Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECA645B642C811F0AF74E396DAE4EC9C.roa
File: ECA645B642C811F0AF74E396DAE4EC9C.roa (raw, json)
Hash identifier: 8tAes7vUThii+0oALn/oWMioL9kwN1kV0KseHISYXc0=
Subject key identifier: 02:2E:17:4D:AC:6C:72:8D:FC:B6:50:78:E2:AA:F0:17:15:47:F3:EC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01851E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECA645B642C811F0AF74E396DAE4EC9C.roa
Signing time: Fri 06 Jun 2025 11:25:18 +0000
ROA not before: Fri 06 Jun 2025 11:25:13 +0000
ROA not after: Thu 26 Feb 2026 11:25:13 +0000
asID: 45669
IP address blocks: 154.80.0.0/17 maxlen: 24
154.81.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99614 (0x1851e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 6 11:25:13 2025 GMT
Not After : Feb 26 11:25:13 2026 GMT
Subject: CN=6842d01e-e8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:98:31:2e:0b:fa:f0:a7:1b:37:b0:93:a3:ea:
7b:52:a3:35:48:e4:5d:1b:85:b4:0e:c5:ec:26:c9:
55:c2:54:b9:06:d1:60:b7:45:b7:3e:f4:cc:e0:c2:
fe:43:a8:97:c1:3d:b5:11:2f:40:f7:44:c9:cf:ec:
27:dc:ea:73:0c:f9:e9:17:4d:a5:9f:c0:b7:71:de:
79:e2:32:44:f6:4b:03:fa:32:bc:5e:61:be:86:93:
fd:b8:9d:45:bb:61:fa:9b:ea:9b:68:c1:d1:b5:ef:
b2:88:88:9e:f4:28:f2:7a:8d:39:23:2d:3e:4b:a0:
49:51:6a:c2:86:24:1f:b4:82:ab:22:b2:24:5e:82:
e4:29:a5:34:28:28:06:22:70:33:7d:15:ec:56:24:
74:c4:5e:49:b3:15:5a:87:ee:74:8d:ea:2f:63:a8:
e8:6c:dd:20:52:dd:9c:f6:69:f8:50:7b:49:23:92:
6d:f2:2e:7d:55:74:47:24:a5:fc:fc:2c:01:00:c1:
9a:04:2c:45:5c:ab:f9:86:26:35:6d:f7:db:83:bb:
2c:b0:12:f9:5c:5c:95:cd:fb:9f:47:6b:70:29:46:
f9:36:8c:a7:79:01:62:ee:1f:4d:37:12:b7:5c:0d:
c9:9b:a8:1f:f2:27:0f:f1:20:5c:57:b5:1e:1c:d8:
c3:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:2E:17:4D:AC:6C:72:8D:FC:B6:50:78:E2:AA:F0:17:15:47:F3:EC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ECA645B642C811F0AF74E396DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.0.0/17
154.81.224.0/19
Signature Algorithm: sha256WithRSAEncryption
a5:aa:53:c2:72:88:12:c0:61:75:b3:95:ff:55:fa:77:44:ed:
17:f9:74:19:91:74:93:39:16:93:5f:1a:3d:a5:95:37:b4:0b:
56:fc:72:31:07:19:cb:ca:88:0b:65:9b:13:32:f2:4f:2b:04:
e8:1a:d2:ab:b9:66:df:f7:b3:d1:37:fb:3a:94:86:8b:7f:5c:
8d:e1:eb:46:67:d9:c3:f7:a6:59:a0:08:d7:84:bb:b5:9a:06:
32:7f:27:6d:a9:22:3e:b1:75:d4:14:35:0e:8b:2e:d2:ee:21:
65:89:3f:d1:02:1f:65:63:56:3e:9e:9f:6e:3b:ac:da:b1:ab:
f1:f2:6f:23:50:21:7b:8a:38:70:ec:cf:08:2f:d5:95:47:20:
25:ba:26:58:f2:41:f3:ac:a9:7a:6d:50:ce:a8:79:22:73:07:
02:98:fb:75:f0:cc:d4:45:73:a0:01:ba:fa:97:88:0e:bd:6c:
d5:aa:f9:07:5d:c3:f0:a7:a4:38:0b:7b:b0:29:40:e0:0c:83:
6b:f8:e8:71:82:ee:b1:ae:22:66:c4:4a:67:93:b4:c0:f5:ea:
3f:c4:53:25:0b:97:13:b7:e3:74:04:82:6f:36:3a:a7:7d:1c:
50:15:14:3e:27:20:76:63:92:ad:98:d4:f6:04:b6:bb:71:50:
b1:3a:15:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 18:03:26 2025 by rpki-client