Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1937085051A011F0AC14B5BEDAE4EC9C.roa
File: 1937085051A011F0AC14B5BEDAE4EC9C.roa (raw, json)
Hash identifier: 6ITx+H6uI1GufnrBW5T0+VQwl19ONmk9V74K59r5bAM=
Subject key identifier: 89:94:4D:E9:F4:80:E5:27:54:52:16:BA:1E:01:0F:D2:CF:34:79:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018901
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1937085051A011F0AC14B5BEDAE4EC9C.roa
Signing time: Wed 25 Jun 2025 08:40:51 +0000
ROA not before: Wed 25 Jun 2025 08:40:46 +0000
ROA not after: Thu 25 Sep 2025 08:40:46 +0000
asID: 142286
IP address blocks: 154.89.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 10:47:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100609 (0x18901)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 25 08:40:46 2025 GMT
Not After : Sep 25 08:40:46 2025 GMT
Subject: CN=685bb613-7f34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ca:74:6a:c8:bd:89:ea:c2:31:8f:32:97:7c:
b0:5b:c1:26:a9:d2:f5:14:11:13:fa:1b:c3:d2:a0:
6a:0f:05:05:c4:fa:05:fd:57:3d:03:26:08:7e:7f:
a9:93:5a:9a:e2:f4:cb:0c:33:46:15:c8:26:1b:cd:
33:1f:95:f7:67:a7:56:bf:2a:65:97:88:e4:eb:96:
83:b7:62:b9:d4:c7:99:58:c8:19:76:0f:5b:2d:82:
af:aa:41:fb:ee:bc:6f:cd:fb:aa:12:ee:00:46:b7:
ad:89:d4:28:d2:cd:71:32:c3:65:5c:73:6c:a5:f7:
68:88:5d:fd:2a:c6:5c:6a:22:90:da:7b:ff:20:97:
06:20:22:7f:07:c6:b4:17:58:b1:98:63:b4:1f:b9:
e1:8e:47:36:b7:2d:af:ce:8b:09:1d:77:ab:a6:41:
eb:6b:5a:ab:7a:be:68:21:1d:3e:5a:fa:3e:43:31:
d7:30:68:b5:d8:f3:84:8c:8f:05:70:58:97:d0:4c:
d7:de:f2:50:87:10:08:62:5a:4c:47:ee:92:8b:8b:
90:22:54:15:c9:76:d5:8c:75:fa:84:c3:37:4d:10:
2e:c2:8c:ce:74:94:b5:a1:ca:6f:c4:e4:fe:e9:28:
c4:0a:67:9d:0b:3c:21:8c:6f:c6:71:a6:70:45:5c:
96:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:94:4D:E9:F4:80:E5:27:54:52:16:BA:1E:01:0F:D2:CF:34:79:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1937085051A011F0AC14B5BEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.64.0/18
Signature Algorithm: sha256WithRSAEncryption
22:29:46:a7:1d:09:0e:c6:04:ac:6c:5c:d3:5f:01:33:05:b5:
e4:02:b0:cd:28:7e:23:d8:9d:20:84:79:48:c5:2c:c8:e0:23:
7a:1e:80:bf:51:90:de:85:a5:cf:56:4b:33:9e:93:04:53:9b:
f2:89:8b:f6:2e:68:fe:0f:4c:3f:ee:30:9a:93:d7:46:ed:45:
40:21:0f:24:ed:c5:42:21:97:4a:66:0c:19:53:ed:ca:57:f6:
17:7a:95:f0:d6:f6:09:a3:7a:0a:9c:38:19:76:4d:0f:77:8b:
bd:04:3b:22:d8:92:75:5f:21:33:dd:1d:df:4e:b0:1f:ba:79:
b0:36:2a:54:8b:96:a3:2e:32:5e:79:98:6e:bc:09:d7:9e:be:
39:e8:92:d8:78:f9:bc:e1:1a:cb:de:af:f9:f1:2d:e5:2c:72:
a5:3a:a6:a3:f7:79:53:94:5b:06:f6:bd:67:8e:47:5f:34:f3:
58:be:81:ed:6f:34:01:bf:c1:b5:b2:87:53:d7:81:8d:00:ce:
80:e5:9e:74:de:a3:2a:66:92:f7:b8:bd:a4:6f:e2:d9:0d:e0:
7b:8f:5b:bb:a4:a9:fa:ff:ca:c7:1a:68:c2:f2:e0:fd:a1:4b:
d6:71:03:60:6d:1a:2f:b5:fa:58:c5:fe:64:25:b5:63:6e:ad:
fc:56:db:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 13:37:29 2025 by rpki-client