Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0912710E580711F0B7A4C1DBDAE4EC9C.roa
File: 0912710E580711F0B7A4C1DBDAE4EC9C.roa (raw, json)
Hash identifier: +ylPQFaO4eNRstSmkfp0v622sT/EYSu6lCgTpNvQK1A=
Subject key identifier: C3:3C:FA:71:3C:FD:DE:B6:8A:FE:96:85:FD:6D:99:B9:60:1E:AE:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018A11
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0912710E580711F0B7A4C1DBDAE4EC9C.roa
Signing time: Thu 03 Jul 2025 12:12:49 +0000
ROA not before: Thu 03 Jul 2025 12:12:44 +0000
ROA not after: Thu 31 Jul 2025 12:12:44 +0000
asID: 214143
IP address blocks: 154.194.208.0/22 maxlen: 24
154.194.212.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100881 (0x18a11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 3 12:12:44 2025 GMT
Not After : Jul 31 12:12:44 2025 GMT
Subject: CN=686673c1-0e3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2d:04:3d:ee:ce:bc:d9:a3:f5:bf:1f:09:86:
fd:24:ca:05:5a:15:07:7d:b5:4c:38:8a:b2:86:b6:
76:78:91:fd:2a:cb:ad:a3:22:78:c2:13:93:33:94:
cb:77:b4:ff:1b:79:f5:4b:75:83:7b:94:d9:92:a7:
09:5a:ed:47:d8:61:c0:cb:f2:86:a4:53:e3:1f:2f:
fb:d3:1c:a3:c8:fe:96:f4:60:8d:f3:88:19:a2:a4:
a1:b9:e1:af:b0:20:63:19:c3:75:88:e9:1c:e2:a5:
d5:5b:11:41:a3:37:a5:f4:a3:5b:e1:72:1c:c5:3b:
77:17:af:9b:9d:43:c1:c1:34:ca:c4:02:01:3c:b3:
63:ea:7e:71:c6:aa:a7:0e:b2:b7:d6:35:35:3c:af:
a8:8b:63:dc:ce:21:af:b2:d3:86:eb:b0:84:48:8a:
25:db:a7:26:bd:ac:1c:d8:69:9d:05:31:80:59:4b:
ef:88:68:e5:ef:ba:de:c8:01:e4:51:1f:63:2e:7c:
0f:e0:9d:a4:36:cf:87:19:84:df:cc:d5:92:d7:61:
cc:aa:1f:48:25:96:94:3e:1e:fe:33:25:92:63:b2:
77:a6:1a:fa:e2:62:62:10:06:c0:5d:e6:c5:a7:82:
cf:8f:fc:32:df:9d:80:d6:54:e1:e1:bf:64:05:42:
1c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3C:FA:71:3C:FD:DE:B6:8A:FE:96:85:FD:6D:99:B9:60:1E:AE:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0912710E580711F0B7A4C1DBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.208.0-154.194.213.255
Signature Algorithm: sha256WithRSAEncryption
96:90:78:3b:ca:c7:6c:46:b3:e9:a6:a5:6e:2d:19:b7:5d:8c:
f8:ce:78:a3:22:48:90:c5:d9:ae:64:b6:02:b5:70:d1:3b:6c:
2d:f8:57:9e:88:e3:84:de:8b:97:7e:f5:f4:80:c3:63:3b:5f:
ba:19:6a:62:24:59:d2:cb:1b:da:9b:5f:d7:dd:83:ec:2a:43:
48:4a:36:17:e7:6f:c9:b4:6d:26:be:b3:55:8d:f6:b8:9d:9b:
bc:5e:bb:2f:b8:8c:8b:f3:a4:87:fb:35:43:03:ff:96:09:e4:
48:1d:be:a8:54:cd:4f:7e:e3:e9:af:96:64:19:c2:46:87:43:
90:6f:a8:74:1a:38:86:31:ec:8d:d8:29:79:0b:ee:d8:1e:31:
90:0a:26:ee:24:01:04:5a:90:c0:9b:66:a7:19:d0:f5:38:e5:
37:c1:07:d9:22:d5:21:5e:74:70:a8:28:d9:19:26:ce:6f:b9:
5f:94:b2:65:fa:27:21:08:c5:83:f3:7e:e5:e1:c2:1f:63:18:
86:02:24:d7:6d:ec:5f:36:51:ad:41:6e:88:bc:86:f7:55:3c:
1b:40:9a:de:3c:6a:ea:70:c7:54:68:fd:f9:61:a1:e1:5e:64:
e8:bc:34:c5:4a:3f:8f:cc:12:34:84:86:14:76:d4:56:6c:10:
8c:c6:74:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:27:56 2025 by rpki-client