Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37A73BB8318C11F08F6809F5DAE4EC9C.roa
File: 37A73BB8318C11F08F6809F5DAE4EC9C.roa (raw, json)
Hash identifier: ULs4BMG6p4Sdzdw4CqnRbbC09xkvy/ZEf2tiU0M5q2M=
Subject key identifier: 81:0A:32:C8:2C:90:4A:30:8C:C3:ED:7A:89:CD:25:58:42:EE:56:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0180E8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37A73BB8318C11F08F6809F5DAE4EC9C.roa
Signing time: Thu 15 May 2025 12:57:55 +0000
ROA not before: Thu 15 May 2025 12:56:02 +0000
ROA not after: Sun 15 Jun 2025 12:56:02 +0000
asID: 54801
IP address blocks: 154.81.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98536 (0x180e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 15 12:56:02 2025 GMT
Not After : Jun 15 12:56:02 2025 GMT
Subject: CN=6825e4d3-0208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7b:c8:bc:52:f7:f9:68:65:35:42:e1:90:7e:
b9:70:71:6d:be:eb:bc:27:65:f9:0f:84:78:5a:6f:
3f:c8:b8:c5:d3:87:4c:9e:57:b0:da:00:a1:d2:f4:
d6:6d:de:7b:f7:c0:b6:5e:f9:af:19:62:59:c4:ad:
75:71:39:c3:fe:cf:14:39:5f:2a:ba:6b:5b:05:1b:
b7:38:f7:7c:49:dd:5b:68:db:e4:38:0f:7c:00:44:
a5:d7:dd:5f:7b:82:e5:2f:d3:df:ee:05:0d:4e:46:
9e:50:75:2b:41:ec:56:b1:e7:f0:17:b0:f4:1d:8f:
d9:10:56:71:7e:ac:a7:08:9e:6a:75:c6:be:62:85:
d2:36:18:92:45:86:af:10:40:c1:b8:cb:57:13:bb:
27:15:c3:de:3a:24:e3:19:45:c1:13:6e:23:99:6d:
ba:74:6d:a3:75:39:9d:84:2c:c0:c6:c3:9e:7b:72:
66:e5:8b:7c:a0:90:f8:e9:ed:94:0f:e2:f9:62:f5:
f6:16:4b:46:51:4a:2c:5e:f7:8a:17:a8:19:52:33:
25:64:31:fd:2b:b8:02:c7:f5:e6:dd:77:b8:35:5c:
55:c4:83:92:4d:4f:8d:1f:2c:58:48:0f:48:69:1b:
a4:3a:56:ed:68:99:6c:76:bf:5d:a5:bd:37:cb:68:
4a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0A:32:C8:2C:90:4A:30:8C:C3:ED:7A:89:CD:25:58:42:EE:56:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37A73BB8318C11F08F6809F5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.136.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:db:aa:e9:5b:0d:6a:bc:ae:0b:b9:91:8e:23:1c:83:2e:20:
34:03:82:fa:93:5f:75:fe:f5:bf:53:12:c8:e9:83:32:2d:c1:
b4:36:65:87:28:3f:0f:eb:b4:14:c8:16:bb:af:6e:db:03:a3:
8f:a1:03:21:05:72:fe:1f:a2:49:71:3d:c2:1c:59:27:54:ef:
8e:ce:68:15:39:7c:9f:61:5f:8d:18:0c:d3:33:51:3b:02:30:
d9:ea:d2:fd:4a:09:37:74:26:71:2f:ca:10:1c:11:03:19:e5:
75:84:7a:98:49:53:3a:ea:cf:90:c3:ce:e1:5a:2b:8a:82:d4:
b2:52:ce:51:e4:47:09:96:b0:a9:13:78:1a:94:ff:c5:cf:1f:
e6:18:17:49:f2:86:ad:a9:c0:fa:80:c7:a9:f4:bb:24:eb:2e:
9f:81:72:3d:3e:14:d7:8f:d4:1d:08:93:b9:25:d5:0f:5b:76:
3e:98:b2:69:78:51:93:76:5c:6c:d3:00:94:7e:fb:82:ee:c0:
db:3a:91:22:40:07:7f:e1:b0:fd:f8:57:34:ee:ec:b9:f3:db:
61:ee:4c:a6:44:e2:04:60:86:98:65:ac:12:ae:6f:83:ed:16:
3d:eb:4f:17:99:8f:04:aa:50:a6:32:00:ce:5f:d3:8f:24:2c:
9b:10:e0:fc
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYDoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTE1MTI1NjAyWhcNMjUwNjE1MTI1NjAyWjAYMRYw
FAYDVQQDEw02ODI1ZTRkMy0wMjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAy3vIvFL3+WhlNULhkH65cHFtvuu8J2X5D4R4Wm8/yLjF04dMnlew2gCh
0vTWbd5798C2XvmvGWJZxK11cTnD/s8UOV8qumtbBRu3OPd8Sd1baNvkOA98AESl
191fe4LlL9Pf7gUNTkaeUHUrQexWsefwF7D0HY/ZEFZxfqynCJ5qdca+YoXSNhiS
RYavEEDBuMtXE7snFcPeOiTjGUXBE24jmW26dG2jdTmdhCzAxsOee3Jm5Yt8oJD4
6e2UD+L5YvX2FktGUUosXveKF6gZUjMlZDH9K7gCx/Xm3Xe4NVxVxIOSTU+NHyxY
SA9IaRukOlbtaJlsdr9dpb03y2hKvwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIEK
MsgskEowjMPteonNJVhC7lZuMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zN0E3M0JCODMxOEMxMUYwOEY2ODA5RjVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlGIMA0GCSqGSIb3DQEB
CwUAA4IBAQDW26rpWw1qvK4LuZGOIxyDLiA0A4L6k191/vW/UxLI6YMyLcG0NmWH
KD8P67QUyBa7r27bA6OPoQMhBXL+H6JJcT3CHFknVO+OzmgVOXyfYV+NGAzTM1E7
AjDZ6tL9Sgk3dCZxL8oQHBEDGeV1hHqYSVM66s+Qw87hWiuKgtSyUs5R5EcJlrCp
E3galP/Fzx/mGBdJ8oatqcD6gMep9Lsk6y6fgXI9PhTXj9QdCJO5JdUPW3Y+mLJp
eFGTdlxs0wCUfvuC7sDbOpEiQAd/4bD9+Fc07uy589th7kymROIEYIaYZawSrm+D
7RY9608XmY8EqlCmMgDOX9OPJCybEOD8
-----END CERTIFICATE-----
Generated at Thu May 15 23:55:41 2025 by rpki-client