Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55F0A4F42A5911F0B6E0FFCEDAE4EC9C.roa
File: 55F0A4F42A5911F0B6E0FFCEDAE4EC9C.roa (raw, json)
Hash identifier: Eh93NgQY1SnCU3tiR8JVjv79hUWik+ODIrBKQtsYz+Q=
Subject key identifier: 2D:14:D9:46:83:B1:66:E4:40:E7:94:E0:C2:6A:4E:4C:63:96:6B:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F1B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55F0A4F42A5911F0B6E0FFCEDAE4EC9C.roa
Signing time: Tue 06 May 2025 09:06:03 +0000
ROA not before: Tue 06 May 2025 09:05:59 +0000
ROA not after: Fri 13 Jun 2025 09:05:59 +0000
asID: 400619
IP address blocks: 154.193.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 16 May 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98075 (0x17f1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 09:05:59 2025 GMT
Not After : Jun 13 09:05:59 2025 GMT
Subject: CN=6819d0fb-0694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:16:8d:6f:fc:72:9b:32:04:eb:37:aa:27:06:
f3:58:36:56:bf:d2:d5:51:03:bd:a7:6f:78:72:27:
14:dc:f5:d4:12:2b:3d:c1:ea:e1:0e:7c:93:68:7c:
85:10:4f:3f:8a:44:c0:e8:5f:2d:ab:15:53:0c:4d:
86:91:bf:53:c9:39:81:41:dd:27:93:2f:1b:65:1a:
24:f5:3b:de:80:80:01:47:22:ad:e9:28:6f:33:0a:
f7:0c:9f:ea:db:1a:19:ad:e1:41:2d:17:1c:8b:86:
07:0f:b5:71:07:fc:78:a4:88:63:c5:04:8c:5d:10:
34:da:58:77:ca:8c:97:25:35:4e:f9:b9:9b:88:f9:
eb:42:78:9b:3c:3b:d0:5f:bc:f8:67:d1:55:6a:9e:
98:d5:29:e1:92:d2:10:11:ea:8b:b8:46:d2:07:73:
f9:0c:9b:6f:e6:ab:0f:e1:66:b9:ab:d3:ce:c4:46:
6e:27:9c:77:ac:44:9a:12:2b:c8:64:f0:c8:68:16:
43:78:b7:44:22:c0:16:d2:ea:df:cd:c1:f8:31:71:
cd:50:81:67:dc:37:66:20:24:f2:6a:2c:42:ea:fc:
64:db:72:40:fe:47:d0:9b:62:94:a2:36:85:05:46:
a8:b1:df:35:fc:ae:34:8d:80:74:3b:a6:12:df:26:
6a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:14:D9:46:83:B1:66:E4:40:E7:94:E0:C2:6A:4E:4C:63:96:6B:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55F0A4F42A5911F0B6E0FFCEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.192.0/18
Signature Algorithm: sha256WithRSAEncryption
7e:e2:b0:18:84:7f:00:92:ea:16:68:f1:d6:ca:55:04:44:84:
86:eb:69:2a:f8:3e:a0:d3:ca:87:84:54:fa:6c:44:75:fe:f8:
c2:ef:50:14:7d:8a:df:68:ea:6c:67:63:51:9e:8e:65:b6:c7:
83:32:14:c9:7e:70:49:74:e8:a2:fe:d2:6e:06:86:51:9f:83:
1d:b4:14:b4:d3:4d:c9:bc:25:21:d4:4e:1b:c2:f9:cd:df:e0:
7d:e8:fc:a5:fb:d6:27:7e:ec:f4:70:b2:77:5c:ec:73:28:ae:
b2:30:2f:5a:27:57:cb:c3:e8:06:db:c8:95:59:27:0e:9a:e6:
40:9f:b9:26:ad:b5:4b:db:c6:58:d6:df:7d:e8:2f:d0:98:52:
19:a2:86:43:ea:fc:66:96:7e:0c:82:12:b0:3d:fa:50:30:9c:
23:09:fa:ae:e8:f4:dc:52:03:15:3e:57:c3:7c:08:8d:48:f1:
69:ef:c0:39:cd:4d:d1:b0:58:41:63:b0:15:ab:03:31:46:9e:
4e:bf:d8:cc:29:0a:92:f0:9e:9e:af:33:68:f2:0e:5e:af:bd:
63:db:3d:5d:07:10:37:39:1f:3d:5a:13:88:20:ec:50:37:91:
fb:9a:4b:d5:ec:5b:27:37:54:58:09:06:de:6d:5f:47:fb:cf:
31:e9:47:38
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAX8bMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTA2MDkwNTU5WhcNMjUwNjEzMDkwNTU5WjAYMRYw
FAYDVQQDEw02ODE5ZDBmYi0wNjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyRaNb/xymzIE6zeqJwbzWDZWv9LVUQO9p294cicU3PXUEis9werhDnyT
aHyFEE8/ikTA6F8tqxVTDE2Gkb9TyTmBQd0nky8bZRok9TvegIABRyKt6ShvMwr3
DJ/q2xoZreFBLRcci4YHD7VxB/x4pIhjxQSMXRA02lh3yoyXJTVO+bmbiPnrQnib
PDvQX7z4Z9FVap6Y1SnhktIQEeqLuEbSB3P5DJtv5qsP4Wa5q9POxEZuJ5x3rESa
EivIZPDIaBZDeLdEIsAW0urfzcH4MXHNUIFn3DdmICTyaixC6vxk23JA/kfQm2KU
ojaFBUaosd81/K40jYB0O6YS3yZqdQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFC0U
2UaDsWbkQOeU4MJqTkxjlmvdMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81NUYwQTRGNDJBNTkxMUYwQjZFMEZGQ0VEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGmsHAMA0GCSqGSIb3DQEB
CwUAA4IBAQB+4rAYhH8AkuoWaPHWylUERISG62kq+D6g08qHhFT6bER1/vjC71AU
fYrfaOpsZ2NRno5ltseDMhTJfnBJdOii/tJuBoZRn4MdtBS0003JvCUh1E4bwvnN
3+B96Pyl+9Ynfuz0cLJ3XOxzKK6yMC9aJ1fLw+gG28iVWScOmuZAn7kmrbVL28ZY
1t996C/QmFIZooZD6vxmln4MghKwPfpQMJwjCfqu6PTcUgMVPlfDfAiNSPFp78A5
zU3RsFhBY7AVqwMxRp5Ov9jMKQqS8J6erzNo8g5er71j2z1dBxA3OR89WhOIIOxQ
N5H7mkvV7FsnN1RYCQbebV9H+88x6Uc4
-----END CERTIFICATE-----
Generated at Wed May 14 11:52:15 2025 by rpki-client