Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58A1191C30AE11F08CD470ABDAE4EC9C.roa
File: 58A1191C30AE11F08CD470ABDAE4EC9C.roa (raw, json)
Hash identifier: dweYT9BOXiszLp95nQMfQEumNSTaQB3lH+KHzXsDMrU=
Subject key identifier: D8:98:20:E2:AA:CC:29:3C:11:47:B9:D9:E2:68:68:76:31:CE:23:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018093
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58A1191C30AE11F08CD470ABDAE4EC9C.roa
Signing time: Wed 14 May 2025 10:29:42 +0000
ROA not before: Wed 14 May 2025 10:29:38 +0000
ROA not after: Wed 25 Jun 2025 10:29:38 +0000
asID: 401615
IP address blocks: 154.85.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98451 (0x18093)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 14 10:29:38 2025 GMT
Not After : Jun 25 10:29:38 2025 GMT
Subject: CN=68247096-9d33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bc:f8:a4:6a:7c:1a:88:55:09:70:b0:8c:51:
fc:e7:a1:aa:7d:5f:4c:7e:98:f8:7b:a8:0b:2e:da:
6c:cc:67:ec:3c:11:fc:ab:a8:01:ca:3b:0a:1c:31:
4b:38:d3:eb:b5:b7:42:ab:f8:a3:12:12:ba:88:44:
2a:03:f7:06:b1:61:72:68:95:f7:b4:77:f8:d5:07:
5b:5f:9d:da:9f:34:9b:85:9a:53:50:55:80:37:42:
5b:d6:6b:a3:47:3a:5c:6c:b9:59:0b:7f:81:41:76:
70:8c:91:fe:60:90:22:21:39:4e:ee:c6:79:f0:29:
c0:6a:69:40:38:4c:7b:d1:c4:f7:37:aa:18:59:fe:
57:38:b0:9e:c3:e4:33:4e:6f:6f:f2:1a:3c:de:9c:
20:32:cb:24:72:4f:0c:0c:80:84:8f:01:a2:7c:34:
96:a7:2a:ba:8d:9e:99:b8:37:bd:f6:40:27:0b:57:
75:a0:65:25:44:05:fe:ae:1e:32:47:90:e0:af:b4:
f8:8f:5c:3a:c2:74:bc:2e:c3:ce:ff:b1:3f:c0:20:
b9:06:f1:63:f4:04:73:97:d0:22:85:98:82:43:eb:
80:3e:55:f4:73:ed:26:87:3a:3f:00:05:7d:b1:02:
03:9a:01:de:83:c6:17:05:90:1d:e2:dc:aa:97:1f:
3e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:98:20:E2:AA:CC:29:3C:11:47:B9:D9:E2:68:68:76:31:CE:23:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58A1191C30AE11F08CD470ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.20.0/24
Signature Algorithm: sha256WithRSAEncryption
22:66:66:6c:49:52:f7:87:3b:2d:49:75:64:83:8d:51:2b:5d:
d5:0b:78:27:13:24:e5:b3:9e:ff:85:98:09:ed:01:e3:8a:59:
ff:ff:8d:a3:7b:b3:a1:e3:3c:dc:39:f9:d3:a3:4d:f3:3d:9e:
e8:1b:50:19:31:40:91:d5:a0:19:1d:27:a0:65:17:d0:55:a1:
b4:dd:23:b7:67:0d:35:5d:21:89:a5:b4:69:c0:cf:4d:9e:24:
9f:b8:3c:1b:c6:1a:e1:cb:80:f0:7c:d6:79:a2:f8:12:0b:b1:
93:1c:06:e2:33:e7:15:70:fa:b0:2c:5c:1c:9f:2b:00:7a:fc:
ec:35:e8:52:f0:bb:cf:be:80:c2:4c:bf:b2:1d:f0:8d:26:2e:
ff:35:2f:58:52:23:14:d5:34:b8:df:cc:22:9b:64:58:38:64:
60:c6:0d:7d:d0:2b:69:09:4e:14:cb:82:0f:f9:a1:7a:88:74:
3a:3d:83:ef:e7:33:fa:69:76:67:68:be:80:f4:e9:cc:0d:d6:
a4:2a:29:2a:b5:7c:59:4e:85:ff:b6:38:90:19:fd:5c:f9:d8:
27:0f:14:26:f4:58:8b:5e:18:e8:e6:40:7a:16:b4:49:3e:75:
12:e2:e4:6a:fa:3f:ad:f3:17:03:cb:84:54:75:b6:fc:14:cd:
e6:10:7d:10
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYCTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTE0MTAyOTM4WhcNMjUwNjI1MTAyOTM4WjAYMRYw
FAYDVQQDEw02ODI0NzA5Ni05ZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxLz4pGp8GohVCXCwjFH856GqfV9Mfpj4e6gLLtpszGfsPBH8q6gByjsK
HDFLONPrtbdCq/ijEhK6iEQqA/cGsWFyaJX3tHf41QdbX53anzSbhZpTUFWAN0Jb
1mujRzpcbLlZC3+BQXZwjJH+YJAiITlO7sZ58CnAamlAOEx70cT3N6oYWf5XOLCe
w+QzTm9v8ho83pwgMsskck8MDICEjwGifDSWpyq6jZ6ZuDe99kAnC1d1oGUlRAX+
rh4yR5Dgr7T4j1w6wnS8LsPO/7E/wCC5BvFj9ARzl9AihZiCQ+uAPlX0c+0mhzo/
AAV9sQIDmgHeg8YXBZAd4tyqlx8+IwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNiY
IOKqzCk8EUe52eJoaHYxziNCMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81OEExMTkxQzMwQUUxMUYwOENENDcwQUJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlUUMA0GCSqGSIb3DQEB
CwUAA4IBAQAiZmZsSVL3hzstSXVkg41RK13VC3gnEyTls57/hZgJ7QHjiln//42j
e7Oh4zzcOfnTo03zPZ7oG1AZMUCR1aAZHSegZRfQVaG03SO3Zw01XSGJpbRpwM9N
niSfuDwbxhrhy4DwfNZ5ovgSC7GTHAbiM+cVcPqwLFwcnysAevzsNehS8LvPvoDC
TL+yHfCNJi7/NS9YUiMU1TS438wim2RYOGRgxg190CtpCU4Uy4IP+aF6iHQ6PYPv
5zP6aXZnaL6A9OnMDdakKikqtXxZToX/tjiQGf1c+dgnDxQm9FiLXhjo5kB6FrRJ
PnUS4uRq+j+t8xcDy4RUdbb8FM3mEH0Q
-----END CERTIFICATE-----
Generated at Thu May 15 23:46:59 2025 by rpki-client