Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FAF09324328D11F084879DAADAE4EC9C.roa
File: FAF09324328D11F084879DAADAE4EC9C.roa (raw, json)
Hash identifier: Fw2U8FIZjHonMOWGIBkMXngOekiIHxarMbmGbs2X8iM=
Subject key identifier: 5A:16:D7:4F:5F:60:70:B7:20:A2:7A:35:82:61:31:CF:EC:F7:F5:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018108
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FAF09324328D11F084879DAADAE4EC9C.roa
Signing time: Fri 16 May 2025 19:43:03 +0000
ROA not before: Fri 16 May 2025 19:42:59 +0000
ROA not after: Mon 01 Dec 2025 19:42:59 +0000
asID: 29802
IP address blocks: 154.205.172.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98568 (0x18108)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 16 19:42:59 2025 GMT
Not After : Dec 1 19:42:59 2025 GMT
Subject: CN=68279547-dc05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:80:01:b3:63:ee:ad:97:97:57:13:4e:81:7d:
07:3e:d9:80:e4:78:fc:96:c4:81:2b:0d:a5:05:9a:
ce:42:97:2f:f0:8c:7a:20:26:e6:37:c3:be:6d:11:
59:20:b7:05:f3:32:fb:db:c0:b4:5c:a4:f3:d7:15:
41:70:50:b5:cf:f9:a4:aa:20:d7:5a:f2:04:42:35:
dc:b4:7b:4a:d5:9e:2f:9f:da:14:49:66:a6:e3:f0:
57:bc:6d:8f:6e:31:a5:6e:e7:b6:32:f5:2c:aa:82:
a5:0e:d1:05:e8:ea:cf:66:6a:3c:c6:57:27:2c:8f:
76:b2:45:f8:6e:18:87:c8:00:95:d7:56:55:52:5d:
88:34:e5:10:4c:4b:51:12:05:c2:0a:b7:61:63:3f:
e0:8a:2a:ca:01:27:6b:03:a8:f8:e7:7c:8e:d8:d1:
1b:c7:9a:4f:79:4d:17:ba:e2:82:7f:cc:ea:79:8d:
0c:03:67:a1:55:6f:47:55:4a:f8:1f:9f:a5:ea:78:
20:ec:11:f8:c3:5f:c3:2a:71:6f:d5:b4:0b:1c:41:
71:4d:42:7c:39:19:94:a4:90:b7:94:ac:4c:03:0d:
9b:d6:94:18:8f:6b:cd:01:9e:fb:5f:4b:c6:21:dc:
bc:2e:7c:5f:db:b0:a2:5d:e5:7c:8c:47:de:a4:00:
a4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:16:D7:4F:5F:60:70:B7:20:A2:7A:35:82:61:31:CF:EC:F7:F5:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FAF09324328D11F084879DAADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.172.0/23
Signature Algorithm: sha256WithRSAEncryption
5c:e6:10:a0:44:6f:3d:21:97:21:0d:dc:46:c1:23:b4:75:4a:
d4:04:2c:a3:dc:a1:1a:53:bc:28:15:24:b6:79:b1:04:3c:48:
5b:f6:66:de:a3:df:dd:2e:c2:8f:81:af:7b:25:bc:05:24:7f:
78:2f:ab:d3:00:c5:51:5c:fd:5e:9f:5e:f3:15:00:6f:38:b4:
33:01:71:f2:61:3a:53:15:ee:69:df:4a:1e:65:e8:45:ef:64:
90:d2:31:f3:a0:5e:ce:a5:18:0a:9b:0d:e3:6e:23:8b:3e:0a:
1a:f6:59:4d:48:e1:93:58:37:8f:49:58:1f:ed:4e:66:ce:f0:
f3:91:3c:a7:1d:5b:31:04:2c:ad:0f:1a:22:bb:c6:52:4f:21:
fe:0a:9b:c7:24:c5:75:f1:36:7f:be:d9:5b:ee:87:2f:ed:9f:
3b:85:a7:f9:12:b6:db:96:3a:5c:58:6d:8c:62:01:36:f4:2e:
ae:0f:df:51:80:29:57:01:7f:3d:6f:6c:9a:3b:bd:ba:c2:11:
18:1d:14:a7:f0:a8:a2:48:f5:d9:84:36:bd:42:7f:79:92:71:
20:a9:2a:63:b2:d0:4b:5d:3b:96:35:5f:44:17:15:0d:75:c2:
2f:e5:c5:f6:b0:ff:b2:46:3d:02:ef:09:26:fd:90:2e:56:a0:
6b:3f:2d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 17:53:03 2025 by rpki-client