Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E015658580E11F088C97A8ADAE4EC9C.roa
File: 3E015658580E11F088C97A8ADAE4EC9C.roa (raw, json)
Hash identifier: 48rgqTnyQUsKBnS5oHThR+knDi/xVfeTj/MIeN3qhTg=
Subject key identifier: C1:80:F7:33:A1:96:A5:F0:73:CC:D5:96:BC:01:ED:D5:03:91:6C:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018A19
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E015658580E11F088C97A8ADAE4EC9C.roa
Signing time: Thu 03 Jul 2025 13:04:24 +0000
ROA not before: Thu 03 Jul 2025 13:04:20 +0000
ROA not after: Wed 06 Aug 2025 13:04:20 +0000
asID: 20326
IP address blocks: 154.84.188.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100889 (0x18a19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 3 13:04:20 2025 GMT
Not After : Aug 6 13:04:20 2025 GMT
Subject: CN=68667fd8-9e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:06:6a:e8:b8:73:a5:7c:b5:6f:2d:e4:d0:cf:
08:3a:9f:70:c6:65:a1:ca:59:4a:68:40:82:cf:12:
a3:ac:48:de:3f:97:ad:23:1c:96:06:31:4e:e1:a4:
37:f8:af:01:c9:48:e9:48:f1:79:c3:4e:54:54:7e:
b2:41:88:0f:af:f6:8f:03:65:65:a8:66:09:47:0a:
2f:fc:21:e8:3d:b7:ef:a6:6d:13:99:df:93:f8:41:
40:c0:85:3f:ab:6e:a8:2d:66:5e:0a:da:93:8a:9a:
25:50:0d:cc:8e:6c:09:72:b3:06:a0:8f:55:94:96:
09:40:07:3b:d5:12:0f:ed:76:2e:4a:e7:ec:64:44:
e7:08:b2:ba:43:30:24:1d:10:df:e6:74:72:c6:8f:
e4:a9:ed:72:95:aa:cd:f9:4c:c3:08:83:a8:fd:fa:
7a:3d:9b:50:16:b1:52:82:bb:c0:6c:e7:be:f1:fa:
58:61:d9:74:5a:d7:e6:bd:7c:29:46:57:02:c4:b1:
ee:51:b7:93:90:ca:6b:a4:8d:81:1a:91:ba:95:85:
7c:5e:a5:43:d5:b5:ba:40:74:7f:bc:1b:40:3f:a2:
3e:67:06:d3:43:44:81:74:6c:5b:fc:b2:ba:12:5d:
f4:16:f8:52:5b:ea:96:88:c8:d8:3d:64:3d:1a:6b:
c6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:80:F7:33:A1:96:A5:F0:73:CC:D5:96:BC:01:ED:D5:03:91:6C:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E015658580E11F088C97A8ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.188.0/23
Signature Algorithm: sha256WithRSAEncryption
42:86:94:0f:ab:14:9e:31:f5:ba:c6:f9:11:9b:b0:b3:ec:57:
e8:4e:2e:cb:c4:a1:ca:10:d7:eb:80:62:4e:de:93:16:b4:2d:
1b:b7:3b:8d:d5:b7:9a:7e:5b:74:80:8b:a6:e7:de:7a:b6:5c:
b6:bb:9d:50:66:de:e2:ea:1e:fa:9e:fc:c8:71:bf:1a:92:cb:
f9:9c:78:09:5a:a0:f6:06:cf:be:47:ba:1b:b7:fd:59:9a:17:
13:6e:e6:f9:00:2d:42:42:10:14:42:44:0b:ae:c9:61:d9:bd:
59:1f:6a:6a:3b:83:7e:4b:66:29:4a:72:f1:82:7a:f1:e5:54:
1b:f2:56:34:68:1c:3d:43:83:42:5e:48:31:fb:a2:ab:d0:fa:
f3:97:71:37:50:d4:11:17:79:9b:80:c5:83:cd:f9:fc:7c:5c:
5f:9b:41:34:2c:55:91:55:4d:b4:a4:d8:72:6b:ed:01:76:e8:
04:cb:83:94:9d:cf:c4:09:56:6e:63:64:41:bb:f3:d2:90:a0:
49:a2:81:5e:fa:b4:c1:f9:c2:93:f1:04:7f:de:c6:b4:f3:32:
a6:cc:96:e3:a9:1b:41:12:a9:a6:a2:ce:73:6c:80:56:c7:94:
3a:19:92:fd:b9:22:42:73:71:73:d2:dc:67:9d:df:42:45:f1:
22:4e:ca:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:00:59 2025 by rpki-client