Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BD1781E4B8011F0857924CEDAE4EC9C.roa
File: 1BD1781E4B8011F0857924CEDAE4EC9C.roa (raw, json)
Hash identifier: hJu92jUWHCydUSuyf2Ifh8Mtnj6KI3xQRC1oBbnEf4k=
Subject key identifier: EB:9E:C0:40:03:04:AE:89:79:AE:F7:1C:A7:74:86:F8:E8:CD:4F:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018725
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BD1781E4B8011F0857924CEDAE4EC9C.roa
Signing time: Tue 17 Jun 2025 13:36:52 +0000
ROA not before: Tue 17 Jun 2025 13:36:39 +0000
ROA not after: Fri 12 Sep 2025 13:36:39 +0000
asID: 398478
IP address blocks: 154.199.208.0/20 maxlen: 24
154.199.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 11:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100133 (0x18725)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 17 13:36:39 2025 GMT
Not After : Sep 12 13:36:39 2025 GMT
Subject: CN=68516f74-de7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b2:1f:08:62:bc:02:39:a5:4a:b6:a9:95:7d:
c5:c6:fb:b4:ac:ce:0a:0e:ac:2b:bf:1f:f9:58:31:
a8:17:10:58:d0:cc:eb:1f:67:c1:13:6f:fc:79:df:
80:4f:72:35:7a:02:77:b1:32:cf:8b:6b:0f:00:9d:
3e:76:41:e2:fd:f8:31:cf:6e:84:7d:b8:43:8c:68:
14:5f:e4:d3:e5:41:25:ac:2d:3a:c6:89:dd:db:25:
b4:1c:4f:ea:23:3e:9f:d3:2a:4f:6f:09:c4:87:d1:
cf:f9:d8:04:e1:ef:95:5d:54:a9:96:2e:6f:d9:15:
48:f2:5f:7d:d2:ac:a7:75:b7:1f:b9:0c:4d:d6:c7:
cf:a9:b1:31:06:1f:b3:83:6b:9a:17:81:2f:3a:b6:
07:05:64:4e:18:44:11:03:ab:b3:e4:a3:d5:6a:f7:
7b:a4:3d:75:a6:fb:a7:ae:16:49:cd:43:b1:48:23:
2f:b5:a1:ab:ac:c6:4d:18:24:35:fc:10:bd:8c:82:
99:78:b8:f4:12:c4:0b:d0:c5:fa:07:ed:90:7f:5a:
6c:87:74:54:ad:7e:b2:2c:8d:05:b3:bd:86:2d:0e:
f1:18:c5:ec:9e:bc:cb:4f:58:4f:72:69:82:0e:9c:
8d:7a:f9:6e:9b:07:7b:95:e1:81:6e:4a:b1:44:94:
99:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:9E:C0:40:03:04:AE:89:79:AE:F7:1C:A7:74:86:F8:E8:CD:4F:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1BD1781E4B8011F0857924CEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.208.0-154.199.255.255
Signature Algorithm: sha256WithRSAEncryption
ad:f8:21:5d:cc:e3:65:96:b1:7b:26:a5:ab:86:d8:54:8b:d3:
f7:6e:c6:8a:39:d3:ee:32:ae:4e:43:3c:a1:89:85:7a:0e:cb:
42:ad:6f:8b:f1:32:6d:8e:35:42:ee:e8:32:5e:b8:40:67:0e:
84:70:a8:52:6e:79:2e:a2:7b:db:bc:d5:51:a9:55:8e:59:c6:
44:94:cb:f5:70:88:84:0e:c7:99:39:8a:38:f4:df:ad:93:64:
2d:04:cb:86:8d:c6:0e:f7:50:4a:1e:6d:c9:0d:1f:4e:ad:c9:
6a:1b:d5:e9:4b:48:e0:8e:13:3c:7b:4a:99:8d:d3:20:80:c8:
83:73:81:bc:2f:14:1e:2f:12:a1:d7:66:0b:45:64:ba:3e:26:
4a:94:66:bb:b5:09:65:d1:2b:25:42:d2:41:56:99:f9:8d:8b:
92:06:c9:4a:c7:4a:eb:af:a5:17:86:25:d2:0d:a7:e1:48:cf:
6e:17:24:e4:1f:b7:35:5a:76:b5:4f:2c:3d:eb:f9:2d:24:51:
7d:4c:f0:f6:4d:46:03:47:8d:56:1c:bd:07:de:fd:bc:f2:61:
73:f4:4c:6d:35:58:e6:13:fb:30:df:e7:1c:95:50:08:93:0f:
fd:14:ec:3f:a2:49:7e:a1:2f:07:02:3b:15:51:d6:ac:19:02:
a3:6b:a1:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 20:35:46 2025 by rpki-client