Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB221A2575411F0864E7FCCDAE4EC9C.roa
File: 0FB221A2575411F0864E7FCCDAE4EC9C.roa (raw, json)
Hash identifier: HnxO8AKAvSJVpTTHkks5esc5uO0lQ3q7MJlauOhbvI4=
Subject key identifier: BF:AD:40:51:DA:BD:CC:12:8D:80:D7:64:01:DA:85:3D:BA:0E:C4:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0189D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB221A2575411F0864E7FCCDAE4EC9C.roa
Signing time: Wed 02 Jul 2025 14:51:41 +0000
ROA not before: Wed 02 Jul 2025 14:51:35 +0000
ROA not after: Thu 04 Sep 2025 14:51:35 +0000
asID: 54600
IP address blocks: 154.89.144.0/20 maxlen: 24
154.89.160.0/19 maxlen: 24
154.89.192.0/20 maxlen: 24
154.90.224.0/19 maxlen: 24
154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100824 (0x189d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 2 14:51:35 2025 GMT
Not After : Sep 4 14:51:35 2025 GMT
Subject: CN=6865477c-0640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0a:46:5a:46:3e:88:d7:0b:60:fd:79:3f:84:
9b:8c:19:d2:25:e2:89:81:b9:59:08:3f:79:a6:f0:
32:59:4d:34:01:1b:5e:2a:0c:83:16:f2:60:83:ef:
0a:53:3b:7b:d6:33:ed:e8:97:50:f6:5c:a0:86:df:
a6:9a:21:61:0a:25:a0:32:f0:5d:6b:5b:38:ab:72:
37:7b:79:0e:85:3a:1f:04:36:f6:c6:b8:f9:c3:8a:
88:00:e8:5a:de:10:80:ba:8c:7a:47:1f:61:e0:92:
92:c1:07:c0:c0:cd:73:b0:bd:41:6e:99:d1:97:ef:
c1:15:f8:12:9f:6e:c7:2d:d6:da:56:34:57:2b:f9:
7f:a3:b3:a7:0b:aa:29:52:db:3a:95:53:eb:0b:29:
64:a8:69:7e:42:fc:df:8c:22:17:8e:75:0f:26:11:
a8:a5:b7:56:4f:5b:e4:84:e1:9e:f3:0a:ca:b0:73:
67:84:cc:39:68:7b:bc:1d:08:0f:f9:bd:64:3d:6e:
d7:03:21:3a:2c:db:08:09:44:f4:2e:6b:b9:57:82:
0a:73:de:d0:62:0c:37:fa:df:8c:81:a1:17:3c:a7:
44:de:d1:d9:90:e0:b0:54:f1:07:06:9f:c9:db:34:
50:51:0b:9f:cc:16:b0:92:1d:c3:21:7c:e0:49:89:
dd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AD:40:51:DA:BD:CC:12:8D:80:D7:64:01:DA:85:3D:BA:0E:C4:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0FB221A2575411F0864E7FCCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.144.0-154.89.207.255
154.90.224.0/19
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:e7:91:76:9a:fa:bb:62:95:9e:37:77:de:f4:59:38:2b:42:
f8:d5:70:22:b4:28:dd:7a:4e:5e:63:8c:5d:03:22:cc:e4:1c:
e6:4c:6f:51:34:f4:1f:7d:76:e4:d7:af:3f:2e:c6:0a:27:3f:
09:13:28:b2:cb:23:a5:c3:d2:34:8f:93:9e:e1:0f:b7:fc:4b:
ca:f1:25:eb:75:fd:cf:53:dd:2c:f0:cf:3a:1e:4a:d4:c1:e8:
29:22:29:d0:50:63:8c:e3:9d:3b:0e:dc:5e:39:22:ce:73:c2:
a8:a7:41:eb:03:00:77:20:06:5d:0e:a8:3d:1e:f5:72:64:67:
ab:06:cd:4c:07:60:c2:88:39:76:89:71:b7:1e:f2:83:bd:76:
56:73:94:fb:d6:12:55:27:72:35:77:9c:d5:22:ec:c5:0c:a5:
5b:fe:03:82:df:fb:3d:8d:4f:8b:37:44:fa:9e:87:ec:b4:3d:
74:53:50:b2:64:e5:0f:ff:ee:83:6f:82:73:21:56:17:51:46:
09:7f:d9:a3:68:52:eb:48:27:84:89:fc:f8:8d:b3:18:16:01:
c3:0f:64:92:af:8c:a1:49:a1:df:7f:b7:d9:86:6d:d6:5d:96:
a7:c2:cb:2d:ad:55:fe:e5:03:1d:48:d5:c1:3b:86:19:0a:bf:
fd:45:8d:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 09:55:59 2025 by rpki-client