Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04C0A6584EA611F0BA39ADDFDAE4EC9C.roa
File: 04C0A6584EA611F0BA39ADDFDAE4EC9C.roa (raw, json)
Hash identifier: B6UakrNumMLF+Vz7o1xUXsuHVVwMirQtwI1XjZ2t7Ps=
Subject key identifier: 0B:CF:9D:8F:E1:8D:C5:AB:DD:EB:D7:0C:01:9E:17:AC:B4:85:B1:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0187D6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04C0A6584EA611F0BA39ADDFDAE4EC9C.roa
Signing time: Sat 21 Jun 2025 13:45:40 +0000
ROA not before: Sat 21 Jun 2025 13:45:35 +0000
ROA not after: Wed 30 Jul 2025 13:45:35 +0000
asID: 62240
IP address blocks: 154.194.79.0/24 maxlen: 24
154.194.99.0/24 maxlen: 24
154.194.100.0/24 maxlen: 24
154.194.101.0/24 maxlen: 24
154.194.102.0/24 maxlen: 24
154.194.104.0/24 maxlen: 24
154.194.105.0/24 maxlen: 24
154.194.106.0/24 maxlen: 24
154.194.107.0/24 maxlen: 24
154.194.108.0/24 maxlen: 24
154.196.63.0/24 maxlen: 24
154.196.65.0/24 maxlen: 24
154.196.66.0/24 maxlen: 24
154.196.67.0/24 maxlen: 24
154.196.69.0/24 maxlen: 24
154.196.71.0/24 maxlen: 24
154.196.72.0/24 maxlen: 24
154.196.73.0/24 maxlen: 24
154.196.74.0/24 maxlen: 24
154.196.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 01 Jul 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100310 (0x187d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 21 13:45:35 2025 GMT
Not After : Jul 30 13:45:35 2025 GMT
Subject: CN=6856b784-5d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:08:94:c8:37:d9:66:05:80:ad:ef:5f:94:5a:
92:52:72:9a:4d:e0:2d:48:a0:ca:12:90:44:bc:71:
3c:e6:72:39:e6:d3:15:3c:4d:12:40:a2:26:99:72:
fd:f0:c2:0f:26:ed:7b:53:92:bb:38:de:6a:86:08:
78:07:18:f7:29:7d:72:d9:47:45:48:c7:79:77:7a:
d9:48:20:03:53:45:39:fa:72:97:3a:81:67:61:ff:
00:f2:38:7e:e4:59:6f:ff:bd:21:06:d4:39:ce:1a:
dc:fb:d9:b8:bc:75:3d:a9:4e:57:3c:d1:cc:3f:aa:
5b:58:bd:97:3f:36:8c:e5:2a:69:1f:6b:4a:27:54:
7d:1e:88:89:9e:c8:17:3b:26:16:99:80:5a:b9:2b:
ff:96:2b:d8:d0:9d:94:80:e7:ae:b7:45:d7:84:d4:
94:81:c7:e2:d9:b6:31:36:36:e7:67:25:75:29:c2:
ae:6e:4b:b2:be:83:c9:aa:20:44:ad:72:3a:19:0a:
e4:71:dc:9a:1d:af:12:67:8f:12:ad:b3:41:d7:7f:
9d:a7:e4:67:58:5d:11:5d:f2:e5:b7:49:6c:34:b3:
c1:e0:0f:a5:cb:aa:aa:f2:c5:a9:da:b2:af:33:87:
3e:36:b3:dc:90:ec:c9:30:4c:05:35:14:a4:a4:af:
68:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:CF:9D:8F:E1:8D:C5:AB:DD:EB:D7:0C:01:9E:17:AC:B4:85:B1:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04C0A6584EA611F0BA39ADDFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.79.0/24
