Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF4A3E744EA311F0A20D4AD2DAE4EC9C.roa
File: BF4A3E744EA311F0A20D4AD2DAE4EC9C.roa (raw, json)
Hash identifier: HsveYPxmrfJ2wVomytXDDsgC3ofDtzT+dSDUwMjvMq0=
Subject key identifier: 2B:3A:D8:66:67:13:93:6D:55:91:FC:A9:72:B7:87:5A:EA:74:71:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0187D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF4A3E744EA311F0A20D4AD2DAE4EC9C.roa
Signing time: Sat 21 Jun 2025 13:29:24 +0000
ROA not before: Sat 21 Jun 2025 13:29:20 +0000
ROA not after: Wed 30 Jul 2025 13:29:20 +0000
asID: 62240
IP address blocks: 154.194.75.0/24 maxlen: 24
154.194.76.0/24 maxlen: 24
154.194.77.0/24 maxlen: 24
154.194.78.0/24 maxlen: 24
154.194.94.0/24 maxlen: 24
154.194.95.0/24 maxlen: 24
154.194.96.0/24 maxlen: 24
154.194.97.0/24 maxlen: 24
154.194.103.0/24 maxlen: 24
154.196.20.0/24 maxlen: 24
154.196.21.0/24 maxlen: 24
154.196.23.0/24 maxlen: 24
154.196.24.0/24 maxlen: 24
154.196.25.0/24 maxlen: 24
154.196.26.0/24 maxlen: 24
154.196.27.0/24 maxlen: 24
154.196.28.0/24 maxlen: 24
154.196.51.0/24 maxlen: 24
154.196.52.0/24 maxlen: 24
154.196.53.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 30 Jun 2025 17:35:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100306 (0x187d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 21 13:29:20 2025 GMT
Not After : Jul 30 13:29:20 2025 GMT
Subject: CN=6856b3b4-c320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8e:45:dd:4d:3a:7b:33:ca:56:db:a1:18:7f:
66:fd:bf:78:af:98:93:bf:f5:b4:36:df:bf:ae:b5:
a8:b9:12:39:47:02:f7:7e:b2:ea:89:23:cf:86:04:
c2:3e:1b:83:5d:40:45:c5:9e:f4:42:94:4f:62:dc:
8b:ac:3c:b9:a4:27:25:4b:38:f5:e7:60:0a:3f:ce:
14:f5:ad:b3:26:1f:3a:b4:bc:5d:26:40:5f:d5:f4:
92:68:f6:82:c8:6d:34:90:a0:49:07:0a:c5:da:f2:
72:8f:fb:16:30:30:74:c6:5e:eb:48:94:3a:d3:32:
d9:f3:ca:76:5f:dc:a8:00:a0:68:da:26:b9:cf:dd:
b7:a6:54:88:6b:8d:39:bc:99:53:05:59:ca:80:5d:
16:cc:09:71:df:38:0b:2e:8d:db:42:4b:b4:74:83:
6c:40:e2:33:98:18:27:a1:1e:a5:89:b9:b6:b0:a6:
bf:d0:e3:7d:d4:79:d8:7f:5c:25:1e:5b:f3:f1:b5:
fe:7b:2c:ae:97:ae:a4:4f:04:32:52:36:de:39:7b:
dd:a9:64:56:24:8a:aa:9d:d5:f9:98:dc:44:a8:f3:
69:ca:dc:69:fd:de:6a:f2:94:12:f4:ed:e0:76:57:
4a:ce:0a:8d:b3:a7:c3:22:8e:08:a9:50:69:71:15:
86:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:3A:D8:66:67:13:93:6D:55:91:FC:A9:72:B7:87:5A:EA:74:71:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BF4A3E744EA311F0A20D4AD2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.75.0-154.194.78.255
154.194.94.0-154.194.97.255
154.194.103.0/24
154.196.20.0/23
154.196.23.0-154.196.28.255
154.196.51.0-154.196.53.255
Signature Algorithm: sha256WithRSAEncryption
7b:1f:db:4e:cf:34:91:a6:26:96:20:07:a5:9a:67:bb:f4:72:
e7:a1:cb:e8:3e:0f:6d:b5:db:08:83:ea:e5:c5:d0:91:fe:01:
a9:78:e1:e4:45:d0:4c:2b:d5:04:e8:3f:a1:39:2e:ba:08:f2:
f3:d3:55:11:46:7e:47:e2:1c:d4:e4:48:6d:03:ba:53:c2:0c:
1e:1d:de:95:e2:89:9e:f6:e8:89:70:32:52:e0:53:fb:1e:79:
ff:3c:ef:14:e7:f4:3e:1e:23:df:fb:cf:bf:a5:e5:b5:6b:b8:
43:7c:ba:5b:29:05:bb:96:54:7d:44:30:0d:41:22:70:9e:95:
f5:33:ab:6d:2b:3c:b2:01:a4:b7:39:81:ee:3d:90:c6:24:2f:
de:9f:e2:36:a8:e9:5c:4b:3c:0d:80:88:b4:9f:0f:9a:80:9a:
f1:aa:a1:9d:36:35:f9:65:26:dd:bc:91:7a:0e:a9:5c:63:a1:
12:03:31:7a:25:57:27:32:dc:21:59:83:f3:ab:17:02:23:36:
74:d0:f1:0d:d1:ad:92:4d:71:24:a3:fa:04:e2:c5:42:d1:ec:
01:85:67:ac:d7:ea:17:63:c4:75:c7:6a:f2:43:7c:3f:98:36:
98:f2:ec:26:a3:bd:28:2c:1d:74:32:1a:4e:f2:fe:82:d7:13:
75:e4:74:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:41:12 2025 by rpki-client