:0a:87:95:7b:2b:97:64:23:5d:ea:95:3e:e7:11:
4b:2b:04:8e:df:b3:fa:2d:9e:49:5c:26:27:da:65:4f:78:42:
6b:38:c3:00:18:c8:93:c5:51:7a:ce:72:c4:22:08:48:f9:6f:
b6:00:ff:5e:bc:0a:0b:11:6a:ce:b5:3e:38:88:ea:7d:55:07:
63:2c:8b:fc:1a:eb:43:a0:1a:ff:5b:c7:0f:cf:5a:c0:a6:82:
3f:96:c9:f9:12:ce:e6:aa:c8:b3:22:b7:50:af:52:71:1c:86:
ff:91:b8:4d:10:cd:fa:09:b6:0d:a8:d7:9e:70:cd:eb:00:40:
f5:70:40:ae:37:a7:de:40:e4:38:a5:a7:75:78:de:f2:a5:81:
a4:84:b4:3f:0e:dc:8e:14:2a:50:cd:b3:92:d9:85:54:88:16:
d0:5b:e3:9d:5e:08:61:32:a1:5d:04:bb:49:dc:b2:cb:94:f7:
80:d9:9b:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 18:04:08 2025 by rpki-client