Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0358370542111F0A3391686DAE4EC9C.roa
File: B0358370542111F0A3391686DAE4EC9C.roa (raw, json)
Hash identifier: d9UuMxea9wJo3f3R386/DTarC91bSUIQIr9zTj0odAk=
Subject key identifier: 98:FD:D4:75:ED:BF:86:72:A9:61:18:99:78:14:B4:F8:12:9D:72:A1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018955
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0358370542111F0A3391686DAE4EC9C.roa
Signing time: Sat 28 Jun 2025 13:13:32 +0000
ROA not before: Sat 28 Jun 2025 13:13:27 +0000
ROA not after: Tue 29 Jul 2025 13:13:27 +0000
asID: 214143
IP address blocks: 154.196.214.0/24 maxlen: 24
154.206.11.0/24 maxlen: 24
154.208.88.0/22 maxlen: 24
154.212.144.0/23 maxlen: 24
154.212.146.0/23 maxlen: 24
154.222.72.0/23 maxlen: 24
154.222.74.0/23 maxlen: 24
154.222.80.0/23 maxlen: 24
154.222.82.0/23 maxlen: 24
154.222.84.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 06:27:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100693 (0x18955)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 28 13:13:27 2025 GMT
Not After : Jul 29 13:13:27 2025 GMT
Subject: CN=685fea7c-e7cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:12:49:a9:dd:0a:20:2d:6d:09:3f:99:b4:11:
68:7d:c8:a1:b7:7f:3e:c3:26:c6:88:84:07:6c:ce:
22:a3:c4:79:b3:b3:c4:e7:65:6c:bc:8a:16:93:23:
0a:5c:a8:9c:5b:db:63:51:c6:a3:35:eb:83:6c:c5:
80:03:3a:eb:df:2f:03:e2:a9:c2:a7:be:b8:29:03:
15:83:3f:5b:85:a0:76:94:e2:24:53:0e:75:0c:ce:
f1:34:df:d8:92:70:36:80:88:63:96:83:bb:57:fc:
f4:a0:c8:17:55:43:79:c0:17:8f:61:d4:48:4d:06:
0c:d1:58:89:29:1b:f6:a0:23:10:72:61:db:3d:c2:
61:f3:9d:18:5b:b6:a7:40:68:8b:ae:e2:9a:3f:69:
84:59:15:12:96:9a:a8:2b:ee:cc:c9:5c:78:8b:b1:
e6:2b:4e:68:25:13:60:69:45:e1:13:59:41:c7:e5:
e8:8f:42:31:86:10:f0:1b:ae:45:d1:59:56:9e:47:
f0:5f:20:14:c2:2a:87:9c:89:dc:b5:f6:d7:bb:5c:
64:08:40:3b:cd:1e:ff:7d:9d:c9:50:40:ed:9e:4c:
d3:00:d0:50:4d:84:a8:1e:61:82:63:d0:02:ac:14:
b4:49:ed:d9:ad:a0:ae:49:9a:a2:19:cc:a2:ce:81:
de:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:FD:D4:75:ED:BF:86:72:A9:61:18:99:78:14:B4:F8:12:9D:72:A1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0358370542111F0A3391686DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.214.0/24
154.206.11.0/24
154.208.88.0/22
154.212.144.0/22
154.222.72.0/22
154.222.80.0-154.222.85.255
Signature Algorithm: sha256WithRSAEncryption
28:3d:bc:bf:5c:49:1c:3e:1e:26:7f:0c:51:ef:a8:f8:50:68:
f5:ed:fd:a9:e0:82:9a:03:88:64:3d:09:ff:3d:90:be:37:40:
bf:39:99:de:50:ed:32:d8:91:d2:07:6a:60:e9:66:6f:16:08:
ab:3e:ee:05:ae:29:19:9e:50:bf:4b:a7:3f:9e:e3:71:11:f8:
fc:d0:57:f8:e4:4c:2d:37:29:7f:2a:1b:2f:99:9d:13:0b:58:
1b:31:11:88:32:78:1b:1b:20:e2:44:50:8f:ea:d2:6c:9b:f5:
fc:67:6d:3e:80:53:0e:2f:b8:cd:31:24:6a:b1:b7:51:a8:ce:
ba:7e:c4:23:21:8f:09:dc:a9:76:41:76:78:2e:cf:ae:25:9e:
1d:2e:16:36:e2:2e:8a:47:02:62:8d:bb:4d:ab:1b:a5:c5:62:
e6:64:e2:14:54:97:59:da:b0:22:91:21:ae:bb:bf:90:8b:d6:
92:cd:ba:68:4c:a0:6b:40:c2:79:4f:48:60:fe:df:d0:c2:84:
ee:9b:dc:3e:48:8a:77:1e:ff:36:fa:2b:56:67:be:95:bd:c2:
2e:d4:2a:8d:45:7f:f8:c8:d6:ef:2b:52:dc:3d:8c:2b:78:94:
b9:34:de:4f:37:55:c1:37:2e:03:84:6e:cf:1a:52:eb:32:bc:
a7:33:a8:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 14:17:18 2025 by rpki-client