Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/744A572E4B7E11F0AF288FC4DAE4EC9C.roa
File: 744A572E4B7E11F0AF288FC4DAE4EC9C.roa (raw, json)
Hash identifier: sF6HIaS8rGLU87vqOHSltbiTtjCy/W85gHKi+H2iynk=
Subject key identifier: 9B:68:52:62:47:9F:73:D4:53:53:84:C4:3D:C2:E6:7C:E0:06:EE:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018721
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/744A572E4B7E11F0AF288FC4DAE4EC9C.roa
Signing time: Tue 17 Jun 2025 13:24:54 +0000
ROA not before: Tue 17 Jun 2025 13:24:48 +0000
ROA not after: Mon 04 Aug 2025 13:24:48 +0000
asID: 54600
IP address blocks: 154.89.144.0/20 maxlen: 24
154.89.160.0/19 maxlen: 24
154.89.192.0/20 maxlen: 24
154.90.224.0/19 maxlen: 24
154.92.176.0/20 maxlen: 24
154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 00:06:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100129 (0x18721)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 17 13:24:48 2025 GMT
Not After : Aug 4 13:24:48 2025 GMT
Subject: CN=68516ca6-d96f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b3:07:3a:1f:90:ad:40:8f:21:36:4a:dd:9f:
bd:13:1e:91:58:9f:d6:0b:10:a9:7c:bf:11:59:ab:
b5:7d:32:a8:85:9c:e1:ed:7c:4c:5f:50:21:2a:52:
56:24:24:e6:5b:59:0c:34:b6:f1:0f:86:dd:2a:f1:
12:95:98:33:ec:2e:6e:8f:f2:0f:bd:82:db:f0:a6:
eb:d2:aa:3d:08:2d:8d:ed:6c:95:30:f8:88:ac:79:
07:a0:c1:13:94:1d:d9:8d:17:08:d0:83:13:cf:df:
f9:c6:56:74:1e:cc:d4:bc:f8:27:f0:c6:21:da:23:
bb:4f:c5:7d:eb:2b:d9:a3:c6:a0:78:97:4b:09:e5:
d8:50:5b:f0:50:8e:2b:42:35:2e:6d:44:96:d9:82:
03:d2:44:cf:a8:ce:0c:d0:31:25:67:a5:4f:55:e2:
44:73:0b:2f:df:99:2d:15:e8:f5:cb:66:5f:0a:cc:
e6:e2:e3:04:08:73:23:e2:00:bf:00:43:88:80:da:
34:94:93:d2:20:c0:57:f1:0f:d2:1e:37:f1:45:70:
ae:03:c3:4e:3b:5e:77:0a:bc:f3:e9:a7:04:c1:e4:
c4:2b:48:3d:85:41:be:9f:2d:90:a9:25:a5:21:30:
dd:84:a1:14:27:3d:49:29:ad:33:93:02:01:09:4a:
15:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:68:52:62:47:9F:73:D4:53:53:84:C4:3D:C2:E6:7C:E0:06:EE:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/744A572E4B7E11F0AF288FC4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.144.0-154.89.207.255
154.90.224.0/19
154.92.176.0/20
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:af:7b:64:99:d5:34:73:6d:f0:70:87:f2:29:11:fc:4b:f4:
49:06:17:32:15:fe:53:1b:84:fa:3c:6c:48:d4:8d:2e:fe:2e:
a1:f0:5e:1a:5f:a7:aa:d1:d8:2e:4b:7f:29:e0:08:75:5b:25:
d4:24:6a:3e:27:01:9b:56:0d:3f:82:dd:a6:9c:2c:83:58:ef:
be:b7:f1:a2:d2:0a:db:9c:0c:34:5a:e4:b1:25:ed:7b:c6:56:
40:7b:74:ca:99:4d:c2:51:4e:b9:1d:66:8b:05:46:b2:56:c6:
52:29:a3:c3:73:cf:7d:b8:ef:0c:51:88:c8:32:94:e1:4a:67:
71:20:9c:55:d2:96:fd:1d:49:b3:4d:05:ac:7c:d8:ea:45:4a:
e6:ac:ca:df:f5:8d:e0:58:ee:13:ca:54:ab:f6:98:b4:8c:75:
c8:92:34:5b:93:41:ca:b2:6b:38:51:a7:78:02:e4:8a:ee:13:
ac:05:63:1e:94:f2:0a:da:2e:d5:ae:43:f9:d3:d4:f9:e9:c9:
6d:8a:7d:69:19:01:f4:6d:9f:ba:aa:f4:76:91:7b:8f:bc:68:
5e:1e:88:ff:51:e2:28:80:5f:e8:c8:87:ef:cf:ac:6f:4a:40:
b4:44:7e:4b:17:b4:75:a7:36:4a:3b:9b:42:63:99:9b:65:6b:
8f:a9:cd:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 06:16:44 2025 by rpki-client