Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65F825704B6F11F08CACA2E6DAE4EC9C.roa
File: 65F825704B6F11F08CACA2E6DAE4EC9C.roa (raw, json)
Hash identifier: c7S+4i5NjcBU4kRbIf5HWkAA+aVjOEeFupoS2JfxdyU=
Subject key identifier: BE:1A:A9:C6:7A:22:91:DF:86:08:E6:3A:8C:4C:0C:87:1D:1B:37:BC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018713
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65F825704B6F11F08CACA2E6DAE4EC9C.roa
Signing time: Tue 17 Jun 2025 11:37:08 +0000
ROA not before: Tue 17 Jun 2025 11:36:53 +0000
ROA not after: Sat 27 Dec 2025 11:36:53 +0000
asID: 395886
IP address blocks: 154.84.32.0/21 maxlen: 24
154.84.40.0/21 maxlen: 24
154.84.48.0/21 maxlen: 24
154.84.56.0/21 maxlen: 24
154.89.144.0/20 maxlen: 24
154.89.160.0/19 maxlen: 24
154.89.192.0/20 maxlen: 24
154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 00:06:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100115 (0x18713)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 17 11:36:53 2025 GMT
Not After : Dec 27 11:36:53 2025 GMT
Subject: CN=68515364-268f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:06:40:f7:15:46:f3:0b:6a:6c:47:a8:53:d4:
37:dd:b0:77:c7:eb:d1:a6:10:4a:3c:2b:97:38:d0:
2c:f8:54:e7:ff:da:24:f3:f2:fa:ce:73:39:9d:b2:
1e:7c:98:4d:47:49:74:62:3d:99:8f:23:26:6a:16:
e9:3f:e9:e0:15:f4:06:56:f7:04:80:94:20:20:33:
5d:a3:a8:83:cc:93:93:c2:cd:27:16:57:3f:c7:1a:
9e:1a:9b:54:98:8b:99:a1:67:9f:3c:ae:4b:6a:5e:
b0:95:b3:a3:a4:30:2d:80:c1:75:b9:40:a0:9a:c6:
7d:56:60:2f:23:19:e4:77:62:d6:91:93:53:5c:02:
08:df:37:83:65:e8:2e:73:21:f2:96:72:79:36:2d:
93:fe:24:e1:dd:ad:f7:51:5e:e3:02:e0:1d:9c:3f:
02:ea:b3:15:fd:5b:62:da:bd:5e:b0:5d:4c:b9:75:
54:c2:2a:98:eb:13:68:65:1e:41:0c:2e:33:85:76:
c2:c2:e6:9d:8f:60:08:87:f5:6e:e4:f8:26:86:07:
5e:6a:6a:bd:42:31:da:1e:64:f5:ec:9d:e4:bd:cf:
fe:86:5c:eb:03:d4:ae:55:4e:82:97:1a:4d:ff:eb:
ad:51:41:0e:20:f8:4c:6e:4c:ad:14:ec:c1:10:bf:
4e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:1A:A9:C6:7A:22:91:DF:86:08:E6:3A:8C:4C:0C:87:1D:1B:37:BC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65F825704B6F11F08CACA2E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.32.0/19
154.89.144.0-154.89.207.255
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
76:36:58:48:fa:0a:32:cc:29:ce:83:12:7c:5d:9c:f0:26:25:
b0:79:51:9a:f8:98:c6:2d:96:13:63:95:85:c0:60:77:b8:23:
25:fc:c2:6d:69:23:58:74:19:15:c4:9b:27:f4:8b:ea:2a:ee:
b6:61:2d:a9:c4:c5:ca:aa:7d:e1:af:2a:fa:c2:83:81:d6:9c:
c0:49:04:95:76:eb:96:34:9c:cb:e1:64:10:57:e3:d5:5d:60:
53:d5:f8:a7:2f:9c:b3:a5:00:cc:c8:f7:ad:9d:91:4d:b1:2f:
93:87:61:80:f3:41:b8:3b:1f:e8:0d:ed:c1:a7:f5:89:4d:6c:
fb:96:4a:90:a1:b6:5b:37:cf:d3:45:bd:03:90:d7:d1:47:ed:
7c:98:ab:58:97:22:f2:9d:d6:2a:98:94:8c:42:ea:75:02:88:
33:2b:7e:ea:e9:04:3e:89:d1:f5:33:4b:12:55:54:12:25:c5:
2b:c8:12:0f:0b:65:dd:78:0a:63:8c:2c:52:11:46:d8:23:95:
e7:b5:18:1c:a9:c4:28:26:df:96:f2:8c:f8:0e:bf:ee:61:96:
c6:a7:ea:a3:3d:ee:2b:ba:38:bc:7f:9f:bc:eb:53:2d:bf:28:
a8:30:69:67:59:1e:92:66:64:39:69:17:b6:83:42:7d:c7:08:
3c:2e:be:5b
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgIDAYcTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjE3MTEzNjUzWhcNMjUxMjI3MTEzNjUzWjAYMRYw
FAYDVQQDEw02ODUxNTM2NC0yNjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxwZA9xVG8wtqbEeoU9Q33bB3x+vRphBKPCuXONAs+FTn/9ok8/L6znM5
nbIefJhNR0l0Yj2ZjyMmahbpP+ngFfQGVvcEgJQgIDNdo6iDzJOTws0nFlc/xxqe
GptUmIuZoWefPK5Lal6wlbOjpDAtgMF1uUCgmsZ9VmAvIxnkd2LWkZNTXAII3zeD
ZegucyHylnJ5Ni2T/iTh3a33UV7jAuAdnD8C6rMV/Vti2r1esF1MuXVUwiqY6xNo
ZR5BDC4zhXbCwuadj2AIh/Vu5Pgmhgdeamq9QjHaHmT17J3kvc/+hlzrA9SuVU6C
lxpN/+utUUEOIPhMbkytFOzBEL9O3QIDAQABo4ICuTCCArUwHQYDVR0OBBYEFL4a
qcZ6IpHfhgjmOoxMDIcdGze8MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NUY4MjU3MDRCNkYxMUYwOENBQ0EyRTZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQFmlQgMAwDBASaWZADBASa
WcADBACaXxgwDQYJKoZIhvcNAQELBQADggEBAHY2WEj6CjLMKc6DEnxdnPAmJbB5
UZr4mMYtlhNjlYXAYHe4IyX8wm1pI1h0GRXEmyf0i+oq7rZhLanExcqqfeGvKvrC
g4HWnMBJBJV265Y0nMvhZBBX49VdYFPV+KcvnLOlAMzI962dkU2xL5OHYYDzQbg7
H+gN7cGn9YlNbPuWSpChtls3z9NFvQOQ19FH7XyYq1iXIvKd1iqYlIxC6nUCiDMr
furpBD6J0fUzSxJVVBIlxSvIEg8LZd14CmOMLFIRRtgjlee1GBypxCgm35byjPgO
v+5hlsan6qM97iu6OLx/n7zrUy2/KKgwaWdZHpJmZDlpF7aDQn3HCDwuvls=
-----END CERTIFICATE-----
Generated at Mon Jun 30 05:16:06 2025 by rpki-client