Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEB8ED2E378A11F0905E2AF6DAE4EC9C.roa
File: FEB8ED2E378A11F0905E2AF6DAE4EC9C.roa (raw, json)
Hash identifier: TfiyI1SmzlWTSENQLOEI9lci9hjnGQ6VQKkIKfcQOjY=
Subject key identifier: F8:69:36:CB:71:3F:74:58:36:5B:07:E2:12:CF:2D:D5:35:43:15:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0181EE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEB8ED2E378A11F0905E2AF6DAE4EC9C.roa
Signing time: Fri 23 May 2025 04:04:17 +0000
ROA not before: Fri 23 May 2025 04:04:12 +0000
ROA not after: Sun 22 Jun 2025 04:04:12 +0000
asID: 134365
IP address blocks: 154.194.248.0/24 maxlen: 24
154.194.249.0/24 maxlen: 24
154.194.250.0/24 maxlen: 24
154.194.251.0/24 maxlen: 24
154.194.252.0/24 maxlen: 24
154.194.253.0/24 maxlen: 24
154.194.254.0/24 maxlen: 24
154.194.255.0/24 maxlen: 24
154.198.40.0/24 maxlen: 24
154.198.41.0/24 maxlen: 24
154.198.42.0/24 maxlen: 24
154.198.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98798 (0x181ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 04:04:12 2025 GMT
Not After : Jun 22 04:04:12 2025 GMT
Subject: CN=682ff3c1-ccc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b8:d6:db:42:e5:95:90:76:39:9f:57:97:80:
52:76:72:2b:68:0a:b1:08:2f:21:bd:48:d8:85:47:
61:a0:4a:b4:1f:1d:a0:0c:3d:b5:ba:b7:13:3d:1d:
9c:b9:7c:68:29:f4:af:7c:29:0c:a0:ed:2d:b4:32:
cf:35:2a:4d:ad:dd:f3:e4:aa:16:d2:47:e8:8a:c0:
d3:f8:2d:26:2b:1c:ec:58:cb:e2:a0:87:5d:a1:a4:
98:6d:02:fb:11:8e:de:c1:b6:95:b9:fd:de:d0:6a:
7a:94:ad:0c:2d:12:cd:eb:98:65:d8:cd:3b:fd:9f:
c6:53:a5:7f:c3:c9:b0:98:e3:97:da:46:7c:14:3a:
9c:2a:7b:42:ed:a2:57:2a:ce:53:4d:48:ef:15:d2:
42:1f:c2:5e:7d:25:7e:4f:b5:a1:eb:50:18:f8:79:
ba:b1:41:ea:5e:87:55:1f:8f:88:af:61:e5:e8:91:
49:5a:91:74:eb:ea:e4:dd:ea:78:6d:03:8d:6d:02:
57:48:24:ac:98:cb:28:25:fb:ef:cd:b8:2f:a5:0a:
39:9f:34:3a:fc:32:42:bb:6c:90:d4:a7:24:4d:51:
ef:6c:0b:50:31:5e:79:f8:5b:7b:69:06:66:b0:71:
c0:93:0f:e1:c4:11:d4:26:88:ea:dc:65:57:5b:b4:
38:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:69:36:CB:71:3F:74:58:36:5B:07:E2:12:CF:2D:D5:35:43:15:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEB8ED2E378A11F0905E2AF6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.248.0/21
154.198.40.0/22
Signature Algorithm: sha256WithRSAEncryption
cf:3b:20:cd:3a:a2:fd:67:5b:66:c9:fe:ad:c5:d4:ab:17:12:
fe:3d:6c:93:2c:e5:f5:a7:6c:0a:cb:2e:c8:65:72:a8:fb:af:
24:38:bd:9c:c2:f2:4e:d5:d8:58:8a:bc:f3:75:4b:1f:6a:01:
61:20:c5:14:49:de:df:a0:53:5b:9d:09:b5:fd:b4:76:b6:94:
14:11:52:86:f7:dd:c1:8a:da:97:94:53:c4:44:74:f6:96:58:
70:83:28:75:be:71:0d:12:f8:3d:37:0c:e5:a4:34:70:1b:a6:
de:4e:a2:0d:cd:ae:22:04:96:48:79:6e:d1:5e:55:b7:36:b6:
55:fd:eb:e2:71:93:6e:bb:6d:3b:c3:98:a6:5a:1f:fb:df:59:
42:1c:8d:bb:f0:84:40:13:5c:0a:39:71:17:bc:94:d2:ec:a1:
3a:3d:5b:ef:54:8c:16:90:fe:ea:ab:e9:e8:02:77:13:ce:0a:
e6:c0:92:17:01:66:f8:1c:88:cc:a8:e0:09:70:6c:04:ef:a1:
8e:43:6a:9b:31:55:f9:ff:04:32:19:b8:f2:3a:25:04:d5:ae:
2c:a4:ec:e0:8c:d3:7f:fc:7e:7f:7b:39:4b:21:82:bc:fe:78:
b3:a9:17:8a:1e:c0:44:e8:c8:99:73:19:46:f0:95:e9:32:4a:
c0:32:32:e1
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIDAYHuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTIzMDQwNDEyWhcNMjUwNjIyMDQwNDEyWjAYMRYw
FAYDVQQDEw02ODJmZjNjMS1jY2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvrjW20LllZB2OZ9Xl4BSdnIraAqxCC8hvUjYhUdhoEq0Hx2gDD21urcT
PR2cuXxoKfSvfCkMoO0ttDLPNSpNrd3z5KoW0kfoisDT+C0mKxzsWMvioIddoaSY
bQL7EY7ewbaVuf3e0Gp6lK0MLRLN65hl2M07/Z/GU6V/w8mwmOOX2kZ8FDqcKntC
7aJXKs5TTUjvFdJCH8JefSV+T7Wh61AY+Hm6sUHqXodVH4+Ir2Hl6JFJWpF06+rk
3ep4bQONbQJXSCSsmMsoJfvvzbgvpQo5nzQ6/DJCu2yQ1KckTVHvbAtQMV55+Ft7
aQZmsHHAkw/hxBHUJojq3GVXW7Q4jwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFPhp
NstxP3RYNlsH4hLPLdU1QxXMMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GRUI4RUQyRTM3OEExMUYwOTA1RTJBRjZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDmsL4AwQCmsYoMA0GCSqG
SIb3DQEBCwUAA4IBAQDPOyDNOqL9Z1tmyf6txdSrFxL+PWyTLOX1p2wKyy7IZXKo
+68kOL2cwvJO1dhYirzzdUsfagFhIMUUSd7foFNbnQm1/bR2tpQUEVKG993BitqX
lFPERHT2llhwgyh1vnENEvg9NwzlpDRwG6beTqINza4iBJZIeW7RXlW3NrZV/evi
cZNuu207w5imWh/731lCHI278IRAE1wKOXEXvJTS7KE6PVvvVIwWkP7qq+noAncT
zgrmwJIXAWb4HIjMqOAJcGwE76GOQ2qbMVX5/wQyGbjyOiUE1a4spOzgjNN//H5/
ezlLIYK8/nizqReKHsBE6MiZcxlG8JXpMkrAMjLh
-----END CERTIFICATE-----
Generated at Sun Jun 15 04:58:44 2025 by rpki-client