Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CF47860241411F086F5B2D5DAE4EC9C.roa
File: 6CF47860241411F086F5B2D5DAE4EC9C.roa (raw, json)
Hash identifier: ea8l8OX/igLFKtujsyxh96NqN/AxFvMCrWwVDI7R/Rc=
Subject key identifier: 2F:9D:31:D6:BC:A4:1A:9E:FD:1E:D7:0A:8C:C4:4F:55:5F:C7:DB:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017B58
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CF47860241411F086F5B2D5DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 09:37:40 +0000
ROA not before: Mon 28 Apr 2025 09:37:35 +0000
ROA not after: Fri 30 May 2025 09:37:35 +0000
asID: 55933
IP address blocks: 154.201.64.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97112 (0x17b58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 09:37:35 2025 GMT
Not After : May 30 09:37:35 2025 GMT
Subject: CN=680f4c64-3b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0b:65:2d:92:7b:ef:49:c3:ea:a0:0c:c8:01:
e0:a9:8f:11:b9:c3:32:96:c3:87:b7:3d:4f:7a:02:
32:70:35:06:80:46:09:56:c3:f2:91:d7:97:fd:5e:
ac:27:26:94:4c:4d:a7:ba:dd:d2:7b:bd:fc:de:79:
85:07:47:52:da:69:0a:ad:ee:b0:51:e4:02:4d:5a:
49:59:cc:c0:2b:9b:83:24:8e:22:66:f2:3a:94:a6:
b8:b6:12:82:8d:28:5e:eb:ce:b6:c6:bd:96:ec:3a:
db:01:f5:01:67:eb:f9:60:c3:05:00:29:e4:97:d0:
c2:da:17:84:99:75:48:6d:d6:5b:1e:80:58:5b:d4:
39:45:8f:1c:68:50:67:36:05:95:1f:ca:b6:7a:80:
1d:0b:7a:3b:49:6a:20:2e:34:10:3b:86:94:69:a7:
4a:fe:6c:46:68:86:a5:dc:ab:4d:13:7a:af:58:f5:
87:b9:84:f2:9b:9b:e2:c7:83:7c:3d:82:fb:70:b2:
a1:ae:ba:3b:39:22:c3:5f:e3:f7:cc:af:59:c1:a1:
71:a3:03:30:ce:a7:9b:47:cb:22:7c:65:92:04:4e:
cf:c1:75:ab:9e:e7:cb:b7:60:98:a1:74:d7:93:e7:
2b:7e:4f:fe:ff:05:77:23:96:10:3d:e8:1e:9c:de:
19:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:9D:31:D6:BC:A4:1A:9E:FD:1E:D7:0A:8C:C4:4F:55:5F:C7:DB:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6CF47860241411F086F5B2D5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.64.0/19
Signature Algorithm: sha256WithRSAEncryption
8a:b5:d0:9a:5c:34:74:05:72:ec:7e:83:3b:9e:57:da:10:2d:
d6:d4:e9:5d:7d:fe:90:80:60:1e:3e:cf:3f:96:63:d0:e9:14:
12:2f:4b:cd:19:6a:f4:57:63:51:88:1d:25:f6:69:9c:5b:f3:
2c:82:5c:06:d9:97:b3:6b:eb:99:8a:93:cc:41:90:08:56:b3:
8f:53:5a:7c:95:4e:83:a1:4a:ad:22:65:1b:b7:73:cc:3c:81:
14:3e:37:66:86:2f:09:55:28:e6:23:4e:49:94:8d:37:b7:78:
ac:27:f7:e6:5a:61:a3:d8:09:03:5f:23:6e:70:e6:f2:46:05:
17:8b:58:aa:08:11:6e:90:17:eb:3d:c0:e3:47:3a:54:00:50:
6c:b7:59:73:de:f6:e0:cb:a8:ef:06:9f:50:0b:02:64:ae:1d:
0b:07:b2:12:ad:4c:67:ff:86:46:0c:0e:5a:63:87:19:8b:44:
4c:08:a7:87:09:d0:2d:af:5c:37:1d:3b:50:de:ab:e3:98:a7:
58:a5:08:d0:ab:d4:64:17:33:c9:87:5a:e6:08:19:35:d8:ef:
ce:0b:4f:74:49:b4:cb:47:fa:ba:c6:79:4f:71:37:c1:d8:41:
8a:81:72:fb:22:a3:43:1f:6c:4a:70:3d:a6:d1:e8:3d:e9:2c:
d0:f4:e4:33
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXtYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDI4MDkzNzM1WhcNMjUwNTMwMDkzNzM1WjAYMRYw
FAYDVQQDEw02ODBmNGM2NC0zYjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArQtlLZJ770nD6qAMyAHgqY8RucMylsOHtz1PegIycDUGgEYJVsPykdeX
/V6sJyaUTE2nut3Se7383nmFB0dS2mkKre6wUeQCTVpJWczAK5uDJI4iZvI6lKa4
thKCjShe6862xr2W7DrbAfUBZ+v5YMMFACnkl9DC2heEmXVIbdZbHoBYW9Q5RY8c
aFBnNgWVH8q2eoAdC3o7SWogLjQQO4aUaadK/mxGaIal3KtNE3qvWPWHuYTym5vi
x4N8PYL7cLKhrro7OSLDX+P3zK9ZwaFxowMwzqebR8sifGWSBE7PwXWrnufLt2CY
oXTXk+crfk/+/wV3I5YQPegenN4Z3QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFC+d
Mda8pBqe/R7XCozET1Vfx9s0MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82Q0Y0Nzg2MDI0MTQxMUYwODZGNUIyRDVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmslAMA0GCSqGSIb3DQEB
CwUAA4IBAQCKtdCaXDR0BXLsfoM7nlfaEC3W1Oldff6QgGAePs8/lmPQ6RQSL0vN
GWr0V2NRiB0l9mmcW/MsglwG2Zeza+uZipPMQZAIVrOPU1p8lU6DoUqtImUbt3PM
PIEUPjdmhi8JVSjmI05JlI03t3isJ/fmWmGj2AkDXyNucObyRgUXi1iqCBFukBfr
PcDjRzpUAFBst1lz3vbgy6jvBp9QCwJkrh0LB7ISrUxn/4ZGDA5aY4cZi0RMCKeH
CdAtr1w3HTtQ3qvjmKdYpQjQq9RkFzPJh1rmCBk12O/OC090SbTLR/q6xnlPcTfB
2EGKgXL7IqNDH2xKcD2m0eg96SzQ9OQz
-----END CERTIFICATE-----
Generated at Sat May 10 09:53:13 2025 by rpki-client