Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6633D674514611F0BA5B85E9DAE4EC9C.roa
File: 6633D674514611F0BA5B85E9DAE4EC9C.roa (raw, json)
Hash identifier: jhm4gaMiMa2T9dzvPNTniscbuSL/pxubtZhn5FiR0Fc=
Subject key identifier: 5A:89:78:00:05:0B:6C:33:4F:67:8B:F2:92:CF:65:26:2F:00:0D:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0188CE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6633D674514611F0BA5B85E9DAE4EC9C.roa
Signing time: Tue 24 Jun 2025 21:58:46 +0000
ROA not before: Tue 24 Jun 2025 21:58:41 +0000
ROA not after: Wed 03 Sep 2025 21:58:41 +0000
asID: 63139
IP address blocks: 154.94.69.0/24 maxlen: 24
154.94.70.0/24 maxlen: 24
154.94.71.0/24 maxlen: 24
154.94.72.0/24 maxlen: 24
154.94.73.0/24 maxlen: 24
154.94.74.0/24 maxlen: 24
154.94.86.0/24 maxlen: 24
154.94.87.0/24 maxlen: 24
154.94.88.0/24 maxlen: 24
154.94.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 06:27:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100558 (0x188ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 21:58:41 2025 GMT
Not After : Sep 3 21:58:41 2025 GMT
Subject: CN=685b1f96-0b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a0:80:46:04:49:f6:6f:a5:a4:09:c6:64:3d:
8d:04:23:80:93:38:e7:ed:ad:bd:4a:e6:e8:66:3b:
e3:a9:03:6b:4d:7e:64:c7:2c:23:a6:ef:d2:28:5f:
8c:9d:9d:96:6b:d5:6e:18:d0:75:34:a2:02:6f:ce:
86:b2:19:38:84:7c:ff:6e:3d:9d:97:fd:fa:61:f7:
1d:f2:55:ee:3e:0d:6a:3a:56:54:c5:dc:b9:e3:72:
ea:bc:e0:5f:77:56:42:9e:68:d2:d9:b8:5c:14:c1:
59:51:ab:45:07:61:e8:ab:27:39:5d:df:1f:fc:54:
fa:e7:e5:e9:1e:ae:a4:fd:a2:38:53:e5:1e:cd:55:
f3:ae:3d:47:a7:cd:7d:ff:14:9b:cc:3e:ca:9d:e3:
dd:de:56:9e:5b:26:c8:9d:77:4f:c2:f3:ba:5f:1c:
62:bc:33:0d:4c:1b:49:2b:89:e3:f2:1c:e5:2c:4b:
90:4a:93:8c:77:3f:4f:f2:8f:55:fe:fd:cb:8c:77:
10:3f:aa:97:72:65:37:84:97:44:29:28:24:c8:7a:
99:98:d0:79:c4:ef:d0:16:a8:ee:74:a8:04:46:6f:
a0:26:b3:d9:54:62:e6:b9:7c:4b:73:1c:54:ff:92:
e5:d7:a8:eb:0c:ad:7b:77:e1:7e:1c:28:20:6e:a9:
c7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:89:78:00:05:0B:6C:33:4F:67:8B:F2:92:CF:65:26:2F:00:0D:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6633D674514611F0BA5B85E9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.69.0-154.94.74.255
154.94.86.0-154.94.89.255
Signature Algorithm: sha256WithRSAEncryption
88:f6:d9:e9:c2:45:19:75:25:ad:d6:af:54:a2:d3:79:12:4c:
fb:4d:41:23:66:53:2a:69:b2:43:25:f6:99:88:20:c5:bc:cb:
3d:c2:c3:f6:74:f1:de:83:9c:83:4c:c5:88:c0:b4:1a:98:06:
87:ad:eb:47:84:1c:32:5d:68:fb:80:80:47:a4:63:d5:c3:89:
8d:1a:ab:7b:37:67:2d:96:3b:9b:e7:3f:3d:f4:49:53:11:51:
78:01:ad:c9:30:67:d0:42:c9:00:3f:1e:89:da:1f:c5:e6:c1:
04:4d:72:4f:aa:95:a6:b1:76:65:84:d2:c2:c3:b5:f0:69:f8:
c6:92:e7:2f:85:e5:90:f0:40:55:cf:09:72:51:11:b4:7c:8e:
57:d9:3d:0f:a3:e4:b3:f3:ee:e1:32:53:f9:91:0d:1a:65:1d:
7b:f9:4f:c7:85:54:fb:b0:62:42:60:3d:2d:fd:48:07:a7:9a:
8d:66:cf:08:3d:47:5b:3b:3e:77:72:60:d0:75:c9:d9:20:f1:
cf:2e:3b:79:13:ac:36:8f:db:97:7e:75:8c:58:c7:6c:47:8e:
d3:67:c4:7b:ce:4f:ae:61:c7:70:f4:82:81:11:91:19:a5:1d:
2e:4b:33:10:ae:51:19:7d:4a:3c:3c:d5:87:6d:e4:d7:5a:95:
35:61:2b:88
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgIDAYjOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjI0MjE1ODQxWhcNMjUwOTAzMjE1ODQxWjAYMRYw
FAYDVQQDEw02ODViMWY5Ni0wYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7KCARgRJ9m+lpAnGZD2NBCOAkzjn7a29SuboZjvjqQNrTX5kxywjpu/S
KF+MnZ2Wa9VuGNB1NKICb86Gshk4hHz/bj2dl/36Yfcd8lXuPg1qOlZUxdy543Lq
vOBfd1ZCnmjS2bhcFMFZUatFB2Hoqyc5Xd8f/FT65+XpHq6k/aI4U+UezVXzrj1H
p819/xSbzD7KnePd3laeWybInXdPwvO6XxxivDMNTBtJK4nj8hzlLEuQSpOMdz9P
8o9V/v3LjHcQP6qXcmU3hJdEKSgkyHqZmNB5xO/QFqjudKgERm+gJrPZVGLmuXxL
cxxU/5Ll16jrDK17d+F+HCggbqnHXQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFFqJ
eAAFC2wzT2eL8pLPZSYvAA3OMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NjMzRDY3NDUxNDYxMUYwQkE1Qjg1RTlEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcMAwDBACaXkUDBACaXkowDAME
AZpeVgMEAZpeWDANBgkqhkiG9w0BAQsFAAOCAQEAiPbZ6cJFGXUlrdavVKLTeRJM
+01BI2ZTKmmyQyX2mYggxbzLPcLD9nTx3oOcg0zFiMC0GpgGh63rR4QcMl1o+4CA
R6Rj1cOJjRqrezdnLZY7m+c/PfRJUxFReAGtyTBn0ELJAD8eidofxebBBE1yT6qV
prF2ZYTSwsO18Gn4xpLnL4XlkPBAVc8JclERtHyOV9k9D6Pks/Pu4TJT+ZENGmUd
e/lPx4VU+7BiQmA9Lf1IB6eajWbPCD1HWzs+d3Jg0HXJ2SDxzy47eROsNo/bl351
jFjHbEeO02fEe85PrmHHcPSCgRGRGaUdLkszEK5RGX1KPDzVh23k11qVNWEriA==
-----END CERTIFICATE-----
Generated at Tue Jul 1 13:07:40 2025 by rpki-client