Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97510922519E11F0B0C0A3B5DAE4EC9C.roa
File: 97510922519E11F0B0C0A3B5DAE4EC9C.roa (raw, json)
Hash identifier: ZIsKfg0jXpDlEDJfRwsekolrSllcOosqYMn6rG8KSak=
Subject key identifier: 72:F9:2E:7D:FA:8C:A8:A5:DE:9C:AE:51:E0:66:00:82:62:AC:3E:47
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0188FD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97510922519E11F0B0C0A3B5DAE4EC9C.roa
Signing time: Wed 25 Jun 2025 08:30:04 +0000
ROA not before: Wed 25 Jun 2025 08:29:58 +0000
ROA not after: Thu 31 Jul 2025 08:29:58 +0000
asID: 5068
IP address blocks: 154.92.128.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 11:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100605 (0x188fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 25 08:29:58 2025 GMT
Not After : Jul 31 08:29:58 2025 GMT
Subject: CN=685bb38c-3738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:42:78:d7:28:81:0d:f4:96:ea:76:f7:72:8c:
6a:67:0b:01:c5:04:0b:37:7f:81:d7:3d:7f:ae:0f:
b3:de:07:b3:55:2b:a1:4d:9d:f0:c3:84:8b:d3:d8:
8e:bf:74:c3:64:95:31:59:a0:9d:3c:f4:94:79:d3:
47:b6:25:20:28:bc:38:91:41:a9:3c:03:d8:71:e1:
35:f7:93:e6:45:a9:5d:57:50:9b:51:6c:e6:75:de:
fd:51:81:51:48:8c:01:58:b7:30:8e:f5:6a:3d:9a:
cf:9a:11:fe:6a:10:cb:ca:31:ca:43:5b:5a:35:07:
b1:50:d8:74:78:82:ff:26:f5:39:25:31:d5:42:cd:
ce:af:4a:fc:a5:84:75:66:11:fa:77:a9:c8:77:2a:
2c:d2:66:9f:c7:28:ba:07:a7:0f:90:e2:47:ce:93:
9e:56:56:75:32:cf:a7:bf:40:03:2b:77:ac:09:9d:
ff:a8:c6:72:41:95:2a:39:86:c0:52:43:a4:a5:07:
8f:71:7a:c1:c9:8b:b5:66:46:f2:c1:0a:0c:e9:80:
ea:6f:74:04:b2:cc:73:4a:05:1a:5e:b0:f7:c6:f3:
e4:39:88:1c:a6:d7:06:38:21:d4:bb:4d:4c:e6:62:
a9:bc:67:c5:18:46:a1:c7:f4:1c:da:11:e7:6e:ea:
f8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:F9:2E:7D:FA:8C:A8:A5:DE:9C:AE:51:E0:66:00:82:62:AC:3E:47
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97510922519E11F0B0C0A3B5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.128.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:77:a0:fd:b8:75:9f:42:c6:7c:70:dd:39:a3:b4:d2:40:8f:
f5:36:6b:3e:37:d5:0f:4f:e5:c7:cd:37:4d:0e:a7:e5:88:3d:
45:03:8f:82:1a:68:a1:2a:a6:35:70:24:ba:54:d1:69:d1:b5:
4a:9c:f3:16:33:70:64:83:34:1c:fe:0c:e8:19:71:f5:d3:75:
dd:17:9f:88:79:04:b4:43:01:b7:f2:0b:ce:26:7d:dc:e4:73:
1c:70:46:46:70:42:35:06:37:be:5a:54:f6:59:16:3a:90:21:
35:5c:18:ca:42:5c:d6:7b:7a:40:9d:af:01:65:17:d2:dd:cf:
07:63:ea:fc:d8:64:f6:c1:b4:7e:bf:73:ef:be:4a:6c:37:55:
7d:50:f7:20:49:7c:4a:fa:74:de:66:9f:64:8a:47:3c:53:63:
8c:52:bd:85:3e:e1:63:b2:db:db:77:d8:ee:e1:a7:3c:99:fa:
01:b0:83:e3:2d:d1:f5:92:75:b5:7d:65:a8:f4:b3:60:c2:2c:
30:9e:f6:b9:bb:c1:12:a9:f6:f9:90:62:bf:b2:bf:40:c2:1d:
93:c0:fe:29:5e:11:7f:c6:61:08:99:be:71:70:11:43:4c:09:
4f:85:b0:d8:ef:a7:31:8e:86:6c:65:91:29:a8:f9:66:69:87:
d1:d0:b6:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 03:37:00 2025 by rpki-client