Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0826AEC8317311F0AB7D85CFDAE4EC9C.roa
File: 0826AEC8317311F0AB7D85CFDAE4EC9C.roa (raw, json)
Hash identifier: ZIoOagI7l3lZAyzAuaAYuoeiKblhu3vuUTAHuiggHrg=
Subject key identifier: 60:40:88:F7:CA:72:3B:A1:5A:5A:7D:2D:49:A8:EA:B1:2D:9C:F8:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0180CC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0826AEC8317311F0AB7D85CFDAE4EC9C.roa
Signing time: Thu 15 May 2025 09:57:38 +0000
ROA not before: Thu 15 May 2025 09:57:33 +0000
ROA not after: Tue 24 Jun 2025 09:57:33 +0000
asID: 395886
IP address blocks: 154.89.144.0/20 maxlen: 24
154.89.160.0/19 maxlen: 24
154.89.192.0/20 maxlen: 24
154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98508 (0x180cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 15 09:57:33 2025 GMT
Not After : Jun 24 09:57:33 2025 GMT
Subject: CN=6825ba92-b91b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:65:aa:3c:56:55:5b:4a:8e:33:f3:fe:48:33:
a1:ce:04:1c:49:93:ef:2b:eb:5b:27:88:1f:a1:5a:
37:90:17:f1:52:7b:66:95:61:e8:f4:52:61:e9:c2:
5c:53:0b:fb:2a:01:e4:0f:9b:cc:93:76:4b:eb:2d:
83:4d:03:98:9b:33:76:86:82:06:e0:a2:08:f6:fe:
53:b0:c7:16:93:7a:50:90:03:2d:3a:d7:11:7f:4f:
47:6f:ae:eb:e9:78:20:a4:72:01:ba:33:8b:2b:83:
02:ea:72:4b:cd:d2:79:d9:b6:94:ba:ae:0a:44:23:
39:12:bb:66:96:80:0b:f3:2a:38:ba:8f:1f:45:03:
32:7e:19:62:66:9f:12:b3:bd:08:fb:4d:18:ea:c6:
0d:ab:4c:2b:ef:a3:a4:d7:26:f3:2d:be:bd:dd:6b:
fd:76:f8:88:02:96:a9:49:0a:c2:4f:25:0a:52:48:
93:07:85:6b:63:d0:9c:ff:08:1b:63:2e:82:f3:19:
e5:15:4e:a6:ad:a3:aa:f9:40:cf:8f:fe:6f:04:d8:
d0:30:8c:80:f4:26:80:e6:24:3b:a8:77:a3:f3:22:
14:90:61:67:e8:4a:ab:72:8e:10:ef:58:3e:62:6f:
89:fa:a3:48:7a:1c:9a:36:10:61:9d:b4:55:b4:b0:
53:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:40:88:F7:CA:72:3B:A1:5A:5A:7D:2D:49:A8:EA:B1:2D:9C:F8:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0826AEC8317311F0AB7D85CFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.144.0-154.89.207.255
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:10:3c:a7:d0:2a:20:06:be:46:cd:a2:4a:57:f2:1c:47:4e:
d9:24:83:b0:a8:ee:87:f4:f9:a5:01:58:d5:0f:5d:73:d4:45:
2e:c7:74:9c:f9:4b:25:95:78:da:0d:b6:f6:83:8c:59:78:8e:
8a:85:d2:3b:57:21:81:c0:31:dc:3d:98:f1:17:a8:00:84:64:
9d:a3:92:15:38:d2:ef:41:5b:25:17:ed:f3:e9:65:e9:4e:7c:
6e:b0:20:11:75:18:6b:04:55:f6:2f:de:de:80:98:f5:c7:24:
25:3b:c1:92:72:46:8c:6b:21:e8:76:11:99:b5:20:10:0f:88:
67:42:06:25:b1:ba:82:fe:0b:33:5c:98:58:91:c1:b0:fd:74:
c3:3a:e3:2d:7c:85:0f:42:51:f2:6b:38:d4:da:96:df:8d:ae:
c0:83:17:02:96:37:1e:fc:a4:96:b1:17:e3:26:03:43:b3:b4:
d7:7b:0f:a7:9f:49:4b:d8:ed:5b:ec:77:18:b8:5a:5d:ec:44:
19:05:26:79:85:87:cb:0f:7e:2e:a4:20:2d:c2:dc:dc:df:bb:
64:ba:52:2e:73:b1:75:f2:1d:b6:64:5e:ea:1c:d4:dc:cd:50:
7c:26:d4:77:7b:55:2d:7f:f6:8a:6b:77:ba:df:c7:a0:1a:c3:
b3:4b:2d:1c
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAYDMMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTE1MDk1NzMzWhcNMjUwNjI0MDk1NzMzWjAYMRYw
FAYDVQQDEw02ODI1YmE5Mi1iOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvGWqPFZVW0qOM/P+SDOhzgQcSZPvK+tbJ4gfoVo3kBfxUntmlWHo9FJh
6cJcUwv7KgHkD5vMk3ZL6y2DTQOYmzN2hoIG4KII9v5TsMcWk3pQkAMtOtcRf09H
b67r6XggpHIBujOLK4MC6nJLzdJ52baUuq4KRCM5ErtmloAL8yo4uo8fRQMyfhli
Zp8Ss70I+00Y6sYNq0wr76Ok1ybzLb693Wv9dviIApapSQrCTyUKUkiTB4VrY9Cc
/wgbYy6C8xnlFU6mraOq+UDPj/5vBNjQMIyA9CaA5iQ7qHej8yIUkGFn6Eqrco4Q
71g+Ym+J+qNIehyaNhBhnbRVtLBTEQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFGBA
iPfKcjuhWlp9LUmo6rEtnPicMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wODI2QUVDODMxNzMxMUYwQUI3RDg1Q0ZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBASaWZADBASaWcADBACa
XxgwDQYJKoZIhvcNAQELBQADggEBAMcQPKfQKiAGvkbNokpX8hxHTtkkg7Co7of0
+aUBWNUPXXPURS7HdJz5SyWVeNoNtvaDjFl4joqF0jtXIYHAMdw9mPEXqACEZJ2j
khU40u9BWyUX7fPpZelOfG6wIBF1GGsEVfYv3t6AmPXHJCU7wZJyRoxrIeh2EZm1
IBAPiGdCBiWxuoL+CzNcmFiRwbD9dMM64y18hQ9CUfJrONTalt+NrsCDFwKWNx78
pJaxF+MmA0OztNd7D6efSUvY7Vvsdxi4Wl3sRBkFJnmFh8sPfi6kIC3C3Nzfu2S6
Ui5zsXXyHbZkXuoc1NzNUHwm1Hd7VS1/9oprd7rfx6Aaw7NLLRw=
-----END CERTIFICATE-----
Generated at Thu May 15 23:46:06 2025 by rpki-client