Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3D1A47E25CD11F0B72E8ADFDAE4EC9C.roa
File: A3D1A47E25CD11F0B72E8ADFDAE4EC9C.roa (raw, json)
Hash identifier: Va2U6fHZKb/fYfchrgPboyDNeGl/wnGpeIKsE0PiX2g=
Subject key identifier: 8F:24:9E:98:D8:4D:9B:26:B4:8D:3D:B4:12:2B:0E:4E:2D:B3:1B:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017D8B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3D1A47E25CD11F0B72E8ADFDAE4EC9C.roa
Signing time: Wed 30 Apr 2025 14:16:00 +0000
ROA not before: Wed 30 Apr 2025 14:15:55 +0000
ROA not after: Tue 28 Apr 2026 14:15:55 +0000
asID: 984
IP address blocks: 154.80.222.0/24 maxlen: 24
154.80.223.0/24 maxlen: 24
154.80.224.0/24 maxlen: 24
154.80.225.0/24 maxlen: 24
154.80.226.0/24 maxlen: 24
154.80.227.0/24 maxlen: 24
154.80.228.0/24 maxlen: 24
154.80.229.0/24 maxlen: 24
154.80.230.0/24 maxlen: 24
154.80.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97675 (0x17d8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 14:15:55 2025 GMT
Not After : Apr 28 14:15:55 2026 GMT
Subject: CN=681230a0-f3d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:46:69:83:8d:91:e6:92:96:50:b9:43:8d:91:
aa:0c:2f:4d:00:d7:88:c2:d9:e8:13:af:2d:85:87:
20:9c:c5:9a:15:19:bc:ab:54:19:96:51:4c:c6:90:
1d:6b:04:c5:ed:dd:38:f0:1b:18:3a:fa:f8:f0:77:
ee:62:38:51:05:c6:5b:81:12:81:18:66:e4:f2:a0:
59:9d:1a:9d:42:a9:53:11:10:68:a9:0c:79:9d:ed:
61:a8:51:b8:37:fe:89:36:9e:25:49:2a:b1:bc:1a:
0d:96:79:88:26:a7:87:2b:94:94:1d:94:88:26:b0:
7f:85:51:55:68:90:fe:d9:5d:86:fc:75:2d:96:12:
87:c2:8f:df:8c:de:ec:85:ce:6f:24:78:c2:ec:20:
6f:11:b4:ba:d9:a1:61:0d:0c:ac:a3:e0:72:58:c6:
2c:88:f5:fa:c9:1f:6d:09:75:89:09:17:71:1d:98:
8d:4d:e8:92:2a:3f:63:0d:28:7e:6b:34:dc:86:c8:
8c:48:d2:52:8d:0a:79:a2:86:77:2c:db:04:d2:a1:
b9:4b:56:7a:4a:85:ba:b7:a5:1a:25:f0:85:36:26:
89:35:01:22:dd:63:d0:0e:35:e3:25:77:35:bb:de:
38:ce:49:71:fb:c2:90:64:d5:81:89:69:52:39:ee:
64:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:24:9E:98:D8:4D:9B:26:B4:8D:3D:B4:12:2B:0E:4E:2D:B3:1B:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3D1A47E25CD11F0B72E8ADFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.80.222.0-154.80.231.255
Signature Algorithm: sha256WithRSAEncryption
ad:d8:7a:0a:17:7b:ed:c5:a1:f5:21:7d:13:ae:6b:35:03:a0:
9c:c1:95:ae:79:80:90:a0:eb:c5:05:d0:73:1a:fa:c4:42:90:
f4:62:24:c9:e0:54:13:63:71:18:a5:cf:13:c9:1f:cb:2c:f1:
c2:98:f0:3f:74:d0:77:80:7e:49:42:24:30:8d:17:cc:4a:53:
92:59:e3:6c:66:5e:ab:5d:c7:de:c6:3b:64:ad:e0:ae:cb:6a:
15:10:a6:98:9b:35:02:7a:2b:e9:14:9e:a5:63:71:67:83:ab:
2d:d4:0b:52:24:4a:7c:d5:95:96:78:af:3c:92:cd:be:7a:df:
88:ac:3b:8e:13:a5:5a:d5:16:1d:53:d5:6c:3f:ef:65:0d:27:
b7:38:0c:34:06:39:72:cd:89:dd:db:f1:7a:7d:78:b2:22:f8:
96:9f:bc:eb:70:7d:80:4c:82:3b:f8:f7:4d:dc:0a:59:f6:c1:
6c:78:11:a2:b3:be:b3:52:49:88:37:c7:c9:86:b7:fd:06:71:
f8:10:15:e4:64:17:d7:54:8f:c8:ea:b8:c0:75:23:81:5d:54:
1a:c7:ab:11:1d:87:5b:60:9a:95:47:be:9a:26:f7:fd:80:8d:
61:6c:77:24:d0:32:f3:58:de:10:18:e2:87:90:f6:2b:55:6d:
2c:cb:bd:0d
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAX2LMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDMwMTQxNTU1WhcNMjYwNDI4MTQxNTU1WjAYMRYw
FAYDVQQDEw02ODEyMzBhMC1mM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2kZpg42R5pKWULlDjZGqDC9NANeIwtnoE68thYcgnMWaFRm8q1QZllFM
xpAdawTF7d048BsYOvr48HfuYjhRBcZbgRKBGGbk8qBZnRqdQqlTERBoqQx5ne1h
qFG4N/6JNp4lSSqxvBoNlnmIJqeHK5SUHZSIJrB/hVFVaJD+2V2G/HUtlhKHwo/f
jN7shc5vJHjC7CBvEbS62aFhDQyso+ByWMYsiPX6yR9tCXWJCRdxHZiNTeiSKj9j
DSh+azTchsiMSNJSjQp5ooZ3LNsE0qG5S1Z6SoW6t6UaJfCFNiaJNQEi3WPQDjXj
JXc1u944zklx+8KQZNWBiWlSOe5kvwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFI8k
npjYTZsmtI09tBIrDk4tsxt4MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BM0QxQTQ3RTI1Q0QxMUYwQjcyRThBREZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAGaUN4DBAOaUOAwDQYJ
KoZIhvcNAQELBQADggEBAK3YegoXe+3FofUhfROuazUDoJzBla55gJCg68UF0HMa
+sRCkPRiJMngVBNjcRilzxPJH8ss8cKY8D900HeAfklCJDCNF8xKU5JZ42xmXqtd
x97GO2St4K7LahUQppibNQJ6K+kUnqVjcWeDqy3UC1IkSnzVlZZ4rzySzb5634is
O44TpVrVFh1T1Ww/72UNJ7c4DDQGOXLNid3b8Xp9eLIi+JafvOtwfYBMgjv4903c
Cln2wWx4EaKzvrNSSYg3x8mGt/0GcfgQFeRkF9dUj8jquMB1I4FdVBrHqxEdh1tg
mpVHvpom9/2AjWFsdyTQMvNY3hAY4oeQ9itVbSzLvQ0=
-----END CERTIFICATE-----
Generated at Sat May 10 22:29:10 2025 by rpki-client