Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80540CEE514C11F082840C8FDAE4EC9C.roa
File: 80540CEE514C11F082840C8FDAE4EC9C.roa (raw, json)
Hash identifier: aSJdZ55u58XC5cg4mO7byiV0P3qo8jt8EdluOXfC2dg=
Subject key identifier: 60:18:EE:70:0E:6E:7A:A6:B2:66:A5:09:99:7E:FB:5B:17:13:29:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0188DC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80540CEE514C11F082840C8FDAE4EC9C.roa
Signing time: Tue 24 Jun 2025 22:42:26 +0000
ROA not before: Tue 24 Jun 2025 22:42:22 +0000
ROA not after: Wed 03 Sep 2025 22:42:22 +0000
asID: 55320
IP address blocks: 154.93.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Jul 2025 10:08:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100572 (0x188dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 22:42:22 2025 GMT
Not After : Sep 3 22:42:22 2025 GMT
Subject: CN=685b29d2-2fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ed:3e:eb:8d:10:37:3c:fc:eb:63:33:c1:36:
32:94:9b:b5:ac:dd:67:7e:40:df:2a:f0:ed:2b:b4:
86:7f:bf:e4:97:66:b8:2f:27:24:b2:e1:1e:ba:62:
23:8f:c1:2a:4c:27:df:9a:2e:27:d6:18:c3:f7:87:
fa:93:74:be:6e:0e:d1:48:91:b3:ec:d5:a2:67:89:
01:56:5e:98:b7:d0:c3:e3:8e:cf:79:8f:c3:19:a8:
42:2c:ab:f3:c9:ac:92:28:3c:05:d9:b1:2b:ea:0c:
69:8b:e0:83:93:86:4d:a8:8d:23:05:e5:2f:54:c5:
4d:2d:3a:83:25:0f:37:cc:8d:34:01:6c:83:93:ba:
b3:ee:7c:c0:f8:4d:35:d4:a3:e5:6a:c7:63:6a:35:
6c:4c:a4:a6:ee:7b:4c:6e:10:69:31:78:9f:2e:90:
d1:3e:19:fa:27:82:74:81:7c:c9:99:a9:4a:5b:e5:
d0:76:fa:70:21:38:7c:2d:a5:76:2a:8b:09:ab:2e:
69:36:9d:12:64:7e:3a:12:9f:a2:c0:f1:21:a4:7c:
c1:80:88:a1:38:a2:39:8c:fc:8c:b2:26:08:bd:35:
de:6a:a8:72:df:68:7b:d0:59:2e:4a:1c:c8:0f:7e:
40:1f:79:42:dd:3d:d9:6c:9b:6c:14:ae:59:fd:0c:
a9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:18:EE:70:0E:6E:7A:A6:B2:66:A5:09:99:7E:FB:5B:17:13:29:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/80540CEE514C11F082840C8FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.98.0/24
Signature Algorithm: sha256WithRSAEncryption
26:c3:4b:59:a3:d4:e7:89:a4:6c:fe:cb:d9:7f:7c:8d:92:84:
0f:60:5a:08:e7:ac:ca:a1:42:64:2d:04:b2:09:aa:57:16:53:
b9:db:d7:2c:50:d9:d6:4e:14:f0:4f:e8:61:43:1a:c0:92:45:
43:ff:5d:32:6a:29:fc:a8:e4:f6:c1:ac:de:b8:56:64:42:b3:
b0:ab:b2:d1:28:96:a2:55:db:b6:7e:8c:04:51:95:68:31:8d:
a5:4f:0f:85:0d:08:2e:10:c8:2f:c0:9a:24:20:19:78:22:39:
f8:d8:d9:43:ca:66:c4:ff:c4:87:64:25:15:fb:fb:77:54:69:
36:8f:92:b4:be:32:8e:30:54:40:e9:d3:27:2a:a4:61:d2:28:
e3:b6:06:74:54:70:aa:59:9b:3c:4f:e5:16:65:e7:d5:55:94:
5a:4a:88:4e:20:5f:cb:b0:56:15:6b:fd:22:17:42:8a:20:d7:
fb:2c:5d:2e:2d:49:38:89:74:47:9e:00:d7:71:04:69:75:e7:
bc:b5:19:e8:82:77:95:c3:0e:c6:54:15:0b:9f:6d:2e:14:e0:
fd:7a:5d:bc:56:a6:a4:67:0c:3b:d6:e6:35:a4:f3:bd:99:a6:
c7:a7:fe:d7:86:5d:a2:ed:f4:39:77:a0:fb:ec:b7:e8:a1:ea:
99:9a:4a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 22:49:37 2025 by rpki-client