Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/189D55E82F2211F0B137A8CBDAE4EC9C.roa
File: 189D55E82F2211F0B137A8CBDAE4EC9C.roa (raw, json)
Hash identifier: uIoTouJeGZg8k1Hr7HvbOQ9Zr6KbMtau02IgxvmcEcc=
Subject key identifier: B1:02:87:44:50:78:CF:49:B8:4C:9A:05:1A:A2:E4:B6:64:57:FE:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017FE7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/189D55E82F2211F0B137A8CBDAE4EC9C.roa
Signing time: Mon 12 May 2025 11:13:14 +0000
ROA not before: Mon 12 May 2025 11:13:09 +0000
ROA not after: Sun 08 Jun 2025 11:13:09 +0000
asID: 45194
IP address blocks: 154.84.212.0/24 maxlen: 24
154.84.213.0/24 maxlen: 24
154.84.214.0/24 maxlen: 24
154.84.215.0/24 maxlen: 24
154.84.216.0/24 maxlen: 24
154.84.217.0/24 maxlen: 24
154.84.218.0/24 maxlen: 24
154.84.219.0/24 maxlen: 24
154.84.220.0/24 maxlen: 24
154.84.221.0/24 maxlen: 24
154.84.222.0/24 maxlen: 24
154.84.223.0/24 maxlen: 24
154.84.224.0/24 maxlen: 24
154.84.249.0/24 maxlen: 24
154.84.250.0/24 maxlen: 24
154.84.251.0/24 maxlen: 24
154.84.252.0/24 maxlen: 24
154.84.253.0/24 maxlen: 24
154.84.254.0/24 maxlen: 24
154.84.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 15 May 2025 07:24:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98279 (0x17fe7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 12 11:13:09 2025 GMT
Not After : Jun 8 11:13:09 2025 GMT
Subject: CN=6821d7ca-958b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:27:fd:57:84:a8:aa:17:b7:72:79:c3:7a:13:
8e:88:63:a1:84:cd:35:9a:00:33:c9:fd:2c:17:f0:
ba:b1:fd:2e:cc:93:a9:49:5c:c2:1d:70:d5:4b:75:
6f:a4:25:3d:76:ae:a0:54:13:85:3b:aa:76:94:69:
60:bf:6b:f6:ba:53:4a:13:a8:6f:0f:82:d5:be:e7:
6c:62:79:4d:bb:1b:c4:ef:5c:b8:06:8c:fe:86:b7:
f3:43:40:90:36:f4:6d:90:69:12:d9:67:85:dc:70:
98:3a:3f:4b:de:c1:22:ef:b6:6e:5b:db:0d:48:8f:
77:89:18:cd:36:c9:87:c3:ca:9f:23:92:f1:e8:6b:
29:3c:53:f5:de:14:08:d1:28:e4:aa:b2:b7:e9:7e:
ce:57:8e:f1:a6:85:fd:ba:50:3f:7e:fb:70:ff:4e:
6c:c6:a7:1d:bd:d0:c2:46:f0:f5:ee:7d:22:87:e9:
29:da:3d:6d:d7:58:c7:5c:41:89:68:0b:83:28:fb:
2b:a5:be:2f:2d:f2:36:f4:95:0f:fa:50:30:43:c7:
60:15:ea:1e:32:9f:d1:9d:d2:08:06:50:ba:39:bb:
67:1e:8c:d1:82:85:97:74:8f:90:7a:e0:48:63:0a:
3c:12:f4:df:48:ea:72:4c:1a:db:53:9c:f2:73:5d:
68:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:02:87:44:50:78:CF:49:B8:4C:9A:05:1A:A2:E4:B6:64:57:FE:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/189D55E82F2211F0B137A8CBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.212.0-154.84.224.255
154.84.249.0-154.84.255.255
Signature Algorithm: sha256WithRSAEncryption
9f:f7:80:83:03:7f:2c:ac:af:c8:a4:e3:20:06:82:a8:d8:1f:
62:c2:bd:98:81:fc:f6:8b:df:3d:56:2e:ca:3b:a0:38:60:90:
ee:62:dd:6e:6a:4f:ac:c6:a2:f6:8e:75:8d:19:75:90:63:e8:
4d:5a:23:75:8f:21:ee:8e:7b:d8:56:7a:88:17:ee:ea:07:77:
47:00:bd:55:a1:5e:e2:2e:b2:7e:d1:5a:1f:de:6d:a2:54:2a:
28:1c:f6:a5:fd:49:00:11:71:73:f3:e6:ab:31:a0:be:f7:be:
59:d7:2e:90:02:c3:76:4b:ec:ad:73:36:09:5e:0b:32:9a:60:
9f:c6:60:ef:3a:78:e6:51:aa:3a:df:24:75:8d:0c:4c:97:81:
e2:9a:c4:19:ed:9a:d4:61:92:ca:78:55:95:9f:f1:e3:d8:79:
44:02:40:1b:af:7f:72:aa:eb:38:75:b8:d8:aa:81:d2:12:cb:
e9:d0:c1:61:a4:54:35:a1:6a:39:a4:7b:d0:02:80:15:69:ff:
bb:6c:6e:3c:e0:61:fd:5b:54:72:95:89:98:e7:28:ab:fa:37:
e6:3f:0b:2c:ad:68:0d:a8:19:4b:82:68:b7:8f:e6:52:56:b8:
ac:ef:58:30:7b:e1:31:a6:20:17:f4:aa:54:8b:26:be:d3:71:
b7:d5:0c:65
-----BEGIN CERTIFICATE-----
MIIFmTCCBIGgAwIBAgIDAX/nMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTEyMTExMzA5WhcNMjUwNjA4MTExMzA5WjAYMRYw
FAYDVQQDEw02ODIxZDdjYS05NThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqyf9V4Soqhe3cnnDehOOiGOhhM01mgAzyf0sF/C6sf0uzJOpSVzCHXDV
S3VvpCU9dq6gVBOFO6p2lGlgv2v2ulNKE6hvD4LVvudsYnlNuxvE71y4Boz+hrfz
Q0CQNvRtkGkS2WeF3HCYOj9L3sEi77ZuW9sNSI93iRjNNsmHw8qfI5Lx6GspPFP1
3hQI0SjkqrK36X7OV47xpoX9ulA/fvtw/05sxqcdvdDCRvD17n0ih+kp2j1t11jH
XEGJaAuDKPsrpb4vLfI29JUP+lAwQ8dgFeoeMp/RndIIBlC6ObtnHozRgoWXdI+Q
euBIYwo8EvTfSOpyTBrbU5zyc11oAwIDAQABo4ICujCCArYwHQYDVR0OBBYEFLEC
h0RQeM9JuEyaBRqi5LZkV/4EMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xODlENTVFODJGMjIxMUYwQjEzN0E4Q0JEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDQGCCsGAQUFBwEHAQH/BCUwIzAhBAIAATAbMAwDBAKaVNQDBACaVOAwCwME
AJpU+QMDAJpUMA0GCSqGSIb3DQEBCwUAA4IBAQCf94CDA38srK/IpOMgBoKo2B9i
wr2Ygfz2i989Vi7KO6A4YJDuYt1uak+sxqL2jnWNGXWQY+hNWiN1jyHujnvYVnqI
F+7qB3dHAL1VoV7iLrJ+0Vof3m2iVCooHPal/UkAEXFz8+arMaC+975Z1y6QAsN2
S+ytczYJXgsymmCfxmDvOnjmUao63yR1jQxMl4HimsQZ7ZrUYZLKeFWVn/Hj2HlE
AkAbr39yqus4dbjYqoHSEsvp0MFhpFQ1oWo5pHvQAoAVaf+7bG484GH9W1RylYmY
5yir+jfmPwssrWgNqBlLgmi3j+ZSVris71gwe+ExpiAX9KpUiya+03G31Qxl
-----END CERTIFICATE-----
Generated at Tue May 13 10:01:20 2025 by rpki-client