Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/761534B4299D11F09FA0CCE3DAE4EC9C.roa
File: 761534B4299D11F09FA0CCE3DAE4EC9C.roa (raw, json)
Hash identifier: GO0l8rQ3ZtLNm7b9aqVL65CFZpKQUb1FYulguDWAQWw=
Subject key identifier: D8:5D:68:82:D4:3C:73:85:0A:F1:FE:9A:50:83:10:67:7E:69:7E:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F03
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/761534B4299D11F09FA0CCE3DAE4EC9C.roa
Signing time: Mon 05 May 2025 10:41:12 +0000
ROA not before: Mon 05 May 2025 10:41:07 +0000
ROA not after: Tue 05 May 2026 10:41:07 +0000
asID: 984
IP address blocks: 154.83.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98051 (0x17f03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 5 10:41:07 2025 GMT
Not After : May 5 10:41:07 2026 GMT
Subject: CN=681895c8-bbaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6e:80:60:48:9c:c8:dc:26:d3:fc:dd:9a:8b:
16:07:6a:1f:29:07:dc:68:bb:85:28:d2:44:84:9f:
e2:d4:41:3b:a2:44:2e:b7:d1:ce:d5:dd:dc:a8:81:
de:10:ba:2f:64:19:04:31:96:a7:d1:75:52:a0:61:
2b:45:a5:d4:fd:f4:b1:af:67:56:6e:04:78:ca:f4:
b1:57:b1:c8:12:50:15:51:a7:9f:a5:54:75:23:0a:
7b:6e:41:23:e6:24:b3:c8:dd:5f:0e:08:c2:ae:15:
2c:56:92:e6:82:71:9e:b7:a8:b2:13:7a:c5:cf:e6:
b6:3e:f5:d0:52:eb:70:74:f5:ed:a2:ba:9c:21:2b:
b9:2a:0b:f6:31:f2:37:6c:bf:8b:8a:e9:36:ee:f1:
3a:e4:18:db:f4:b9:2d:86:6e:af:ca:c9:a6:c5:b6:
27:9e:36:dc:5c:b5:0c:42:af:4b:e8:30:de:28:4c:
5f:0a:c3:43:63:fe:70:c6:79:1d:97:76:31:2f:75:
d4:20:15:4f:7f:93:6a:61:4f:b8:fc:7d:e7:12:05:
91:97:da:e4:81:1e:4b:e0:0a:50:2e:ee:23:36:09:
d2:5a:54:ac:41:ea:e0:76:42:38:d2:0d:f5:93:10:
8c:8d:c4:e7:7a:1f:04:a5:a8:39:8c:7e:6d:2e:92:
5c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:5D:68:82:D4:3C:73:85:0A:F1:FE:9A:50:83:10:67:7E:69:7E:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/761534B4299D11F09FA0CCE3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.28.0/24
Signature Algorithm: sha256WithRSAEncryption
55:5e:c9:c6:41:04:ec:23:f5:df:79:d5:d8:82:e0:52:50:3a:
c9:4d:cf:d8:5e:89:26:88:4f:bc:9a:bc:8e:44:2f:45:3b:2a:
62:3c:72:5a:f3:7f:d0:a9:2f:32:47:a2:c8:86:c1:a1:6f:86:
5f:7a:76:a2:a2:93:78:61:91:22:e8:b5:d7:a4:87:9e:9c:97:
cd:9d:fb:7b:b0:78:97:e8:f7:4f:53:f3:45:1c:fa:c0:d8:41:
90:ce:b4:ab:63:28:f4:f6:2c:83:b1:35:68:25:5f:52:15:97:
14:15:60:ba:0e:7d:a4:56:89:b9:17:eb:1d:1e:ca:b7:bb:94:
90:e8:e7:68:01:dc:d7:c7:c5:da:2e:1f:85:e7:e7:88:90:9f:
8a:3a:24:8a:7b:0b:04:8b:75:2b:df:bd:4c:08:95:e8:24:03:
d5:58:a4:78:0a:f2:06:2f:88:4b:bb:62:aa:9d:8c:50:36:83:
6b:9b:de:4f:20:3c:35:d3:e7:fd:df:e3:5a:14:08:5a:9c:3e:
9b:9d:4d:17:2c:05:48:ee:73:04:71:46:09:24:40:90:3d:d9:
2b:42:85:39:0c:76:e3:81:20:9a:3b:f0:09:76:95:2f:cc:96:
12:9e:8b:06:19:9d:c2:5a:e2:8e:00:46:e9:7b:64:4f:a4:7f:
3b:2b:d9:ac
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAX8DMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTA1MTA0MTA3WhcNMjYwNTA1MTA0MTA3WjAYMRYw
FAYDVQQDEw02ODE4OTVjOC1iYmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvW6AYEicyNwm0/zdmosWB2ofKQfcaLuFKNJEhJ/i1EE7okQut9HO1d3c
qIHeELovZBkEMZan0XVSoGErRaXU/fSxr2dWbgR4yvSxV7HIElAVUaefpVR1Iwp7
bkEj5iSzyN1fDgjCrhUsVpLmgnGet6iyE3rFz+a2PvXQUutwdPXtorqcISu5Kgv2
MfI3bL+Liuk27vE65Bjb9Lkthm6vysmmxbYnnjbcXLUMQq9L6DDeKExfCsNDY/5w
xnkdl3YxL3XUIBVPf5NqYU+4/H3nEgWRl9rkgR5L4ApQLu4jNgnSWlSsQergdkI4
0g31kxCMjcTneh8Epag5jH5tLpJctwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNhd
aILUPHOFCvH+mlCDEGd+aX4SMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83NjE1MzRCNDI5OUQxMUYwOUZBMENDRTNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlMcMA0GCSqGSIb3DQEB
CwUAA4IBAQBVXsnGQQTsI/XfedXYguBSUDrJTc/YXokmiE+8mryORC9FOypiPHJa
83/QqS8yR6LIhsGhb4ZfenaiopN4YZEi6LXXpIeenJfNnft7sHiX6PdPU/NFHPrA
2EGQzrSrYyj09iyDsTVoJV9SFZcUFWC6Dn2kVom5F+sdHsq3u5SQ6OdoAdzXx8Xa
Lh+F5+eIkJ+KOiSKewsEi3Ur371MCJXoJAPVWKR4CvIGL4hLu2KqnYxQNoNrm95P
IDw10+f93+NaFAhanD6bnU0XLAVI7nMEcUYJJECQPdkrQoU5DHbjgSCaO/AJdpUv
zJYSnosGGZ3CWuKOAEbpe2RPpH87K9ms
-----END CERTIFICATE-----
Generated at Sun May 11 04:14:44 2025 by rpki-client