Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6E89ACAC2BCD11F0974C928DDAE4EC9C.roa
File: 6E89ACAC2BCD11F0974C928DDAE4EC9C.roa (raw, json)
Hash identifier: 74Ui5c9w+7WrtKi0E/2lUZ6bZjYYvgsmgWeVxFNpUbM=
Subject key identifier: E1:23:70:73:C4:28:01:58:B2:9B:D1:62:86:A4:48:8D:AA:3E:63:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F72
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6E89ACAC2BCD11F0974C928DDAE4EC9C.roa
Signing time: Thu 08 May 2025 05:29:38 +0000
ROA not before: Thu 08 May 2025 05:29:33 +0000
ROA not after: Wed 28 May 2025 05:29:33 +0000
asID: 200373
IP address blocks: 154.82.150.0/24 maxlen: 24
154.82.168.0/22 maxlen: 24
154.86.112.0/24 maxlen: 24
154.86.113.0/24 maxlen: 24
154.86.114.0/24 maxlen: 24
154.91.171.0/24 maxlen: 24
154.94.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98162 (0x17f72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 05:29:33 2025 GMT
Not After : May 28 05:29:33 2025 GMT
Subject: CN=681c4141-b99c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:b1:3c:2f:3e:f7:15:0f:cc:7a:d0:77:68:f7:
0d:f9:18:45:82:a9:e6:49:cb:c3:9d:3b:b0:de:56:
5c:47:f2:3b:84:3e:a5:cd:06:4e:d9:fc:2b:c4:40:
6c:9b:ef:ec:e8:32:b1:2e:8e:18:6e:e1:47:cb:c2:
ed:42:a9:a7:b5:dc:f2:ce:7c:45:ae:06:67:42:8e:
04:ce:5b:40:e7:32:21:45:80:f5:53:6d:f1:2e:33:
b1:eb:bf:da:7a:5b:21:ba:8f:95:61:d1:de:cc:b2:
eb:a2:f2:fb:a6:32:2b:9f:e5:b1:e7:49:92:3c:a6:
54:13:55:60:b3:07:40:6f:a7:27:11:56:1a:52:22:
f5:a9:e8:c8:c3:3a:2f:7d:ca:ab:a0:58:58:c4:ca:
59:70:e5:0d:92:cc:da:aa:ce:22:3b:68:2e:67:36:
1d:24:a8:33:dd:54:80:d6:46:1e:6f:93:18:51:b9:
ba:0f:5c:15:8b:e7:08:ed:56:93:17:25:a0:85:75:
83:60:cc:61:3c:07:8b:9b:28:9c:ce:8c:20:99:85:
9d:ae:4d:a3:76:fa:45:b3:5d:b2:91:c0:9a:0d:e0:
88:ec:7e:5c:73:40:bf:9b:df:05:32:74:e5:bb:76:
b0:df:e1:59:e1:98:6a:ee:ea:77:10:d5:c7:e9:9e:
a3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:23:70:73:C4:28:01:58:B2:9B:D1:62:86:A4:48:8D:AA:3E:63:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6E89ACAC2BCD11F0974C928DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.150.0/24
154.82.168.0/22
154.86.112.0-154.86.114.255
154.91.171.0/24
154.94.12.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:41:64:8d:1f:e0:f8:c1:22:16:3e:5f:93:f2:2d:09:c0:5b:
f4:eb:8b:8c:d7:18:48:71:8f:e7:2e:ae:a6:d9:f3:48:bc:ba:
a2:93:6e:9a:03:6e:a2:26:11:d3:1b:94:dc:25:00:65:e2:ee:
62:d2:09:f4:6d:dc:5f:88:48:11:8a:92:c0:10:30:f7:a6:56:
b9:32:f7:9b:55:35:30:3e:4c:ac:46:11:db:8c:74:73:24:0e:
00:1a:c2:2c:ca:58:0b:2c:38:68:4f:63:cc:5d:3a:75:0e:3d:
c8:5b:b7:81:5e:9a:b7:02:38:1c:cb:a7:7e:8e:20:2d:3f:f6:
43:80:a7:91:82:ee:31:36:0a:4f:c6:1f:5c:89:08:1e:d0:fb:
5f:2d:32:34:15:a9:ea:fe:e0:13:b5:45:fb:0b:a6:14:a3:44:
cd:67:be:82:e4:a1:63:57:98:ff:d1:f2:d4:55:aa:f8:da:63:
d0:c8:c0:7b:fe:85:6a:bd:b4:e7:6b:39:44:e1:ea:3b:fb:6b:
c3:78:d0:17:8d:2b:ba:a5:4e:2e:ed:41:17:af:14:b7:2a:2e:
35:39:e0:1a:68:33:55:32:90:79:47:04:d6:e0:27:43:da:e9:
b2:49:c7:3c:c8:b9:30:82:ac:94:66:06:94:a0:54:16:6e:57:
ae:67:29:7d
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgIDAX9yMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTA4MDUyOTMzWhcNMjUwNTI4MDUyOTMzWjAYMRYw
FAYDVQQDEw02ODFjNDE0MS1iOTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA77E8Lz73FQ/MetB3aPcN+RhFgqnmScvDnTuw3lZcR/I7hD6lzQZO2fwr
xEBsm+/s6DKxLo4YbuFHy8LtQqmntdzyznxFrgZnQo4EzltA5zIhRYD1U23xLjOx
67/aelshuo+VYdHezLLrovL7pjIrn+Wx50mSPKZUE1VgswdAb6cnEVYaUiL1qejI
wzovfcqroFhYxMpZcOUNkszaqs4iO2guZzYdJKgz3VSA1kYeb5MYUbm6D1wVi+cI
7VaTFyWghXWDYMxhPAeLmyiczowgmYWdrk2jdvpFs12ykcCaDeCI7H5cc0C/m98F
MnTlu3aw3+FZ4Zhq7up3ENXH6Z6jGwIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFOEj
cHPEKAFYspvRYoakSI2qPmPyMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82RTg5QUNBQzJCQ0QxMUYwOTc0QzkyOEREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQAmlKWAwQCmlKoMAwDBASa
VnADBACaVnIDBACaW6sDBAKaXgwwDQYJKoZIhvcNAQELBQADggEBAMlBZI0f4PjB
IhY+X5PyLQnAW/Tri4zXGEhxj+curqbZ80i8uqKTbpoDbqImEdMblNwlAGXi7mLS
CfRt3F+ISBGKksAQMPemVrky95tVNTA+TKxGEduMdHMkDgAawizKWAssOGhPY8xd
OnUOPchbt4FemrcCOBzLp36OIC0/9kOAp5GC7jE2Ck/GH1yJCB7Q+18tMjQVqer+
4BO1RfsLphSjRM1nvoLkoWNXmP/R8tRVqvjaY9DIwHv+hWq9tOdrOUTh6jv7a8N4
0BeNK7qlTi7tQRevFLcqLjU54BpoM1UykHlHBNbgJ0Pa6bJJxzzIuTCCrJRmBpSg
VBZuV65nKX0=
-----END CERTIFICATE-----
Generated at Thu May 15 23:44:46 2025 by rpki-client