Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6532FD6076D311F0971BFCD0DAE4EC9C.roa
File: 6532FD6076D311F0971BFCD0DAE4EC9C.roa (raw, json)
Hash identifier: i0qrqUYuK4N/hvBGXU3Yvvn7xLUhkDraZVy/Jr5RZHA=
Subject key identifier: 37:11:42:3C:44:B8:40:2D:8C:AC:30:A0:D7:C1:AF:70:DE:B7:5A:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019167
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6532FD6076D311F0971BFCD0DAE4EC9C.roa
Signing time: Mon 11 Aug 2025 16:51:16 +0000
ROA not before: Mon 11 Aug 2025 16:51:10 +0000
ROA not after: Wed 17 Sep 2025 16:51:10 +0000
asID: 54801
IP address blocks: 154.81.61.0/24 maxlen: 24
154.81.140.0/24 maxlen: 24
154.81.161.0/24 maxlen: 24
154.81.164.0/24 maxlen: 24
154.81.178.0/24 maxlen: 24
154.83.128.0/24 maxlen: 24
154.83.135.0/24 maxlen: 24
154.83.137.0/24 maxlen: 24
154.83.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102759 (0x19167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 11 16:51:10 2025 GMT
Not After : Sep 17 16:51:10 2025 GMT
Subject: CN=689a1f84-23d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b7:e9:7a:51:86:c3:22:73:f8:e9:dc:cb:3b:
ff:bd:2c:a2:d6:5b:c1:cb:eb:33:8d:55:50:79:d9:
8e:02:76:6f:63:e6:d0:75:b1:23:d6:95:f6:d9:85:
51:62:7f:4c:fe:a8:59:5c:b8:18:61:6d:10:2d:0f:
f0:84:6d:a8:c8:a4:58:5a:19:01:3d:77:4f:cc:e4:
33:78:cf:f2:e7:49:94:ea:fb:2e:58:5e:6c:c2:f3:
27:bf:e4:b2:71:13:66:57:a3:c3:2f:a4:04:1f:63:
77:30:30:b0:ce:6a:8a:73:ae:da:2b:e2:fc:db:ee:
ec:c1:a3:50:e3:30:2a:a4:04:c5:2f:3f:cf:6a:c9:
e2:ad:2a:a2:a7:78:22:cc:5c:04:8b:8b:e3:af:8f:
fd:b0:72:0f:94:46:05:e0:26:a7:1a:e4:ad:ef:93:
5d:40:7b:37:e4:b3:59:0c:8d:4e:b9:3f:cc:52:57:
b7:7b:d5:49:e1:85:93:bb:bc:2c:e9:b3:4e:4c:7a:
39:de:04:27:c3:38:94:cd:ec:d8:ae:eb:2a:26:e2:
67:ec:d7:fb:97:1e:cd:03:c1:0f:2a:d1:38:f7:4f:
16:46:0d:b0:44:ea:46:0c:45:de:f5:14:7c:ad:ee:
d6:71:cf:75:9b:24:ab:fd:09:2e:51:e5:a1:29:32:
c2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:11:42:3C:44:B8:40:2D:8C:AC:30:A0:D7:C1:AF:70:DE:B7:5A:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6532FD6076D311F0971BFCD0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.61.0/24
154.81.140.0/24
154.81.161.0/24
154.81.164.0/24
154.81.178.0/24
154.83.128.0/24
154.83.135.0/24
154.83.137.0/24
154.83.141.0/24
Signature Algorithm: sha256WithRSAEncryption
56:c5:db:c2:48:92:ad:22:8b:7d:05:13:83:31:ba:9b:d9:c5:
da:53:cb:8e:2d:ec:03:1a:54:2e:bd:ac:7e:8f:b3:30:1d:fa:
8a:eb:ca:94:aa:79:1c:c0:e5:48:cd:96:47:d4:76:dc:88:5b:
86:f4:f5:ff:e9:00:99:24:2c:7f:cc:95:89:18:83:72:cc:51:
c9:79:8a:01:8f:27:6e:09:af:aa:0a:ea:03:07:08:8c:75:9c:
f7:c5:79:5a:ce:5f:cc:45:ae:1f:e7:b5:42:9d:00:02:37:e5:
9f:66:e4:69:77:9c:be:d1:e6:9c:e6:0e:f8:ad:43:11:b0:93:
59:27:61:7e:ba:70:56:3b:8e:42:ed:99:85:78:8c:e2:24:84:
8e:bd:50:fc:8c:67:7e:59:f6:cf:77:98:2e:ea:a1:54:62:9d:
20:0a:1a:8e:6d:96:8b:aa:f8:e4:ce:f1:5b:cc:ec:10:3e:4c:
f7:05:48:4e:c5:6e:76:42:93:0a:fd:72:41:b1:3a:d1:d9:b7:
ed:92:bf:d5:d0:01:06:de:b2:56:26:0e:aa:cc:06:f0:bf:56:
4c:02:41:ce:a2:bb:e0:69:f7:4e:17:d6:0e:a6:17:85:ca:14:
fa:cf:ec:4b:db:91:cf:a7:c6:45:82:58:48:9d:e1:1a:ce:2a:
e3:92:75:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:42:48 2025 by rpki-client