154.194.99.0-154.194.102.255
154.194.104.0-154.194.108.255
154.196.63.0/24
154.196.65.0-154.196.67.255
154.196.69.0/24
154.196.71.0-154.196.75.255
Signature Algorithm: sha256WithRSAEncryption
44:f1:e9:76:ac:52:c9:f3:ff:5b:98:a5:62:49:a4:12:ae:cc:
e2:bc:43:5b:13:a8:e1:2e:67:81:ab:ea:e9:b4:a1:a4:25:ee:
18:ad:5d:46:e2:a2:6b:51:6d:14:05:ed:60:f4:7a:8f:d6:56:
73:32:e6:c8:63:4f:71:c0:5c:ff:a9:73:85:00:8f:62:ab:d3:
42:5b:6d:c6:95:e1:ac:eb:b7:16:e1:c6:eb:ce:06:5d:2d:70:
cc:a8:be:6d:71:ee:60:f7:15:14:3b:42:45:33:0d:2d:67:6e:
8c:6b:f3:39:2b:79:ee:7d:3f:b3:68:b8:1a:95:9b:47:22:7e:
ad:72:96:ff:d5:b9:d7:1a:c5:d4:67:8f:67:82:3a:56:49:42:
c4:20:4a:78:9c:80:a8:71:b9:58:a5:b5:40:d2:79:15:65:10:
3e:bc:86:67:bc:1e:c8:02:78:da:ef:30:ad:96:b3:68:c4:c9:
9e:67:e9:6c:26:20:ca:90:ad:51:cd:6f:7f:d2:d1:97:13:8b:
aa:5d:4c:1d:bd:2f:37:23:bd:47:28:dd:b8:0c:14:27:38:32:
cc:6b:6b:26:b9:b3:cb:74:05:54:63:fc:f9:a1:4c:bf:12:a1:
1d:63:c0:9b:a3:1d:c6:7b:2a:c3:50:6b:bf:01:c5:ab:9d:86:
1b:36:f2:96
-----BEGIN CERTIFICATE-----
MIIFyDCCBLCgAwIBAgIDAYfWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjIxMTM0NTM1WhcNMjUwNzMwMTM0NTM1WjAYMRYw
FAYDVQQDEw02ODU2Yjc4NC01ZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5wiUyDfZZgWAre9flFqSUnKaTeAtSKDKEpBEvHE85nI55tMVPE0SQKIm
mXL98MIPJu17U5K7ON5qhgh4Bxj3KX1y2UdFSMd5d3rZSCADU0U5+nKXOoFnYf8A
8jh+5Flv/70hBtQ5zhrc+9m4vHU9qU5XPNHMP6pbWL2XPzaM5SppH2tKJ1R9HoiJ
nsgXOyYWmYBauSv/livY0J2UgOeut0XXhNSUgcfi2bYxNjbnZyV1KcKubkuyvoPJ
qiBErXI6GQrkcdyaHa8SZ48SrbNB13+dp+RnWF0RXfLlt0lsNLPB4A+ly6qq8sWp
2rKvM4c+NrPckOzJMEwFNRSkpK9o2QIDAQABo4IC6TCCAuUwHQYDVR0OBBYEFAvP
nY/hjcWr3evXDAGeF6y0hbHpMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wNEMwQTY1ODRFQTYxMUYwQkEzOUFEREZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMGMGCCsGAQUFBwEHAQH/BFQwUjBQBAIAATBKAwQAmsJPMAwDBACawmMDBACa
wmYwDAMEA5rCaAMEAJrCbAMEAJrEPzAMAwQAmsRBAwQCmsRAAwQAmsRFMAwDBACa
xEcDBAKaxEgwDQYJKoZIhvcNAQELBQADggEBAETx6XasUsnz/1uYpWJJpBKuzOK8
Q1sTqOEuZ4Gr6um0oaQl7hitXUbiomtRbRQF7WD0eo/WVnMy5shjT3HAXP+pc4UA
j2Kr00JbbcaV4azrtxbhxuvOBl0tcMyovm1x7mD3FRQ7QkUzDS1nboxr8zkree59
P7NouBqVm0cifq1ylv/VudcaxdRnj2eCOlZJQsQgSnicgKhxuViltUDSeRVlED68
hme8HsgCeNrvMK2Ws2jEyZ5n6WwmIMqQrVHNb3/S0ZcTi6pdTB29LzcjvUco3bgM
FCc4Msxraya5s8t0BVRj/PmhTL8SoR1jwJujHcZ7KsNQa78Bxaudhhs28pY=
-----END CERTIFICATE-----
Generated at Sun Jun 29 06:38:32 2025 by rpki-client