Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/32F48BD6525A11F091C8F47ADAE4EC9C.roa
File: 32F48BD6525A11F091C8F47ADAE4EC9C.roa (raw, json)
Hash identifier: Jd562s/p6rRfbX3WdEVSvItHS4WHfGVyTfUqHMaS/us=
Subject key identifier: A7:D0:26:04:88:F4:E3:89:65:A0:99:22:5B:68:3F:67:FB:26:A8:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018914
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/32F48BD6525A11F091C8F47ADAE4EC9C.roa
Signing time: Thu 26 Jun 2025 06:53:01 +0000
ROA not before: Thu 26 Jun 2025 06:52:56 +0000
ROA not after: Thu 24 Jul 2025 06:52:56 +0000
asID: 153706
IP address blocks: 154.89.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100628 (0x18914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 26 06:52:56 2025 GMT
Not After : Jul 24 06:52:56 2025 GMT
Subject: CN=685cee4d-0a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6e:19:0a:4c:eb:9c:0c:6e:b2:f7:17:c7:ab:
c0:87:48:25:46:78:5d:5a:f3:c5:43:78:88:c4:5e:
21:39:c7:18:82:aa:11:95:91:12:5d:9c:50:c9:1c:
89:8b:78:1f:dd:06:2a:09:e4:9c:49:58:0e:54:24:
ed:67:ea:55:80:e6:d4:ca:56:da:e3:02:e2:f0:e4:
9e:8d:29:07:92:01:9d:ee:1d:a3:16:fd:db:ab:e9:
da:98:07:f3:eb:77:a0:d4:a3:6f:fa:dd:b7:db:fc:
3c:0e:33:b8:8b:ca:8b:b3:a0:f7:15:55:3c:7b:7a:
11:d9:a2:7a:16:37:4d:eb:71:a0:63:2a:07:bb:ce:
ad:f4:74:34:ae:af:db:ce:21:44:10:78:4c:c1:78:
f1:f1:98:e3:b9:fe:4a:27:9f:77:3d:97:92:4d:03:
25:16:e3:e4:1c:08:ee:fb:52:3c:83:58:ae:bd:df:
71:0e:53:db:d9:8d:65:c5:64:2c:8f:6c:5b:de:1d:
e6:04:37:c7:ca:da:74:f9:69:36:89:49:25:f2:09:
60:04:e8:85:c3:7a:22:a2:e0:a8:55:a5:4b:7d:93:
2b:71:d2:ed:af:5c:c7:d5:5e:30:3e:49:9f:bb:ff:
2b:d2:0c:06:8a:61:b9:cc:dc:5d:c1:3c:fe:36:f7:
22:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D0:26:04:88:F4:E3:89:65:A0:99:22:5B:68:3F:67:FB:26:A8:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/32F48BD6525A11F091C8F47ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.194.0/24
Signature Algorithm: sha256WithRSAEncryption
26:1b:db:7f:51:59:83:10:70:d5:ad:65:3f:3f:7e:23:42:81:
cf:a7:7f:50:fc:f5:96:1e:03:89:be:14:e6:8f:22:81:f9:90:
ad:c1:3c:13:74:ad:6d:dc:ee:d1:60:60:c6:d4:1d:7a:00:68:
89:f6:15:60:ee:20:39:36:fb:25:c7:6f:60:ba:07:a2:1c:58:
51:dc:3e:10:73:f7:47:47:d2:1b:ad:91:be:bc:36:75:54:2a:
f1:78:a5:6c:73:15:72:e0:59:d7:d6:c1:7b:62:cc:5d:15:e2:
1f:db:3f:14:db:bc:e5:db:dc:06:58:7e:f2:39:3f:5b:91:ab:
c5:50:d6:07:b4:99:bd:86:98:5c:8c:81:29:ba:c0:9e:b4:fa:
87:f4:99:29:96:b0:f5:78:07:01:63:96:82:64:91:b9:42:0b:
51:93:20:59:c3:2d:9e:04:4f:f8:af:74:6b:62:38:55:26:5d:
d5:54:5b:d9:4f:35:c2:ef:ba:e4:f2:c4:0b:fd:a1:9f:db:60:
44:80:24:6e:af:a3:6e:2b:6c:55:45:24:64:48:e8:53:90:95:
91:00:ad:11:de:cb:1d:93:69:c2:fd:6d:af:15:b5:1d:8c:47:
e7:f5:bf:f5:bb:84:59:21:97:16:bd:ee:af:8b:ef:bd:28:b4:
0c:19:34:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:08:26 2025 by rpki-client