Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1359156752F11F0B932D8A5DAE4EC9C.roa
File: A1359156752F11F0B932D8A5DAE4EC9C.roa (raw, json)
Hash identifier: TPQ6kC//FV32KOTnv5AQvwuGG/1iYFKgzyEozIjiFv4=
Subject key identifier: 6C:04:70:82:A8:A3:FA:52:A3:2C:81:E3:20:D1:EB:60:CE:3A:0A:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019127
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1359156752F11F0B932D8A5DAE4EC9C.roa
Signing time: Sat 09 Aug 2025 14:46:28 +0000
ROA not before: Sat 09 Aug 2025 14:46:23 +0000
ROA not after: Sat 27 Sep 2025 14:46:23 +0000
asID: 137899
IP address blocks: 154.219.96.0/19 maxlen: 24
154.222.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102695 (0x19127)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 9 14:46:23 2025 GMT
Not After : Sep 27 14:46:23 2025 GMT
Subject: CN=68975f44-294a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0a:0a:07:f8:a9:6f:9d:03:c3:c3:42:b5:44:
46:1e:82:9b:b4:cc:e9:79:36:dc:70:e6:4c:1b:67:
c3:53:59:8f:34:27:96:f0:9d:a7:bc:12:9e:18:bb:
08:5a:79:0f:43:d7:82:df:ae:b5:16:d3:65:37:cc:
9f:9b:82:89:bd:4c:63:b8:21:96:70:59:6f:fa:37:
eb:f4:52:58:be:e3:6f:55:92:af:5b:7f:a0:50:53:
f7:8f:98:ee:8b:cd:25:0a:89:f8:dc:e7:92:15:b7:
66:f0:3a:be:bc:f0:f4:de:75:a9:e7:cb:90:1d:2e:
3e:25:a9:c4:6f:71:d2:91:0a:ef:d1:5b:b5:e3:d5:
b0:80:80:2f:72:20:62:f7:eb:3d:c3:94:0b:35:7f:
66:5d:00:5d:ac:5f:68:bb:79:0c:0f:c4:99:65:42:
06:15:50:2d:96:2b:33:37:41:c5:62:04:08:18:84:
51:02:81:08:97:29:20:c6:38:5b:6a:54:ff:ed:a8:
19:91:4f:f5:c2:18:15:78:87:98:3b:e2:32:2e:87:
ba:35:9c:39:61:2d:a0:7a:21:1e:db:e3:90:12:46:
1b:f3:01:4c:f4:b4:02:1c:4f:b1:f3:9c:3f:79:4c:
f1:2f:95:45:67:ae:8e:52:07:a7:90:45:0c:48:20:
dd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:04:70:82:A8:A3:FA:52:A3:2C:81:E3:20:D1:EB:60:CE:3A:0A:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1359156752F11F0B932D8A5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.96.0/19
154.222.16.0/20
Signature Algorithm: sha256WithRSAEncryption
64:e6:87:6c:84:36:1c:dc:55:16:99:96:a6:65:d1:0f:a4:7c:
14:ce:e9:17:cb:31:b9:69:36:1f:98:b7:a7:8a:2e:15:63:43:
bc:35:d2:51:a2:e9:84:3a:7a:36:84:2e:25:b0:91:03:96:8b:
43:6b:06:28:25:dd:71:b5:56:02:e4:a6:53:41:53:70:bb:43:
c9:0e:fd:61:00:1b:ea:15:19:22:38:69:96:9f:15:88:df:20:
20:1d:86:b2:ef:7b:1c:9c:7f:b8:07:ba:c5:e1:90:a9:b5:e1:
90:5e:89:a3:e5:ca:36:90:f8:63:1f:41:e7:9e:ab:45:15:2a:
07:5d:3d:d1:26:e6:7d:91:a8:cf:6a:18:26:25:8f:73:c0:a5:
9a:59:6f:b9:b4:59:6d:1c:6d:fe:5f:c5:0a:8a:6d:1a:58:35:
26:c5:27:ab:16:6c:d6:6d:7e:bb:05:02:3e:1a:b1:67:11:2e:
ed:35:55:2e:40:cb:c7:c3:c1:67:1c:77:62:53:e6:a3:81:19:
89:53:c5:e8:00:25:d8:72:6c:76:43:9e:cf:b9:7e:d4:14:dc:
5b:5f:c4:e2:89:ca:1a:38:fe:ed:81:af:d6:be:a5:28:98:5b:
c3:ab:a4:5a:0f:a5:d5:30:42:9e:39:a2:74:9c:cd:2b:f8:12:
3b:9f:21:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:18:40 2025 by rpki-client