Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6843178565911F086BF3978DAE4EC9C.roa
File: C6843178565911F086BF3978DAE4EC9C.roa (raw, json)
Hash identifier: qmihoEB82mbaUy7shnWOA8rWSVvidWePqXco9rKQGEo=
Subject key identifier: A0:89:C3:73:B9:3E:BD:47:B1:6C:AF:0B:DE:0E:36:75:7A:F9:DE:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01899E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6843178565911F086BF3978DAE4EC9C.roa
Signing time: Tue 01 Jul 2025 09:00:04 +0000
ROA not before: Tue 01 Jul 2025 08:59:58 +0000
ROA not after: Wed 06 Aug 2025 08:59:58 +0000
asID: 396073
IP address blocks: 154.198.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100766 (0x1899e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 1 08:59:58 2025 GMT
Not After : Aug 6 08:59:58 2025 GMT
Subject: CN=6863a394-3c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:34:1a:cd:d3:d6:f3:2a:6f:3c:38:81:ef:49:
d8:58:37:9b:5b:50:09:98:7f:98:a2:a1:63:8c:d9:
da:a6:19:67:c3:79:93:90:21:46:5c:bb:63:f3:c0:
fd:9a:05:b9:2a:fb:06:93:95:52:c6:18:0c:52:f4:
7b:fb:0c:d4:b0:b0:bd:54:5d:fe:10:8f:2a:e4:54:
95:47:69:89:6c:06:2e:00:06:78:89:f8:7c:4f:7e:
e6:a0:2c:56:02:e8:1a:99:63:8d:4e:ec:0a:99:17:
21:70:ec:b8:1c:4f:57:0c:16:e4:47:3a:62:b5:46:
f3:b7:7e:a8:c4:d4:ee:61:53:41:31:7f:db:37:c7:
cd:f9:07:f4:60:33:3a:d2:d9:e2:66:18:04:44:16:
3e:79:b4:47:0e:5e:ba:ec:fb:dd:cf:be:4e:7e:ae:
17:12:16:9d:ca:ff:f7:d1:8c:97:31:5c:94:5d:10:
88:45:53:e1:79:b0:ed:3a:3b:7f:1c:cf:92:8a:00:
40:6d:fc:25:d8:1a:f1:75:f9:8e:75:39:b7:15:9a:
1d:ff:26:9f:1b:9a:c6:84:19:99:f5:bf:93:9c:62:
6e:10:e5:b8:85:e5:58:78:37:8e:78:a1:79:27:e7:
ed:9a:96:c9:55:8e:12:ce:3d:67:7e:eb:4e:51:c0:
d5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:89:C3:73:B9:3E:BD:47:B1:6C:AF:0B:DE:0E:36:75:7A:F9:DE:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6843178565911F086BF3978DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.12.0/24
Signature Algorithm: sha256WithRSAEncryption
88:9c:2d:84:cf:86:6e:04:b1:bb:20:4f:31:67:fe:75:33:74:
a4:14:71:4a:d6:02:cf:09:4b:51:fe:e9:de:e6:83:46:3a:b2:
d5:b5:bc:42:1c:54:c1:12:65:8b:25:4b:b9:2f:29:fc:19:95:
44:7d:07:b8:16:5d:84:39:64:2e:90:54:0c:7d:96:13:a6:47:
a8:e7:1b:d5:af:52:65:72:0a:72:2a:94:08:76:f8:a1:d5:46:
fe:af:8b:4e:74:93:fd:1f:a8:87:f9:24:a2:eb:e1:27:7b:f7:
63:7d:90:2d:c2:ae:e3:47:9f:b3:84:74:40:b0:fa:1d:6f:90:
f8:e3:ce:f2:cc:0b:06:80:ec:0f:99:7d:20:a8:8b:d0:1d:ef:
56:34:7e:23:d9:03:cf:e9:6e:51:d6:d8:b8:6c:2e:a4:cb:6d:
23:54:05:35:a3:4b:55:b7:9b:fc:54:0f:0d:e7:6c:9e:bd:ff:
48:56:9b:f0:eb:7d:81:1d:17:58:40:82:5e:3c:d1:0f:4b:ee:
75:11:f7:5b:7b:1d:2f:fc:c1:31:18:c9:37:a3:24:39:4a:ae:
3e:1c:ce:79:94:84:b1:48:f1:de:fa:22:c8:32:de:2d:20:1f:
f9:52:73:5b:26:9d:37:21:c4:3a:ef:5f:ec:c7:8c:ce:53:c4:
a3:64:24:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:10:21 2025 by rpki-client