Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85B1AE56504F11F0B353DBA6DAE4EC9C.roa
File: 85B1AE56504F11F0B353DBA6DAE4EC9C.roa (raw, json)
Hash identifier: ZTIFcJF1suo16gOe+zwCX4maj3lWz+jmFS9ifpdb0p8=
Subject key identifier: EA:E1:6C:63:1E:60:FC:7C:6D:06:C4:6E:86:EA:CF:EB:66:FF:53:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01882D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85B1AE56504F11F0B353DBA6DAE4EC9C.roa
Signing time: Mon 23 Jun 2025 16:31:32 +0000
ROA not before: Mon 23 Jun 2025 16:31:28 +0000
ROA not after: Tue 05 Aug 2025 16:31:28 +0000
asID: 21859
IP address blocks: 154.83.71.0/24 maxlen: 24
154.83.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 11:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100397 (0x1882d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 16:31:28 2025 GMT
Not After : Aug 5 16:31:28 2025 GMT
Subject: CN=68598164-82b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0a:33:d9:5f:01:02:eb:b0:13:b8:de:2d:a6:
3d:9e:54:ad:40:a3:75:ea:e9:5b:7f:e2:29:60:ea:
51:76:08:c7:3f:b7:19:4b:2d:5b:00:af:81:fc:3c:
fd:e1:2b:41:87:cb:15:44:aa:ac:c8:4b:b2:fc:93:
e4:77:9a:66:6c:e1:cb:e6:f1:31:a9:61:40:1d:b8:
03:1a:3e:35:c1:b1:08:8a:c7:5f:33:5f:de:d4:93:
34:07:5a:7d:c3:e7:78:2f:07:8c:00:8f:a3:b8:9f:
2c:18:81:bb:2f:18:b9:61:4f:05:a0:96:a5:f6:ce:
60:01:f0:08:03:39:44:cd:61:46:72:b4:62:14:61:
ae:ae:90:8e:d6:99:17:a4:be:3c:06:d1:d6:8e:d1:
71:8b:fe:e1:11:67:e0:f3:4a:dc:94:f4:14:9b:d8:
af:8d:57:d4:c5:c1:21:82:a0:6a:e1:50:f0:8e:8d:
6a:17:99:17:92:68:2b:f9:9a:2d:a1:ed:4e:0a:48:
6b:a5:24:e0:a8:4a:ef:f3:16:bb:c8:c5:62:9b:64:
6d:08:46:a8:99:77:92:ba:8e:43:3b:9e:0f:f3:13:
20:5f:c7:7e:a5:32:0e:fe:d8:8b:53:d3:7a:53:d8:
d3:f3:c7:63:da:f6:bb:19:44:65:ea:71:42:49:3d:
23:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:E1:6C:63:1E:60:FC:7C:6D:06:C4:6E:86:EA:CF:EB:66:FF:53:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85B1AE56504F11F0B353DBA6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.71.0/24
154.83.78.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:3b:93:c8:7a:75:bd:08:af:04:2c:f2:e7:8c:57:71:c4:fe:
59:b8:dc:0d:6a:e3:82:e8:48:c9:06:6d:16:3a:47:b3:ac:28:
92:2e:7b:7f:f6:84:41:34:c7:ce:d4:d4:7a:bc:a4:68:a4:a8:
d3:f3:18:2c:67:02:92:83:d8:32:58:7f:aa:a2:24:b3:ba:50:
51:07:7a:dc:b4:b4:1e:a4:2b:55:29:e3:72:eb:85:f6:79:b6:
64:e2:f6:12:fa:0e:73:bb:c6:64:1c:1b:25:1b:8e:97:81:17:
24:9b:4a:1c:b1:28:f3:03:62:68:6c:4b:1e:bd:c4:2a:2d:99:
0b:9d:02:fa:90:19:f9:ba:13:c4:f0:cc:e0:95:65:ed:57:e6:
bd:e3:cd:9e:03:cb:08:bc:67:0c:19:3a:bd:33:4e:d3:87:a8:
fd:9d:66:b2:a5:c7:e2:ff:31:dd:5b:fe:7d:69:9e:a2:be:d3:
61:e0:5d:cc:fd:c6:48:9f:12:db:bc:50:a7:1a:f7:2f:31:c8:
c1:3d:af:5b:02:db:e0:3f:75:04:29:2b:ad:61:5b:de:34:d3:
25:53:64:2c:85:df:64:73:88:40:84:b2:85:ef:70:23:67:6a:
07:8e:04:a0:57:53:fe:88:23:85:29:ae:ad:f7:33:f7:0a:15:
ed:74:8d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 15:17:40 2025 by rpki-client