Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CFAE5B12781811F0902EE3A8DAE4EC9C.roa
File: CFAE5B12781811F0902EE3A8DAE4EC9C.roa (raw, json)
Hash identifier: FVDF2LAi/QGQsyqleYj4NFc2ky+yxwYvwURMAQqLgsY=
Subject key identifier: 46:36:AD:C7:54:C5:C8:5B:10:80:ED:44:17:1C:FD:3B:51:DC:5C:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01918C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CFAE5B12781811F0902EE3A8DAE4EC9C.roa
Signing time: Wed 13 Aug 2025 07:40:41 +0000
ROA not before: Wed 13 Aug 2025 07:40:36 +0000
ROA not after: Sun 14 Sep 2025 07:40:36 +0000
asID: 17557
IP address blocks: 154.81.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102796 (0x1918c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 13 07:40:36 2025 GMT
Not After : Sep 14 07:40:36 2025 GMT
Subject: CN=689c4179-8181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:11:ac:2b:b6:aa:2e:b7:3e:6c:0f:a7:9b:3e:
b8:bb:20:84:32:d7:3e:9c:76:2a:73:8c:d9:6f:e5:
72:c1:d9:96:f6:15:47:ed:6d:b2:fa:ba:7b:99:8f:
e9:60:e7:e3:04:11:ab:7b:d6:34:c3:72:1b:45:79:
39:67:8a:05:85:22:ad:0c:55:cf:3f:76:44:18:30:
f1:6d:ba:d9:74:96:86:1e:02:11:04:84:37:d4:d1:
a5:bb:09:27:fe:68:76:2d:23:14:d8:d5:5b:59:9d:
f8:28:ad:11:e5:32:ec:c0:e0:1b:71:8a:0a:3a:67:
40:83:c7:74:3f:02:0a:61:6e:9a:35:d5:ac:e0:be:
c2:00:89:8c:05:fc:ad:44:96:05:b5:3e:96:ba:ed:
e4:83:e7:47:1e:42:e6:43:10:f0:f3:f5:f2:83:7c:
ab:91:f8:10:e6:02:70:6e:09:0e:1a:f6:25:b9:84:
f8:86:7d:ea:d2:b1:22:bd:e9:00:2f:a4:6c:62:22:
f3:d9:50:53:9f:5c:36:b3:a6:95:9a:fd:dd:b8:21:
43:6e:e2:d1:1a:e0:cf:bd:ff:73:bb:d6:9a:1d:15:
6c:3f:72:10:75:4a:89:f6:90:35:c3:44:5e:ae:e3:
21:62:0e:4b:91:60:aa:de:7b:f7:1f:ab:11:4a:22:
b2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:36:AD:C7:54:C5:C8:5B:10:80:ED:44:17:1C:FD:3B:51:DC:5C:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CFAE5B12781811F0902EE3A8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.11.0/24
Signature Algorithm: sha256WithRSAEncryption
35:f6:89:33:aa:c7:71:8d:56:cb:07:3d:6c:90:19:86:96:a5:
97:5a:00:c6:82:cf:55:95:eb:b5:a6:2a:61:7c:64:ff:da:f4:
00:31:1c:bd:d0:11:e9:95:e9:b0:80:83:0d:74:e9:cb:79:f3:
6a:e7:68:b1:a7:9a:10:cc:66:7f:fc:0b:2b:c4:5a:2e:73:0b:
ce:b3:aa:c4:4a:c1:6d:d4:e0:7d:09:81:d9:e4:fa:98:c6:e3:
58:34:ae:4b:08:b1:87:cb:15:8e:08:0f:61:60:b5:3a:41:aa:
42:67:df:fd:15:2a:94:90:39:2c:ca:fa:f5:ac:06:34:f4:c1:
a9:71:70:ed:40:49:fd:3b:4b:88:9f:76:c8:5a:a9:32:76:bd:
79:7a:7f:e3:2a:7b:03:da:c9:ba:86:c1:0c:3f:a0:ee:97:49:
cf:81:1c:19:21:91:32:5b:47:26:b5:25:d9:64:12:9a:4a:44:
ca:b4:94:64:44:3c:f4:be:f2:99:19:7d:93:5a:0a:f9:c2:a8:
d7:94:fc:f0:e8:22:09:30:6d:dc:1a:c6:10:03:5e:3c:7a:1b:
62:09:dc:47:f6:69:ef:1a:f1:86:3a:e7:ff:82:ee:f8:5f:1f:
2e:65:0a:5d:b9:73:75:35:6b:5d:1f:8e:b0:26:12:5f:67:9c:
65:e7:7a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:42:42 2025 by rpki-client