Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75CF8546581D11F09CC866EBDAE4EC9C.roa
File: 75CF8546581D11F09CC866EBDAE4EC9C.roa (raw, json)
Hash identifier: T9mv7mUF0vjnwA3IcYy9w07PjW1TN6pu3GZU5s60zcY=
Subject key identifier: 83:D0:09:DD:4E:CD:27:F1:68:CA:4C:68:F2:36:B4:88:49:4F:37:DF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018A2B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75CF8546581D11F09CC866EBDAE4EC9C.roa
Signing time: Thu 03 Jul 2025 14:53:21 +0000
ROA not before: Thu 03 Jul 2025 14:53:15 +0000
ROA not after: Sun 17 Aug 2025 14:53:15 +0000
asID: 6079
IP address blocks: 154.210.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100907 (0x18a2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 3 14:53:15 2025 GMT
Not After : Aug 17 14:53:15 2025 GMT
Subject: CN=68669960-5f30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ba:0c:86:e3:19:70:db:af:16:6a:1b:52:7e:
94:d9:18:e9:e9:e6:01:81:e5:c1:93:60:40:ae:a8:
49:82:50:c4:52:13:4d:05:87:7b:75:0d:8d:12:cc:
bb:55:ff:46:91:5e:90:f5:84:b5:a0:f0:bd:47:8d:
07:f3:f4:7c:70:58:7b:e6:10:68:50:49:8b:2d:38:
62:c2:f7:dd:87:e9:a3:d0:fe:f7:e4:77:ce:ff:39:
82:e1:01:85:98:c4:34:c0:b9:25:c0:31:64:bc:94:
68:a4:01:b6:38:9d:8f:a0:9d:0e:f5:68:92:92:c7:
bb:3b:f7:92:29:4b:e3:e3:16:e1:36:d3:c7:b7:a3:
da:bf:7e:61:07:5d:77:61:d1:6f:68:dd:3f:76:57:
e5:b0:50:e0:ef:bb:bf:e3:09:2e:8a:b7:41:74:f8:
67:18:2b:e9:0c:1b:3d:cc:ca:20:d2:22:e6:f9:a6:
be:3c:a7:ff:15:c3:0e:74:09:65:98:b1:be:a7:18:
e5:80:06:41:f6:e6:02:e2:ee:b3:6d:0a:84:3d:de:
ef:32:f5:ce:5a:2d:b8:d1:82:0d:1b:ad:cb:b5:0c:
98:9e:81:c0:a6:f0:c1:e0:cb:f6:bd:87:bf:f1:9e:
7f:e6:a0:07:98:77:82:d4:66:e2:01:3c:96:08:b3:
ab:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D0:09:DD:4E:CD:27:F1:68:CA:4C:68:F2:36:B4:88:49:4F:37:DF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75CF8546581D11F09CC866EBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.96.0/19
Signature Algorithm: sha256WithRSAEncryption
8b:4d:8e:02:2e:93:e6:1d:cc:c6:2e:9e:70:f1:d2:e1:75:f0:
67:16:bb:e9:0f:83:ed:ae:2d:b5:d3:ac:dc:bc:dc:2a:38:de:
52:04:40:a8:56:e6:06:7d:d6:dd:ca:b1:fa:61:31:7a:5d:14:
c1:05:b6:db:cb:34:4f:17:70:d8:f0:94:6b:26:8b:6a:42:80:
32:bf:5e:98:81:36:b0:e5:f9:20:ed:90:00:5f:b8:f5:97:f0:
14:0b:af:4d:0f:7f:74:5b:61:17:cc:50:62:b4:b2:d9:74:48:
04:79:41:be:ae:35:be:a1:cd:e5:a9:a9:ee:6b:fe:cf:87:0e:
22:da:1c:dd:9c:eb:8d:5d:9e:ab:e7:da:89:d7:95:2c:0b:18:
3b:f9:10:3f:8d:00:b9:e1:ac:c2:fa:6f:83:13:45:06:9b:6d:
e8:0c:a1:bd:e4:f4:24:f2:b9:8e:dc:2a:45:70:df:a6:ef:e5:
b4:38:3b:b4:8d:50:c7:68:1a:ec:4d:20:03:6c:a8:3b:37:65:
c1:48:cb:49:49:d9:d7:eb:53:df:ff:10:cc:fb:94:73:62:96:
95:8b:06:f3:c9:b4:68:1d:49:38:b9:93:68:64:8d:0d:b0:96:
9e:44:be:e9:e0:32:57:ef:ee:0f:52:de:ae:c1:c8:f2:e0:e3:
4c:7a:f1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:08:28 2025 by rpki-client