Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F51D85E7E6611F0A96C63D0DAE4EC9C.roa
File: 5F51D85E7E6611F0A96C63D0DAE4EC9C.roa (raw, json)
Hash identifier: SO5adAY0a5dszZenteUptrHsnJaW5oGE9H5aveWQqUw=
Subject key identifier: 2F:6A:D7:97:A9:62:17:79:03:92:AD:D7:F5:46:5A:BC:29:23:B2:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0192D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F51D85E7E6611F0A96C63D0DAE4EC9C.roa
Signing time: Thu 21 Aug 2025 08:11:00 +0000
ROA not before: Thu 21 Aug 2025 08:10:55 +0000
ROA not after: Tue 09 Sep 2025 08:10:55 +0000
asID: 138915
IP address blocks: 154.95.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103128 (0x192d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 21 08:10:55 2025 GMT
Not After : Sep 9 08:10:55 2025 GMT
Subject: CN=68a6d494-b089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:93:a2:0d:73:b0:ed:05:85:90:43:fe:bd:e1:
58:09:34:df:8d:ef:2c:ba:61:38:81:06:00:22:eb:
8f:35:c7:98:fc:79:40:2f:6f:ba:1f:66:64:89:ef:
6b:e1:62:d9:44:72:44:c2:94:8a:58:db:98:e9:f7:
5d:94:66:e7:1f:2f:0e:30:01:53:f4:5e:24:36:df:
f6:c5:eb:b1:87:85:6d:a3:e0:65:95:6e:35:90:f9:
10:80:58:77:44:67:16:39:c5:cf:d3:56:8b:01:44:
95:bb:e7:e7:bf:11:47:d6:45:78:6c:8d:b2:cb:31:
5b:65:5e:8c:b7:77:68:ad:5d:ab:be:57:17:d6:3a:
cb:01:2c:24:b0:e9:29:13:f9:6a:ee:4f:72:66:f1:
79:a0:a8:1a:2c:f3:da:bd:93:68:ed:ae:37:30:ac:
ae:95:9c:21:4a:86:a1:c6:d2:a2:e4:24:4a:d0:64:
ac:7c:f2:6c:8c:ac:54:16:85:2a:9d:20:76:9d:0b:
18:f3:ce:9c:98:7e:c5:76:01:74:e0:fe:87:0d:96:
73:0d:cf:80:4e:88:fd:7d:bc:3f:28:de:92:99:06:
27:9f:58:8c:82:ed:63:37:36:f3:a1:ef:d7:c0:2a:
91:a5:a1:c7:34:32:be:40:88:85:84:ac:86:2e:4b:
57:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:6A:D7:97:A9:62:17:79:03:92:AD:D7:F5:46:5A:BC:29:23:B2:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F51D85E7E6611F0A96C63D0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.112.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:f1:64:7b:fa:63:dc:00:98:56:5e:fe:de:fc:e3:a5:ed:37:
a4:3d:b8:c3:59:c7:c5:dc:81:06:6b:7d:8c:8e:45:b3:91:8e:
56:ae:74:dc:c5:0e:17:af:ff:bf:b5:97:d1:1e:3f:c6:e7:a7:
98:03:3b:e3:5b:a7:a6:60:13:53:4c:30:fe:fb:1e:a7:2d:f5:
db:82:4c:b0:94:2c:20:ca:d8:a2:02:e6:c0:8a:8b:2b:6b:43:
1f:e3:f7:52:d4:9c:af:cf:b9:b5:3b:d4:d1:7a:6a:83:5b:b5:
e4:7c:7e:13:82:4a:61:db:c8:bf:c8:a7:92:fd:49:e1:91:ab:
23:b3:8c:eb:b7:16:83:f0:5e:79:ff:62:9b:fe:e7:1e:3d:e1:
1d:f2:fb:c5:51:0a:71:69:22:74:dd:48:5c:a2:ed:7d:89:5a:
5d:43:0d:e7:41:1e:84:38:5f:f0:c8:67:da:df:39:86:fc:dc:
58:6e:0f:a6:ac:16:f4:87:bb:77:43:a3:c1:97:4c:d2:08:a3:
ff:19:e5:ec:a5:2e:ac:08:0a:fa:1a:a8:80:40:29:c6:11:2a:
92:04:06:fd:7f:50:59:d1:56:63:39:58:e9:7f:07:aa:84:d9:
48:fa:97:ff:95:09:e3:52:65:d0:8a:b7:d8:ae:9e:d2:ff:f8:
74:0f:e6:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:21:06 2025 by rpki-client