Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67BEFE6649CA11F0AA841DB7DAE4EC9C.roa
File: 67BEFE6649CA11F0AA841DB7DAE4EC9C.roa (raw, json)
Hash identifier: r7nByoaJ2AaPoIxgGyjWGfx/NmFi8bR2eZfiNw70fGA=
Subject key identifier: A8:9C:8E:77:9F:C3:3E:C7:D8:71:98:C3:A3:5B:50:82:66:59:0F:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0186A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67BEFE6649CA11F0AA841DB7DAE4EC9C.roa
Signing time: Sun 15 Jun 2025 09:23:32 +0000
ROA not before: Sun 15 Jun 2025 09:23:26 +0000
ROA not after: Tue 07 Jul 2026 09:23:26 +0000
asID: 984
IP address blocks: 154.83.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 11:44:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100004 (0x186a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 15 09:23:26 2025 GMT
Not After : Jul 7 09:23:26 2026 GMT
Subject: CN=684e9114-606f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:36:fe:02:21:61:eb:aa:64:e8:38:bd:39:45:
95:ee:2b:ae:77:fb:8a:c7:2f:89:b0:1a:1a:d2:95:
65:f4:14:ff:d9:3e:7d:07:ff:80:ef:58:25:cf:90:
6c:6f:a8:88:74:d0:03:bb:49:a0:f8:82:08:44:59:
15:aa:cb:cd:2e:3f:eb:82:35:36:cd:47:2b:cf:8d:
21:4a:90:de:30:f9:9e:d0:56:92:83:66:30:33:41:
3e:c3:1d:b0:c0:f0:47:48:97:39:a3:15:8c:a3:2e:
10:2e:9e:36:cc:2d:fb:8f:29:bc:c2:f9:59:3e:8a:
fb:2c:ff:b2:88:e1:dc:6f:9f:ee:2e:4d:fe:79:67:
0a:74:eb:4a:f2:67:78:2f:7b:3f:61:5c:f0:3f:f1:
f0:5c:71:ea:10:65:da:f0:c3:c6:7c:a3:19:37:d8:
d7:d4:af:68:22:af:f5:6c:4f:eb:30:e9:f7:d3:e5:
16:94:1c:82:74:98:1f:c2:cb:f4:c4:f8:ef:be:c9:
53:33:cf:f9:5e:8c:27:39:01:38:cd:15:94:fe:06:
9b:74:c9:ea:e0:33:8b:bc:bf:65:d4:53:b4:e0:a4:
47:77:a1:6b:9d:d8:c5:46:94:d8:d2:63:a1:42:77:
e0:70:59:b2:04:52:7f:d8:5b:92:c3:7d:46:20:d4:
cc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:9C:8E:77:9F:C3:3E:C7:D8:71:98:C3:A3:5B:50:82:66:59:0F:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67BEFE6649CA11F0AA841DB7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.132.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:a3:73:ff:2e:2e:7d:5a:a3:f5:42:ff:d6:a4:01:2f:fc:46:
03:c9:b8:dd:be:11:2e:33:f8:23:f5:82:2d:4c:0d:5f:bb:22:
5d:60:5f:4f:0e:63:7c:0e:a9:1d:d2:f3:7e:f5:0e:c9:ac:d4:
4e:9e:07:6f:6f:46:f3:44:56:6c:c3:c9:29:fa:84:0c:1d:82:
6e:46:e2:95:33:9f:89:08:eb:da:9b:9e:51:ad:a6:0b:e2:86:
6b:2b:f4:2d:2f:de:15:cf:67:66:4c:04:f8:f5:bf:81:66:e0:
df:93:31:91:fa:84:bb:80:30:2b:4c:f1:d3:23:64:35:38:ef:
19:80:0f:b4:0e:62:75:3a:36:52:e2:8c:e5:74:ab:89:ca:30:
ca:23:53:1e:40:8e:e3:83:13:f8:c1:4c:87:b3:51:22:d9:8a:
55:03:d3:91:ae:d6:e8:6c:ab:40:35:85:ac:87:7e:97:f8:29:
ba:40:ce:94:7c:c1:53:09:06:c2:f4:68:72:51:e0:2f:24:87:
80:d7:97:cc:af:6f:4b:7d:8c:d3:5a:ec:31:49:42:2d:ed:95:
fb:61:01:24:bc:a7:ba:ce:65:1a:1b:8a:d8:65:d5:a8:06:56:
0b:9d:38:8c:8a:de:48:b6:f5:ee:b6:a4:f0:a8:35:6b:fc:48:
68:ac:89:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 17:12:45 2025 by rpki-client