Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8017613A246111F0BE1AB3D2DAE4EC9C.roa
File: 8017613A246111F0BE1AB3D2DAE4EC9C.roa (raw, json)
Hash identifier: nGE0mpF5n9ytpE5oYg/+WKtY3z08QTd1XijuV/QIxgk=
Subject key identifier: 9B:B3:08:22:51:B3:A4:1B:A6:19:BB:9F:54:84:33:4A:B6:F9:D0:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C69
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8017613A246111F0BE1AB3D2DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 18:49:23 +0000
ROA not before: Mon 28 Apr 2025 18:49:19 +0000
ROA not after: Wed 04 Jun 2025 18:49:19 +0000
asID: 48031
IP address blocks: 154.215.13.0/24 maxlen: 24
154.216.1.0/24 maxlen: 24
154.218.1.0/24 maxlen: 24
154.218.16.0/24 maxlen: 24
154.218.17.0/24 maxlen: 24
154.218.18.0/24 maxlen: 24
154.218.19.0/24 maxlen: 24
154.222.220.0/24 maxlen: 24
154.222.221.0/24 maxlen: 24
154.222.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97385 (0x17c69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 18:49:19 2025 GMT
Not After : Jun 4 18:49:19 2025 GMT
Subject: CN=680fcdb3-2b90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ee:53:77:a6:c9:cd:9b:d7:2b:1e:1a:01:73:
7d:eb:0d:e8:a4:d8:2f:35:ce:03:fc:c6:cb:43:b2:
6b:0b:c3:0d:3e:e0:5c:0a:9a:ef:eb:b0:7d:02:fa:
5b:56:64:01:c6:7c:63:56:73:43:d7:7a:b5:e6:b2:
1c:e3:dd:1d:4d:b7:51:48:73:3b:66:78:92:9a:7c:
74:2e:f7:8c:4c:28:16:09:cd:c0:50:e6:d3:2e:79:
98:27:ab:40:46:eb:59:67:c1:cb:2f:b7:a6:8a:6b:
79:6a:3d:2b:94:cf:f2:87:ff:db:8e:63:7b:74:c2:
cd:e0:c7:61:4d:0c:03:30:87:0f:ed:e1:26:05:17:
7f:a1:46:af:29:3e:c7:56:f7:39:08:34:3f:53:da:
c2:f4:8f:ec:da:13:7f:8b:28:af:63:90:95:da:70:
28:dd:94:22:03:bb:5c:2a:03:3d:67:fc:07:60:d5:
bd:d4:ec:e5:b3:cd:1e:07:71:bc:41:ac:b5:cd:74:
54:08:97:69:68:ce:b7:ee:89:23:fe:94:64:aa:d7:
36:9f:27:df:e0:60:b3:cc:e5:d6:ce:4f:fc:11:1e:
3f:c3:65:27:9d:b9:93:90:60:88:a6:16:2d:f0:4b:
63:e0:b5:3a:dd:4a:63:69:05:84:97:37:6b:58:8a:
20:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B3:08:22:51:B3:A4:1B:A6:19:BB:9F:54:84:33:4A:B6:F9:D0:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8017613A246111F0BE1AB3D2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.13.0/24
154.216.1.0/24
154.218.1.0/24
154.218.16.0/22
154.222.220.0-154.222.222.255
Signature Algorithm: sha256WithRSAEncryption
51:a8:c1:4e:0d:88:cd:a4:17:e7:d3:09:dd:ec:e5:44:a1:de:
7d:1a:90:0f:0a:be:64:1e:f2:38:da:2a:b4:61:bb:98:62:01:
19:be:bd:c5:5b:75:cc:65:ca:87:29:75:54:bf:8f:3a:2b:75:
24:ce:cf:09:5c:d9:46:af:24:1e:34:d5:95:9e:80:08:c9:89:
c1:52:65:30:bc:79:dc:d7:e1:64:05:be:30:42:4b:d5:53:28:
5c:86:1e:bd:83:bb:67:62:4f:29:df:e5:21:ce:ba:0d:45:27:
00:d2:8c:03:95:fd:3d:11:e2:7a:6f:c1:7e:4c:e3:48:9c:6c:
b9:5b:db:72:f4:5b:54:a9:ae:19:b8:c3:b9:a6:6c:61:9a:e7:
f1:b8:94:5d:40:e0:da:9f:f8:a5:8d:b8:85:0b:15:d8:82:33:
1e:f0:35:65:e2:9d:ab:ae:b1:38:96:56:2c:34:16:df:11:08:
e6:19:94:3b:a3:23:e1:57:8b:24:61:6a:3b:f8:51:29:21:bf:
21:ee:86:52:cc:9b:4a:b5:ae:26:3e:be:d3:1a:1f:53:65:38:
6b:d3:e8:bf:9a:44:55:ee:f5:4b:8c:12:d8:f4:27:9d:22:12:
b6:cd:61:a1:b3:a6:e6:96:1f:60:b6:c4:23:14:e5:dd:03:52:
53:5a:56:4a
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgIDAXxpMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDI4MTg0OTE5WhcNMjUwNjA0MTg0OTE5WjAYMRYw
FAYDVQQDEw02ODBmY2RiMy0yYjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwu5Td6bJzZvXKx4aAXN96w3opNgvNc4D/MbLQ7JrC8MNPuBcCprv67B9
AvpbVmQBxnxjVnND13q15rIc490dTbdRSHM7ZniSmnx0LveMTCgWCc3AUObTLnmY
J6tARutZZ8HLL7emimt5aj0rlM/yh//bjmN7dMLN4MdhTQwDMIcP7eEmBRd/oUav
KT7HVvc5CDQ/U9rC9I/s2hN/iyivY5CV2nAo3ZQiA7tcKgM9Z/wHYNW91Ozls80e
B3G8Qay1zXRUCJdpaM637okj/pRkqtc2nyff4GCzzOXWzk/8ER4/w2UnnbmTkGCI
phYt8Etj4LU63UpjaQWElzdrWIog/wIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFJuz
CCJRs6Qbphm7n1SEM0q2+dC9MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84MDE3NjEzQTI0NjExMUYwQkUxQUIzRDJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQAmtcNAwQAmtgBAwQAmtoB
AwQCmtoQMAwDBAKa3twDBACa3t4wDQYJKoZIhvcNAQELBQADggEBAFGowU4NiM2k
F+fTCd3s5USh3n0akA8KvmQe8jjaKrRhu5hiARm+vcVbdcxlyocpdVS/jzordSTO
zwlc2UavJB401ZWegAjJicFSZTC8edzX4WQFvjBCS9VTKFyGHr2Du2diTynf5SHO
ug1FJwDSjAOV/T0R4npvwX5M40icbLlb23L0W1Sprhm4w7mmbGGa5/G4lF1A4Nqf
+KWNuIULFdiCMx7wNWXinauusTiWViw0Ft8RCOYZlDujI+FXiyRhajv4USkhvyHu
hlLMm0q1riY+vtMaH1NlOGvT6L+aRFXu9UuMEtj0J50iErbNYaGzpuaWH2C2xCMU
5d0DUlNaVko=
-----END CERTIFICATE-----
Generated at Sat May 10 07:34:32 2025 by rpki-client