Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/137D14D02A5A11F08E2789D3DAE4EC9C.roa
File: 137D14D02A5A11F08E2789D3DAE4EC9C.roa (raw, json)
Hash identifier: c7Z9v+33mGdI+s3u8slep1iO+RbqR0vOBh5Ktgccj7k=
Subject key identifier: 19:AA:84:4A:31:10:EA:6D:6C:F7:5E:7A:A5:C8:D5:D4:F7:93:72:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F1D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/137D14D02A5A11F08E2789D3DAE4EC9C.roa
Signing time: Tue 06 May 2025 09:11:21 +0000
ROA not before: Tue 06 May 2025 09:11:17 +0000
ROA not after: Fri 13 Jun 2025 09:11:17 +0000
asID: 55020
IP address blocks: 154.193.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98077 (0x17f1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 09:11:17 2025 GMT
Not After : Jun 13 09:11:17 2025 GMT
Subject: CN=6819d239-c183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:4f:af:67:e9:a7:b7:05:66:e3:bc:95:d8:28:
f8:39:c1:c3:f0:3c:4f:ab:71:76:46:2d:15:1e:af:
83:d4:8f:b0:9f:8c:91:49:1f:bf:a0:0e:c9:2a:f1:
73:43:73:95:12:b4:43:8e:4f:e2:c0:1b:a6:41:4d:
12:87:3c:a9:21:d1:4f:61:6b:94:15:02:e0:fa:f1:
b0:31:46:09:08:24:99:e8:aa:27:2e:1a:3f:1b:3a:
cb:4a:9c:28:b1:b0:f5:96:d8:cb:d4:7a:1f:09:93:
72:c7:bb:d0:62:a3:21:94:a2:15:4d:a6:07:21:7a:
08:9b:a4:46:be:45:d1:94:ee:2e:ad:7c:fa:c0:4c:
d0:f2:09:2d:04:03:5e:c7:5b:e7:46:83:f7:da:b3:
ac:53:fc:9e:c1:0d:c4:f3:da:da:99:63:11:1e:0f:
f8:af:78:eb:04:e6:d0:93:2e:68:d4:12:29:c6:5b:
0c:4a:68:bd:6b:10:35:0f:db:a1:3f:e8:ad:b1:8b:
66:99:39:60:54:55:69:2a:86:6b:a9:e8:23:4d:67:
b8:6e:c7:cc:76:b7:60:af:f9:7f:fe:68:40:79:79:
a6:d9:6f:14:66:b9:4a:ad:05:f3:5a:f2:73:28:2d:
35:fb:93:75:99:c0:80:74:a0:a8:0f:d3:bf:c7:ad:
ab:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:AA:84:4A:31:10:EA:6D:6C:F7:5E:7A:A5:C8:D5:D4:F7:93:72:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/137D14D02A5A11F08E2789D3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.192.0/18
Signature Algorithm: sha256WithRSAEncryption
05:14:be:0e:0f:68:fd:13:1f:32:b8:3c:96:7f:5e:5b:3e:d6:
af:64:08:c4:83:dc:5d:03:aa:7d:e3:04:91:8d:05:8e:c9:3e:
08:f4:a7:de:b6:4b:14:75:c4:e1:70:8b:87:b2:d7:73:eb:0c:
f0:b4:82:6a:a3:f9:0e:fd:9d:4d:93:8c:9c:13:40:2c:df:a5:
4b:de:62:61:92:07:ee:c0:6b:c0:67:2d:7e:a5:e9:b5:4f:62:
0f:88:92:ec:cb:b8:ec:0a:90:84:20:ad:69:24:f3:52:11:e5:
2c:46:68:ef:f7:25:12:09:8a:0e:c5:ad:cd:6c:4e:57:b8:6a:
1d:10:a2:88:eb:9d:fa:ee:3b:4e:2d:54:b8:42:6d:4f:31:a0:
20:2f:e8:69:fb:ad:fc:2e:c5:e6:1c:1a:4e:ce:2b:33:f6:03:
f4:fb:43:e6:41:5c:8b:20:d6:c9:0c:64:d9:65:cd:03:56:a2:
ee:09:9c:76:7c:87:9b:77:23:33:66:ac:d5:9a:76:d3:38:89:
1a:e2:82:a6:f2:42:0f:a4:3e:aa:af:67:56:3a:2b:f1:8e:32:
25:bb:d5:cb:16:63:a3:df:cd:39:7f:5d:66:01:a5:f8:6a:d1:
86:ed:11:f4:54:80:51:77:96:20:3d:de:76:74:e5:e8:19:88:
16:fc:08:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:46:51 2025 by rpki-client