Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7B4F670580A11F09CFDAEF2DAE4EC9C.roa
File: B7B4F670580A11F09CFDAEF2DAE4EC9C.roa (raw, json)
Hash identifier: bVWCchxTroJz/EioT0CQ8zCX/bSLlqqHlqcgjTWxsjU=
Subject key identifier: 34:56:89:D0:D8:74:7D:16:8D:66:F6:D4:CA:B8:5F:2F:74:FA:8B:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018A15
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7B4F670580A11F09CFDAEF2DAE4EC9C.roa
Signing time: Thu 03 Jul 2025 12:39:11 +0000
ROA not before: Thu 03 Jul 2025 12:39:06 +0000
ROA not after: Wed 03 Sep 2025 12:39:06 +0000
asID: 135377
IP address blocks: 154.83.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100885 (0x18a15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 3 12:39:06 2025 GMT
Not After : Sep 3 12:39:06 2025 GMT
Subject: CN=686679ef-404d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f5:b9:4d:83:30:1c:ca:ec:fb:7b:4f:fe:ae:
37:80:93:a3:44:44:a9:4a:3c:16:97:92:80:a3:21:
ce:5a:46:ab:70:e9:31:72:83:2e:02:47:d9:cb:5f:
a2:d5:7b:71:e7:af:3f:1b:32:32:cf:00:f5:65:87:
57:f2:77:31:3a:11:5a:94:fd:b4:a5:85:5a:ae:cf:
13:ec:0d:b6:2f:65:95:47:e0:05:f6:5a:02:7d:89:
62:f9:31:28:e7:c1:ba:9b:27:30:c4:89:f4:75:30:
6d:87:4e:f2:d1:96:b8:58:97:b6:8d:d6:87:ca:0e:
28:50:21:fc:ac:ca:37:fd:64:af:73:e8:bc:07:9c:
87:36:35:59:50:34:5c:da:0c:46:71:1e:c1:19:da:
e5:4a:88:53:33:2c:7e:ce:31:5e:ed:2b:f6:e6:15:
26:6c:86:5b:17:13:82:7b:95:0d:9d:bb:5b:d5:20:
2f:1e:fb:c0:8a:eb:a1:5d:c8:b5:9d:20:a8:74:b2:
45:fc:00:d6:f0:d5:8c:82:69:19:b9:51:a9:9f:e0:
bd:cd:f5:5f:84:95:5d:3a:6d:0c:92:33:36:23:54:
fe:24:6b:09:53:25:76:fa:fc:23:a0:59:e2:a3:4c:
35:26:06:76:37:13:7f:7c:0b:99:6b:0d:87:14:42:
78:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:56:89:D0:D8:74:7D:16:8D:66:F6:D4:CA:B8:5F:2F:74:FA:8B:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7B4F670580A11F09CFDAEF2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.198.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:e2:35:7b:cf:f9:46:0e:24:cf:72:ef:87:28:39:48:6c:04:
78:49:b1:9a:e2:ca:2a:76:a0:17:9d:3b:ba:b9:f7:ff:b3:6f:
7f:10:b5:67:9d:4a:4c:ec:90:75:ab:57:7e:8c:27:ac:93:17:
9f:c6:90:5f:d6:2a:e0:1d:46:37:0a:bd:dc:ce:f5:0a:0a:0f:
b3:8d:6e:48:09:38:a6:2c:a3:b2:b2:1c:74:42:8f:a4:a0:80:
05:ed:9b:66:d1:e7:1a:ab:f4:cf:f9:80:b9:ad:e3:a9:0d:79:
88:4b:ca:79:f8:1d:c4:e1:c6:19:86:42:44:eb:95:7c:56:30:
1d:2e:ec:5b:f9:0e:ef:fc:73:46:5f:48:fc:08:a9:8f:62:15:
fc:15:bd:d1:e5:5d:0b:6c:35:08:ba:e4:62:25:e4:d0:27:9a:
6f:1f:5d:ad:fe:43:1f:02:91:d8:b8:b7:2b:a7:53:19:78:c2:
f1:d7:ae:8c:fb:15:2d:13:1f:22:5d:e5:4a:8f:ff:83:d7:1e:
a8:a4:f9:ff:c3:92:5f:07:7e:c6:fe:18:b8:95:55:9d:5e:8e:
25:65:20:71:59:55:66:ad:49:ac:c2:04:0e:39:8f:c6:a3:f9:
6f:2c:b1:8d:a6:8d:09:82:e0:51:83:f1:bd:26:82:d1:d5:35:
77:48:8c:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:07:44 2025 by rpki-client