Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A188BFE581811F09D2297CBDAE4EC9C.roa
File: 5A188BFE581811F09D2297CBDAE4EC9C.roa (raw, json)
Hash identifier: loMxajcMwsgQ5Ek/sANeWOGzkQRNyGik+zo2aAnjiAI=
Subject key identifier: D3:1A:E4:18:32:17:92:0D:26:BF:17:B9:22:6B:07:72:A7:14:D0:EA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018A23
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A188BFE581811F09D2297CBDAE4EC9C.roa
Signing time: Thu 03 Jul 2025 14:16:47 +0000
ROA not before: Thu 03 Jul 2025 14:16:42 +0000
ROA not after: Sun 12 Oct 2025 14:16:42 +0000
asID: 20473
IP address blocks: 154.197.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100899 (0x18a23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 3 14:16:42 2025 GMT
Not After : Oct 12 14:16:42 2025 GMT
Subject: CN=686690ce-7b74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a0:c0:9b:4c:0f:b4:f8:82:f8:6a:de:79:ef:
8e:ff:cf:4b:67:29:86:74:69:d8:8f:1a:ca:8f:f7:
a1:08:73:86:a1:92:43:a1:9c:3a:03:ee:d9:3d:a5:
79:a8:83:9a:4a:4d:fa:de:a5:7d:a2:77:57:1f:74:
05:f5:96:c6:05:3b:9e:2b:be:dc:6a:04:18:0d:3c:
2d:13:c6:18:e8:11:53:0f:d6:76:00:ae:57:71:46:
e0:c2:8d:a2:00:32:27:44:25:e6:d4:33:0d:e4:9f:
1c:bc:55:01:a3:e7:99:91:db:50:19:2f:aa:c7:e9:
97:30:61:ec:76:79:61:02:ec:da:9c:10:e1:c6:6d:
25:8c:f3:92:da:b7:d6:a3:11:56:1e:e3:dd:e0:21:
ab:87:18:86:75:b6:62:46:2d:96:ef:9c:c7:5d:06:
81:14:66:ad:5b:03:64:8b:9c:06:66:be:61:9a:39:
e7:93:71:be:61:60:eb:53:38:9a:ee:26:cf:a2:59:
ae:1e:a0:fa:a1:4c:c2:b9:36:bb:96:53:7a:bb:79:
b0:50:21:59:0a:5f:54:1e:cb:c3:1e:62:c1:df:f0:
e1:2d:97:8f:61:f1:8b:b5:87:fb:2f:07:34:13:bc:
6a:2b:c5:85:8a:50:17:15:48:64:c6:0b:1b:1c:be:
e6:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:1A:E4:18:32:17:92:0D:26:BF:17:B9:22:6B:07:72:A7:14:D0:EA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A188BFE581811F09D2297CBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.45.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:c5:fc:71:4c:df:e0:86:e9:56:a4:b8:92:b3:ad:ea:f9:5c:
ca:15:82:43:08:04:92:ac:36:b0:8d:29:34:22:5e:17:c6:d3:
ec:0d:70:78:56:8e:42:6a:1d:e6:1f:c7:fa:2a:cf:1d:73:60:
8e:d0:5a:f8:c4:ce:0f:0b:44:59:af:fa:a3:fb:1f:66:fc:cd:
92:ab:a0:39:26:45:4d:f1:6f:13:42:61:6f:f2:30:9e:78:87:
2c:c2:0f:58:f0:c6:0b:f1:c3:de:a1:51:55:6e:e0:7a:66:2d:
7a:3d:ed:1e:91:fd:ca:d6:a9:6e:32:bc:44:b8:75:6b:ef:30:
d6:93:39:1e:07:02:66:f3:96:dc:b1:c3:64:f1:98:16:d0:c1:
cb:95:55:49:b3:23:c0:60:83:76:8e:61:8f:b2:23:67:31:5b:
b0:ff:72:8a:3d:3c:24:32:5a:e6:7c:2d:ce:df:f0:ce:fb:e0:
2b:52:7e:b6:80:ab:3b:33:b7:58:80:9a:d6:3d:54:73:18:8b:
20:b1:59:bb:d9:30:16:1c:de:8c:79:76:05:af:e6:31:e6:83:
17:1e:4e:ec:f4:20:95:f7:6d:84:89:d5:7d:1b:05:02:42:da:
55:54:6f:de:6c:2a:86:9c:aa:b6:d7:44:0d:83:21:42:ba:50:
93:37:4d:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:10:27 2025 by rpki-client