Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65E990EA243D11F0A211E2E4DAE4EC9C.roa
File: 65E990EA243D11F0A211E2E4DAE4EC9C.roa (raw, json)
Hash identifier: 64kCkRv/afYsrYvJhPobwtcbIh7JiCbEotkx/wdB1X4=
Subject key identifier: 9C:7E:3B:BC:43:54:E7:98:37:2A:56:71:44:2A:D9:6E:64:2B:5F:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C09
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65E990EA243D11F0A211E2E4DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 14:30:57 +0000
ROA not before: Mon 28 Apr 2025 14:30:53 +0000
ROA not after: Fri 27 Mar 2026 14:30:53 +0000
asID: 984
IP address blocks: 154.90.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97289 (0x17c09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 14:30:53 2025 GMT
Not After : Mar 27 14:30:53 2026 GMT
Subject: CN=680f9121-63d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c0:ab:d0:8a:1a:5e:f3:cc:61:bf:43:a4:27:
32:a0:de:f6:06:4e:b6:f0:ca:e1:a6:24:39:26:17:
5a:f1:c6:3c:f5:c0:af:d0:09:31:c5:72:0b:58:55:
36:e8:5e:77:90:e7:5a:ec:b0:b3:d2:ca:ee:6c:30:
71:36:aa:04:a4:9e:87:1c:cc:6f:0d:8b:a8:a8:6a:
d8:b1:63:3c:7f:b4:43:ea:ef:b3:25:a4:19:ef:eb:
13:cb:2d:eb:6d:cb:24:03:eb:71:41:b7:27:d5:7a:
8a:b2:3d:d9:34:ea:6b:02:b4:f8:a4:bb:02:b4:82:
d1:52:19:3a:82:79:01:9f:6b:42:af:de:03:c4:26:
4d:20:fa:4f:74:7f:39:39:4a:2c:3a:1a:94:b2:18:
3a:fc:5b:e9:c0:3b:d5:01:02:93:1f:3b:26:da:3a:
d7:a3:37:e8:c1:e5:53:a9:d5:9e:de:b1:0e:1d:33:
aa:36:17:fd:d2:32:1f:31:1f:4c:bb:db:77:7d:00:
95:e6:f6:7d:57:33:75:18:e3:ba:b3:0e:21:55:79:
6e:c2:1e:03:18:8f:8c:bc:2a:9d:72:f5:cd:5f:cf:
1e:35:ec:f8:66:cd:3f:d8:7d:83:ba:f5:17:4b:e1:
4c:97:a0:a2:ff:27:38:ab:d0:85:5b:d8:36:9c:81:
aa:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:7E:3B:BC:43:54:E7:98:37:2A:56:71:44:2A:D9:6E:64:2B:5F:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65E990EA243D11F0A211E2E4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.24.0/24
Signature Algorithm: sha256WithRSAEncryption
83:dc:d0:2d:53:26:1e:6a:47:91:a6:d6:8f:07:da:b1:7f:ea:
99:aa:61:d3:9b:01:46:f5:aa:63:c4:3e:81:ac:2a:94:49:2f:
55:7e:11:68:2e:32:06:07:f9:a6:8a:2d:44:ed:87:79:61:79:
d7:34:3e:7f:94:50:03:0e:3f:7b:59:79:9e:b7:c4:74:07:97:
3f:26:1b:e2:73:a5:f6:25:ca:5f:65:6f:28:d2:dc:20:97:dc:
c0:39:05:d2:3d:c6:29:ff:26:ca:09:21:7d:ff:3a:8c:c7:2c:
a3:3c:63:cd:dc:88:fe:ec:d9:0a:7f:df:00:6e:3b:51:04:43:
ae:9c:7c:12:0e:ba:c7:d9:7a:57:24:25:53:07:d7:4c:75:b1:
64:1d:aa:49:cf:0a:aa:d9:eb:1a:de:41:5e:45:c4:c6:38:34:
de:d2:f4:92:83:e7:4d:f5:0b:a3:ae:3d:c7:73:6e:d2:1e:d0:
45:33:41:7f:32:cc:72:c9:ce:90:c9:9a:9d:3b:a9:3a:41:f7:
17:5c:9c:ae:59:83:8e:56:f4:4e:24:fb:31:0d:f5:e0:14:74:
ab:21:0d:e2:28:47:83:ce:ba:12:d0:c3:79:9b:25:41:54:07:
21:ae:86:cd:0d:c8:c7:fd:48:ec:63:0d:96:31:27:dd:1a:3d:
e9:30:7d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:56:26 2025 by rpki-client