Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E5CA51A50E211F0AC8A34E7DAE4EC9C.roa
File: 1E5CA51A50E211F0AC8A34E7DAE4EC9C.roa (raw, json)
Hash identifier: IJTUSjFiHuFBzZZ/Q5cjMjeFye7dA6zLQGY+xwOBcFs=
Subject key identifier: 48:0A:78:41:DE:B1:30:29:7B:16:F6:EA:0A:C9:30:5F:D6:97:85:33
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018844
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E5CA51A50E211F0AC8A34E7DAE4EC9C.roa
Signing time: Tue 24 Jun 2025 10:00:55 +0000
ROA not before: Tue 24 Jun 2025 10:00:50 +0000
ROA not after: Tue 05 Aug 2025 10:00:50 +0000
asID: 44559
IP address blocks: 154.209.136.0/24 maxlen: 24
154.209.137.0/24 maxlen: 24
154.209.195.0/24 maxlen: 24
154.209.196.0/24 maxlen: 24
154.209.197.0/24 maxlen: 24
154.209.198.0/24 maxlen: 24
154.209.199.0/24 maxlen: 24
154.209.200.0/24 maxlen: 24
154.209.204.0/24 maxlen: 24
154.209.207.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 06:27:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100420 (0x18844)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 10:00:50 2025 GMT
Not After : Aug 5 10:00:50 2025 GMT
Subject: CN=685a7757-2ec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:a6:a9:32:6d:7b:f4:a0:9c:72:2e:34:46:9b:
eb:e6:dc:df:6b:bb:21:36:7d:ee:ce:aa:9d:81:91:
d5:3c:d8:9d:ac:95:a2:a3:dc:db:7f:47:67:81:e6:
c7:33:6e:af:8b:b4:54:1a:17:69:1e:05:a5:0d:d4:
bc:b8:b9:a1:19:4c:1b:6f:07:af:2b:b2:bd:37:72:
f7:28:e1:23:96:f9:b2:66:f0:ca:2f:9d:7b:24:a8:
40:d6:e5:03:97:6e:21:54:ae:7b:2b:3b:12:94:46:
ed:9c:f0:87:a0:12:01:b0:6c:19:12:33:ff:a7:98:
be:fa:c6:4f:19:fe:2d:1e:6c:58:03:c0:d3:bf:1f:
17:65:ff:9d:24:45:51:fc:d6:18:5b:fb:04:14:18:
28:df:2c:36:1a:b9:a0:8b:55:45:3c:5b:2c:bc:0e:
0f:32:36:76:56:1d:44:8e:65:ae:81:81:e1:0e:88:
22:0a:f9:28:55:6c:40:75:ab:8b:b2:2e:e5:96:64:
d7:11:82:7e:78:42:f7:cc:55:90:e6:95:e4:e8:d5:
72:82:09:60:8a:3e:00:94:8a:89:6f:6b:61:33:bb:
0b:fe:ff:94:09:14:89:c3:c0:71:d3:c5:32:fc:f7:
01:3c:9b:a7:68:b7:23:7d:dc:d2:5b:ad:a3:b9:81:
66:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0A:78:41:DE:B1:30:29:7B:16:F6:EA:0A:C9:30:5F:D6:97:85:33
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E5CA51A50E211F0AC8A34E7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.136.0/23
154.209.195.0-154.209.200.255
154.209.204.0/24
154.209.207.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a4:7b:ae:69:83:6d:b6:40:f2:6e:03:07:ee:66:8c:84:79:
7c:7a:fa:14:16:bc:56:96:ec:5d:d1:18:e5:6c:db:d0:b4:2c:
60:86:9c:38:46:c6:ec:98:0f:9c:ed:3d:36:54:e2:34:a9:ba:
08:89:8d:e5:fb:4a:fa:51:51:43:a0:40:fb:a8:09:4e:26:b9:
1e:3e:38:c1:64:89:6d:67:da:0b:05:28:54:01:81:08:98:71:
de:c9:c6:bd:1a:b7:27:cd:d0:b8:fe:17:4b:ba:07:34:fc:dd:
46:5c:10:00:e4:77:32:6a:48:0f:3b:2a:3f:88:30:a6:2a:c4:
08:5f:df:b8:5c:f2:84:69:95:cb:7e:49:d8:d2:b9:38:c4:29:
0d:09:54:95:46:62:e5:b7:3b:05:b9:12:95:45:9e:b6:e0:67:
81:36:76:9b:4e:00:45:f9:4b:2a:b2:7d:1a:b3:43:50:bb:b9:
f1:ea:f0:00:31:cb:0a:7f:0a:6a:29:54:d3:35:89:3d:56:3c:
fa:56:8b:19:9a:52:63:62:4b:15:cb:36:04:af:c1:16:07:6d:
a0:f3:07:f7:9f:5d:ca:ee:d2:d8:d1:e4:e4:62:ec:de:d3:7d:
c9:f9:8f:27:0c:e3:9b:2c:00:a1:1a:43:bf:54:84:25:2a:59:
f8:ca:69:36
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIDAYhEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjI0MTAwMDUwWhcNMjUwODA1MTAwMDUwWjAYMRYw
FAYDVQQDEw02ODVhNzc1Ny0yZWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA9qapMm179KCcci40Rpvr5tzfa7shNn3uzqqdgZHVPNidrJWio9zbf0dn
gebHM26vi7RUGhdpHgWlDdS8uLmhGUwbbwevK7K9N3L3KOEjlvmyZvDKL517JKhA
1uUDl24hVK57KzsSlEbtnPCHoBIBsGwZEjP/p5i++sZPGf4tHmxYA8DTvx8XZf+d
JEVR/NYYW/sEFBgo3yw2Grmgi1VFPFssvA4PMjZ2Vh1EjmWugYHhDogiCvkoVWxA
dauLsi7llmTXEYJ+eEL3zFWQ5pXk6NVygglgij4AlIqJb2thM7sL/v+UCRSJw8Bx
08Uy/PcBPJunaLcjfdzSW62juYFmawIDAQABo4ICvzCCArswHQYDVR0OBBYEFEgK
eEHesTApexb26grJMF/Wl4UzMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRTVDQTUxQTUwRTIxMUYwQUM4QTM0RTdEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQBmtGIMAwDBACa0cMDBACa
0cgDBACa0cwDBACa0c8wDQYJKoZIhvcNAQELBQADggEBAB+ke65pg222QPJuAwfu
ZoyEeXx6+hQWvFaW7F3RGOVs29C0LGCGnDhGxuyYD5ztPTZU4jSpugiJjeX7SvpR
UUOgQPuoCU4muR4+OMFkiW1n2gsFKFQBgQiYcd7Jxr0atyfN0Lj+F0u6BzT83UZc
EADkdzJqSA87Kj+IMKYqxAhf37hc8oRplct+SdjSuTjEKQ0JVJVGYuW3OwW5EpVF
nrbgZ4E2dptOAEX5SyqyfRqzQ1C7ufHq8AAxywp/CmopVNM1iT1WPPpWixmaUmNi
SxXLNgSvwRYHbaDzB/efXcru0tjR5ORi7N7Tfcn5jycM45ssAKEaQ79UhCUqWfjK
aTY=
-----END CERTIFICATE-----
Generated at Tue Jul 1 12:06:17 2025 by rpki-client