Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56AA6478565211F0AE5F91C7DAE4EC9C.roa
File: 56AA6478565211F0AE5F91C7DAE4EC9C.roa (raw, json)
Hash identifier: ePFk2SgUMQu/sUYLahW8Tddf+PlZCbtqyC3YiOE1oWM=
Subject key identifier: 54:19:84:95:56:C2:B7:C4:23:E4:7B:2B:6A:60:E2:6E:A6:D8:CD:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01898F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56AA6478565211F0AE5F91C7DAE4EC9C.roa
Signing time: Tue 01 Jul 2025 08:06:50 +0000
ROA not before: Tue 01 Jul 2025 08:06:44 +0000
ROA not after: Thu 10 Jul 2025 08:06:44 +0000
asID: 142002
IP address blocks: 154.83.26.0/24 maxlen: 24
154.83.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100751 (0x1898f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 1 08:06:44 2025 GMT
Not After : Jul 10 08:06:44 2025 GMT
Subject: CN=6863971a-3a0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:01:1f:a9:52:39:31:4b:55:09:b8:9d:75:56:
ee:e4:92:ea:f2:32:c2:fc:f1:65:1b:2a:92:11:a1:
e1:59:93:8c:75:60:83:cd:a4:72:03:75:99:75:81:
20:d2:b2:40:ea:e3:6f:c0:e6:9f:2d:ba:cd:d8:09:
04:8d:d5:9e:42:e8:23:c1:9f:f8:6e:39:ed:3d:9f:
75:ac:53:c8:91:e9:d8:29:e5:91:10:b5:fa:2d:f4:
3f:b7:ff:3f:5e:12:e5:38:cb:a2:26:c7:f1:57:0c:
f2:7c:f3:e8:ac:9f:a9:3d:5d:20:24:34:58:ef:e0:
9a:0e:0d:4a:dc:a7:90:99:fa:25:f9:d4:5d:82:56:
f5:48:76:25:a3:aa:c2:19:93:8c:da:89:15:02:e8:
40:f2:b7:91:a0:f1:83:e5:8f:ab:ab:0f:de:c4:cb:
ec:68:4b:6b:66:cd:36:6a:a4:5c:9b:fb:b3:2f:e6:
4a:e3:12:ae:b5:81:c6:05:13:0a:e3:d9:07:6b:5f:
fb:01:de:fc:f6:ad:40:d5:f2:10:18:ad:51:c7:de:
01:ee:a0:cf:8d:96:fb:35:d1:9c:67:d6:e3:cb:87:
0c:ce:80:37:46:1d:bb:61:64:42:46:a3:59:a9:b8:
c2:73:de:60:7c:87:49:d7:4d:8a:59:00:bb:cc:07:
e1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:19:84:95:56:C2:B7:C4:23:E4:7B:2B:6A:60:E2:6E:A6:D8:CD:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56AA6478565211F0AE5F91C7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.26.0/23
Signature Algorithm: sha256WithRSAEncryption
cd:f8:af:ee:dd:83:d3:ad:a9:7e:39:cf:58:cc:fd:13:70:98:
e2:d6:06:98:5d:3c:cd:3c:6f:7d:48:97:aa:e1:b5:21:87:d5:
c2:62:44:95:93:ab:8f:ba:2d:a0:ef:11:c7:4e:31:6a:b5:78:
eb:30:c4:22:c1:b6:ff:97:d7:5e:55:96:e5:d6:90:75:fd:ba:
ce:b7:36:f0:52:20:a8:e5:27:72:4b:f5:59:41:c3:18:2a:10:
2d:02:d0:92:be:9f:53:6d:19:f9:ee:02:5c:47:d8:35:e6:d2:
e6:85:e8:53:fa:1c:70:41:47:7e:b8:54:30:d8:8f:50:0a:ab:
f9:be:d1:46:b4:4f:72:db:76:19:8e:54:99:f4:7d:2a:08:ee:
de:a9:07:97:4d:4b:48:6e:fd:73:e7:ae:50:79:a1:c8:8c:11:
71:ab:1a:88:26:26:af:bc:cf:51:de:02:c7:2f:71:ce:3b:4c:
73:b8:7c:6a:12:d4:07:d3:86:c7:da:82:0f:0e:f8:3f:21:88:
e4:2d:d6:e3:74:d5:af:e3:5c:b0:96:38:86:5a:86:7a:d9:4a:
3f:ac:48:eb:f8:9f:bb:89:fe:fd:a1:83:f2:f6:2c:8d:17:18:
0b:07:7b:41:21:d8:a1:2b:19:fe:90:b8:ea:90:aa:95:6a:01:
23:5b:e1:f0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYmPMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNzAxMDgwNjQ0WhcNMjUwNzEwMDgwNjQ0WjAYMRYw
FAYDVQQDEw02ODYzOTcxYS0zYTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvAEfqVI5MUtVCbiddVbu5JLq8jLC/PFlGyqSEaHhWZOMdWCDzaRyA3WZ
dYEg0rJA6uNvwOafLbrN2AkEjdWeQugjwZ/4bjntPZ91rFPIkenYKeWRELX6LfQ/
t/8/XhLlOMuiJsfxVwzyfPPorJ+pPV0gJDRY7+CaDg1K3KeQmfol+dRdglb1SHYl
o6rCGZOM2okVAuhA8reRoPGD5Y+rqw/exMvsaEtrZs02aqRcm/uzL+ZK4xKutYHG
BRMK49kHa1/7Ad789q1A1fIQGK1Rx94B7qDPjZb7NdGcZ9bjy4cMzoA3Rh27YWRC
RqNZqbjCc95gfIdJ102KWQC7zAfhzQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFQZ
hJVWwrfEI+R7K2pg4m6m2M2bMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81NkFBNjQ3ODU2NTIxMUYwQUU1RjkxQzdEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmlMaMA0GCSqGSIb3DQEB
CwUAA4IBAQDN+K/u3YPTral+Oc9YzP0TcJji1gaYXTzNPG99SJeq4bUhh9XCYkSV
k6uPui2g7xHHTjFqtXjrMMQiwbb/l9deVZbl1pB1/brOtzbwUiCo5SdyS/VZQcMY
KhAtAtCSvp9TbRn57gJcR9g15tLmhehT+hxwQUd+uFQw2I9QCqv5vtFGtE9y23YZ
jlSZ9H0qCO7eqQeXTUtIbv1z565QeaHIjBFxqxqIJiavvM9R3gLHL3HOO0xzuHxq
EtQH04bH2oIPDvg/IYjkLdbjdNWv41ywljiGWoZ62Uo/rEjr+J+7if79oYPy9iyN
FxgLB3tBIdihKxn+kLjqkKqVagEjW+Hw
-----END CERTIFICATE-----
Generated at Fri Jul 4 06:12:45 2025 by rpki-client