Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9370B6E501D11F0AD15C2ECDAE4EC9C.roa
File: A9370B6E501D11F0AD15C2ECDAE4EC9C.roa (raw, json)
Hash identifier: xxkWySf6HiUzqEKeh1Cif+O3hX6yfEnbO1g3a0PFOmM=
Subject key identifier: F5:28:A2:93:91:59:C4:0A:F3:65:FD:26:5E:51:AC:5F:2F:76:98:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0187FB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9370B6E501D11F0AD15C2ECDAE4EC9C.roa
Signing time: Mon 23 Jun 2025 10:34:37 +0000
ROA not before: Mon 23 Jun 2025 10:34:33 +0000
ROA not after: Sun 28 Dec 2025 10:34:33 +0000
asID: 27947
IP address blocks: 154.84.160.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 00:06:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100347 (0x187fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 23 10:34:33 2025 GMT
Not After : Dec 28 10:34:33 2025 GMT
Subject: CN=68592dbd-76dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:a4:cf:00:ef:52:30:92:f5:f4:e1:cd:b2:
15:7c:fb:74:61:84:af:52:53:4c:27:9c:47:8d:ba:
29:b5:36:80:9b:f1:5a:4f:36:84:e9:e0:19:e8:de:
3c:15:91:bf:77:9d:e0:b4:7e:52:68:4b:37:74:17:
73:0d:32:d7:55:e1:86:a8:87:6e:34:84:e1:c3:13:
fe:01:c1:cb:7c:db:d2:02:05:79:b2:c9:e0:bb:4e:
a6:d6:5e:39:7a:b7:6f:55:32:75:19:51:4e:33:14:
2d:dd:32:15:c8:82:b1:aa:64:8d:74:3b:63:9c:fc:
e9:43:1f:7c:15:c2:7c:15:cd:4a:fb:28:76:f2:26:
3c:12:14:96:b7:e9:d8:93:c7:82:49:34:83:83:a5:
01:f6:9e:97:6f:1f:2c:b8:41:c2:9a:d9:24:57:91:
35:9d:d0:ad:ae:9e:72:ed:dd:ca:ef:1b:2e:17:ae:
a6:8f:6d:92:01:ab:3b:21:e1:d6:22:c2:05:8c:43:
6c:b4:3c:1d:27:a2:22:82:be:c1:18:f6:8e:61:fa:
9a:55:0c:b7:d6:cd:22:30:ee:ba:02:ac:2d:3c:7d:
6f:f6:a6:58:51:b2:c0:a4:14:39:e4:0d:11:94:36:
b1:2b:c9:ce:0e:70:4b:f0:40:33:0a:a8:91:0b:88:
9b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:28:A2:93:91:59:C4:0A:F3:65:FD:26:5E:51:AC:5F:2F:76:98:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A9370B6E501D11F0AD15C2ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.160.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:2f:ab:44:f9:c2:de:e5:c5:89:a3:85:f5:65:49:b2:f4:1e:
66:43:c4:1d:03:f6:aa:25:22:08:36:e4:7d:fa:2b:10:3e:ae:
9b:54:f3:51:ed:39:31:03:81:4f:8a:dd:7c:a0:ce:f0:b4:c1:
3b:ba:22:e8:cb:5d:f2:10:58:ae:5e:ee:8b:85:81:0b:8b:17:
01:3d:f5:63:2e:5d:99:73:03:d0:ff:4d:42:ee:2f:65:c8:5b:
c4:4b:26:e4:0a:ca:87:0e:2c:8f:73:e9:17:43:a0:e4:e4:00:
ac:29:a3:e6:75:a5:5d:de:d3:44:0e:c5:58:c9:da:e4:22:be:
a3:8f:dd:e2:3a:43:0e:0c:de:e3:ca:ae:a9:aa:c7:31:b5:c2:
4d:38:99:17:e9:97:78:ab:de:e9:12:70:b5:33:5f:e2:93:b1:
d8:cd:e3:9e:ef:b0:dc:d2:d0:fd:68:ce:8c:cf:db:f1:85:e6:
c5:e1:99:fa:d4:a2:12:28:2c:b9:72:1f:4e:75:5d:ab:47:a0:
cb:ef:35:e3:d1:fd:ac:44:37:4d:81:15:6d:21:58:2f:c3:46:
04:01:04:b3:27:ab:52:fc:ad:39:7e:13:45:49:d8:44:c0:34:
54:00:43:03:c9:53:f4:16:c2:3f:65:d4:49:aa:3b:4f:b4:6e:
ba:33:24:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 03:09:03 2025 by rpki-client