Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/261A2488243911F09A507EC9DAE4EC9C.roa
File: 261A2488243911F09A507EC9DAE4EC9C.roa (raw, json)
Hash identifier: 8AeDZ4DTayt9yN+LyCVLOtUUJfq3QLRYuvFo73f9o4E=
Subject key identifier: 23:B4:CA:35:12:F1:27:12:4B:4A:9D:C5:CF:D0:61:3A:B7:A9:06:85
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017BFD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/261A2488243911F09A507EC9DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 14:00:32 +0000
ROA not before: Mon 28 Apr 2025 14:00:27 +0000
ROA not after: Mon 02 Jun 2025 14:00:27 +0000
asID: 19318
IP address blocks: 154.85.22.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97277 (0x17bfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 14:00:27 2025 GMT
Not After : Jun 2 14:00:27 2025 GMT
Subject: CN=680f8a00-ec2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0f:17:21:ae:2b:c1:bf:44:b1:14:94:67:6b:
a2:8c:cb:b7:17:aa:8f:7b:f3:13:f5:fa:18:c7:e8:
33:83:bd:4f:f6:cb:a9:9b:2f:4e:80:05:70:66:d8:
71:dd:c8:2b:ed:e2:eb:5f:e2:a7:29:a8:b4:37:8b:
06:d9:b3:88:8c:e2:2f:32:4e:72:9d:c0:e3:7e:2d:
78:cd:b5:53:49:bc:5f:97:aa:bd:be:23:51:63:01:
5a:a8:5b:77:93:3a:1a:16:f7:c9:1f:3f:5f:83:bc:
b7:e9:ce:c2:22:98:e6:d5:34:cf:49:1e:e8:df:74:
c0:88:9c:90:44:90:8f:00:d9:8c:d7:33:63:fe:cb:
f5:e2:fe:59:2d:43:85:32:5b:77:df:91:29:b0:1e:
d1:99:8d:78:49:3d:3f:28:5f:a9:57:7b:2b:60:54:
b8:f6:55:fa:0c:8f:8a:46:60:2d:dc:1b:b9:6b:39:
b3:0d:5e:77:6b:3e:85:3f:af:93:22:ac:20:fb:9f:
33:77:da:8f:4f:9e:ab:00:b4:ac:a8:9f:8d:f1:97:
8b:88:e5:cc:9d:f7:29:7e:91:77:46:62:63:d8:26:
55:1f:73:43:3f:36:27:0a:a1:89:8f:a9:bd:16:19:
70:2b:a3:c1:c6:1e:a6:8b:ca:e1:a4:a9:ab:02:4f:
a7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B4:CA:35:12:F1:27:12:4B:4A:9D:C5:CF:D0:61:3A:B7:A9:06:85
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/261A2488243911F09A507EC9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.22.0/23
Signature Algorithm: sha256WithRSAEncryption
83:4f:c4:88:60:82:7f:a4:25:c3:0e:f5:d9:b3:5c:f6:b8:9f:
70:21:9b:60:34:cb:d1:d0:ca:d2:46:f2:2b:a1:59:b4:da:ec:
eb:93:65:c6:64:f7:35:44:b7:29:15:75:dd:40:8b:2a:80:b1:
8b:5e:cf:98:ee:65:b3:4b:0d:fb:c7:4d:d8:05:b4:2b:71:7c:
2f:56:5a:e7:bf:69:65:be:7a:e5:a3:50:d6:e9:fd:ce:b3:05:
58:b8:c0:17:21:63:b6:53:0c:f4:b5:2f:3c:5f:d7:39:c2:98:
ac:08:58:d0:91:1a:10:8f:d8:51:40:5c:00:cd:9c:fb:78:b5:
54:4f:2f:15:70:c0:5f:5c:ff:67:9e:2e:2e:ef:9f:22:42:f0:
9a:85:11:c7:97:3a:99:24:83:79:37:93:b8:3f:d0:f7:6f:f5:
66:63:ab:d5:1b:e1:30:b4:45:8c:8b:3f:d7:2f:26:d8:07:fb:
66:56:25:dc:df:aa:db:83:f1:64:b7:5d:df:93:89:62:4c:72:
56:32:94:a2:4b:c1:cc:f2:b6:c1:f4:87:ef:63:7e:19:74:98:
61:a3:d8:f4:63:c6:c0:45:1e:50:d7:e6:e4:08:2d:7c:ea:3a:
bf:38:4f:05:ea:cc:b2:5d:ea:f4:4b:80:76:43:c6:4e:ae:cb:
d4:16:3f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:46:03 2025 by rpki-client