Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2871D3DA518811F0B39BFAA6DAE4EC9C.roa
File: 2871D3DA518811F0B39BFAA6DAE4EC9C.roa (raw, json)
Hash identifier: k4xpy0OR/OUWbVKhxORBDbSMjxKJJd6Zxr3f8MoXr2s=
Subject key identifier: 17:05:D0:51:BC:4C:22:44:2E:47:7F:DE:1B:58:FA:55:47:5F:9F:5E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0188E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2871D3DA518811F0B39BFAA6DAE4EC9C.roa
Signing time: Wed 25 Jun 2025 05:49:29 +0000
ROA not before: Wed 25 Jun 2025 05:49:24 +0000
ROA not after: Tue 15 Jul 2025 05:49:24 +0000
asID: 62240
IP address blocks: 154.85.26.0/24 maxlen: 24
154.85.97.0/24 maxlen: 24
154.85.99.0/24 maxlen: 24
154.90.1.0/24 maxlen: 24
154.90.129.0/24 maxlen: 24
154.90.130.0/24 maxlen: 24
154.90.131.0/24 maxlen: 24
154.90.142.0/24 maxlen: 24
154.90.143.0/24 maxlen: 24
154.90.172.0/24 maxlen: 24
154.90.173.0/24 maxlen: 24
154.94.34.0/24 maxlen: 24
154.94.39.0/24 maxlen: 24
154.94.42.0/24 maxlen: 24
154.94.45.0/24 maxlen: 24
154.94.57.0/24 maxlen: 24
154.94.58.0/24 maxlen: 24
154.94.61.0/24 maxlen: 24
154.94.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 11:44:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100577 (0x188e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 25 05:49:24 2025 GMT
Not After : Jul 15 05:49:24 2025 GMT
Subject: CN=685b8de9-aa48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ba:26:e0:67:34:c5:59:4c:87:5b:cc:01:d6:
b3:ae:89:9e:63:d7:c6:47:13:b5:a5:79:94:2f:3b:
7b:5c:ca:27:c2:27:30:ee:16:87:f1:51:cc:5d:48:
3f:e7:0d:ea:62:15:80:f2:35:24:b8:24:53:34:93:
c2:cc:2a:2d:46:07:f9:ef:0e:4c:c9:99:d9:d5:08:
6d:4d:9d:7a:8e:0f:11:08:c8:71:e3:b4:93:41:f4:
7d:7c:45:9e:9c:a3:8b:aa:0e:ad:66:b7:55:76:1a:
64:62:b4:61:03:3e:2b:ee:6e:6c:93:e4:ef:e3:24:
8e:25:10:91:4b:d8:62:f1:9a:7a:78:d1:11:95:88:
32:d8:03:62:90:1b:64:2d:0c:56:f7:4e:34:cf:dd:
77:1e:ef:a9:76:03:51:d2:c4:00:a2:c1:c2:3d:2c:
41:10:d6:88:af:c6:83:a2:e8:74:18:e7:43:7f:8e:
d3:2b:67:07:ec:d2:0d:78:09:4c:57:fd:84:8e:fd:
48:e9:8a:33:49:52:42:6f:0e:bd:3b:60:59:68:3a:
af:9d:ba:bd:87:c0:74:76:44:7e:a8:8c:95:53:1a:
77:a0:c2:d4:f6:32:dd:23:66:d1:89:af:cc:12:74:
d2:cb:ef:23:ea:81:f8:62:49:9e:05:f1:ab:fe:dd:
54:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:05:D0:51:BC:4C:22:44:2E:47:7F:DE:1B:58:FA:55:47:5F:9F:5E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2871D3DA518811F0B39BFAA6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.26.0/24
154.85.97.0/24
154.85.99.0/24
154.90.1.0/24
154.90.129.0-154.90.131.255
154.90.142.0/23
154.90.172.0/23
154.94.34.0/24
154.94.39.0/24
154.94.42.0/24
154.94.45.0/24
154.94.57.0-154.94.58.255
154.94.61.0-154.94.62.255
Signature Algorithm: sha256WithRSAEncryption
95:d7:35:c0:e9:63:59:d9:4d:b1:d5:1b:4a:5a:fc:58:40:b7:
fa:6d:fc:07:a8:a3:4a:80:86:7e:8d:ac:f5:c8:dd:35:2d:b5:
07:77:dc:e1:e8:f1:e2:d0:35:50:c3:64:8f:fd:91:4b:8a:28:
4e:b1:7a:65:fb:91:ee:2a:59:5b:71:d2:61:a6:68:b5:98:d5:
03:82:6b:09:8a:ab:f4:d7:9a:74:a5:a0:fa:8f:f4:42:c8:27:
e3:5e:49:d3:5f:69:17:d4:0a:d3:53:74:30:d0:6d:12:74:5e:
85:58:82:c8:af:c5:12:d6:c4:1e:cf:0d:2b:ff:ff:d2:d3:f1:
92:67:7f:78:02:c3:2f:84:99:f9:8a:40:ca:4a:b4:05:29:9e:
79:5d:ef:72:02:c7:93:09:7f:c3:b6:6f:57:83:a4:22:e7:6e:
d6:e5:82:b3:41:2a:5c:3a:37:2b:1a:ac:58:98:4e:a5:28:45:
06:49:55:d8:f0:ad:23:80:b5:34:68:73:b2:6a:d2:0a:96:f2:
09:12:0f:32:16:26:da:29:6d:cd:30:a5:4a:12:de:f1:ea:0b:
04:58:47:97:c9:29:75:00:c5:8b:c2:d2:8d:89:e6:49:eb:f1:
f8:8b:31:a6:67:4c:41:e4:a8:0d:78:39:a7:65:1a:da:1d:65:
e9:6b:eb:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 17:22:43 2025 by rpki-client