Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5218C216483C11F097800899DAE4EC9C.roa
File: 5218C216483C11F097800899DAE4EC9C.roa (raw, json)
Hash identifier: LtFoaWYD2ehooClxCGoxk/G5ywZc1oQR4pmFlNIfkFA=
Subject key identifier: 80:91:67:C7:71:E4:10:4D:70:AD:CE:CE:39:C7:90:9C:F9:3E:57:8D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018664
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5218C216483C11F097800899DAE4EC9C.roa
Signing time: Fri 13 Jun 2025 09:53:56 +0000
ROA not before: Fri 13 Jun 2025 09:53:51 +0000
ROA not after: Sat 19 Jul 2025 09:53:51 +0000
asID: 214143
IP address blocks: 154.92.209.0/24 maxlen: 24
154.92.210.0/24 maxlen: 24
154.92.211.0/24 maxlen: 24
154.92.212.0/24 maxlen: 24
154.92.213.0/24 maxlen: 24
154.92.214.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Jul 2025 13:18:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99940 (0x18664)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 13 09:53:51 2025 GMT
Not After : Jul 19 09:53:51 2025 GMT
Subject: CN=684bf534-c89e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:0b:29:23:c5:db:51:d4:af:e5:02:76:fe:dd:
37:46:b6:3f:71:0a:37:9d:2a:e7:ea:9d:01:18:df:
6d:54:0a:27:f4:ae:af:1f:e1:ab:1b:08:67:a0:1f:
57:6a:bf:8f:85:e8:af:fb:39:4a:3b:ab:c1:ab:07:
73:15:95:8c:51:5f:66:af:5b:54:01:62:83:00:da:
57:63:38:34:70:69:f3:4d:5d:f8:f5:e9:f3:a1:3d:
ac:65:3d:69:ca:cc:7e:ad:6a:6b:f3:66:e5:3d:bd:
19:59:47:0f:fc:0b:03:17:86:95:58:e4:7d:6d:cd:
ec:6a:e9:35:b5:42:88:d4:a1:07:c3:2b:2e:6d:ed:
71:a2:8a:98:a6:93:12:39:b3:1d:45:c2:68:c1:9b:
40:a8:31:44:42:58:ea:d7:58:04:cf:2a:d5:bf:66:
8f:74:46:e9:61:6f:35:30:4d:12:24:2b:7e:bc:51:
d6:18:7e:be:e1:b4:30:7e:89:ce:dc:7f:8a:a4:a6:
ae:fb:7c:7b:d2:06:3a:53:6c:aa:76:ae:d5:2d:38:
7a:22:93:a0:7d:6d:02:6e:12:11:57:85:68:ec:9c:
1e:7a:42:ad:f5:a6:c8:39:9f:47:b1:89:20:d7:63:
b3:bc:69:e7:f9:64:8e:88:cd:bb:df:fb:58:3d:cb:
77:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:91:67:C7:71:E4:10:4D:70:AD:CE:CE:39:C7:90:9C:F9:3E:57:8D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5218C216483C11F097800899DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.209.0-154.92.214.255
Signature Algorithm: sha256WithRSAEncryption
88:ec:a5:a4:43:54:70:15:67:eb:c4:54:f9:e6:99:33:3e:f7:
a0:72:5a:25:71:5f:c9:d3:8f:3b:18:e6:53:5a:84:2a:af:23:
35:d2:35:89:ef:11:d5:08:99:cb:f6:99:5e:ff:0b:46:99:21:
23:29:6a:be:48:5c:42:18:ac:16:b0:69:4a:f0:f5:38:55:68:
4a:48:a8:95:7e:7a:04:ee:8c:4d:b3:2b:4a:4f:c1:ef:64:b5:
77:0f:2e:ce:3e:ab:2a:b3:8f:e3:43:5c:b6:ab:80:b2:f6:1e:
aa:fe:cf:13:3c:c3:7e:cd:bd:a6:1a:e9:6b:2d:34:7a:8a:5d:
02:02:7f:3d:4b:04:e5:78:7c:3f:85:df:61:d8:93:47:ec:33:
35:b4:dd:42:f7:7c:e9:05:66:e3:3d:22:65:36:1b:54:bc:37:
0f:92:a4:c4:17:4c:22:46:f5:5b:8d:32:0c:5b:63:40:4e:70:
24:aa:82:2d:ba:ae:33:33:05:4f:58:77:33:40:79:7a:52:63:
a5:11:16:84:95:bc:f1:94:5e:8f:cd:0a:93:94:40:74:05:f8:
e9:64:c0:01:ed:65:af:76:05:36:3c:44:5f:42:ee:48:f5:e7:
70:2a:e7:8c:f5:b1:01:88:f1:2b:2a:60:a7:11:53:b3:1a:89:
cf:c0:89:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 15:17:00 2025 by rpki-client