Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7BEF4C24EAD11F0844BC591DAE4EC9C.roa
File: D7BEF4C24EAD11F0844BC591DAE4EC9C.roa (raw, json)
Hash identifier: FwD38BPPcABoD4RGMqYn6O76gGm8QFJ578EmqNtL++E=
Subject key identifier: C7:78:8A:78:E2:A4:9D:C9:CB:89:2A:C2:D8:5E:AB:E8:D3:5D:4F:5C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0187E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7BEF4C24EAD11F0844BC591DAE4EC9C.roa
Signing time: Sat 21 Jun 2025 14:41:40 +0000
ROA not before: Sat 21 Jun 2025 14:41:36 +0000
ROA not after: Thu 31 Jul 2025 14:41:36 +0000
asID: 44559
IP address blocks: 154.198.36.0/24 maxlen: 24
154.203.251.0/24 maxlen: 24
154.205.233.0/24 maxlen: 24
154.205.234.0/24 maxlen: 24
154.205.235.0/24 maxlen: 24
154.205.236.0/24 maxlen: 24
154.205.237.0/24 maxlen: 24
154.205.238.0/24 maxlen: 24
154.205.239.0/24 maxlen: 24
154.205.240.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 01:13:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100326 (0x187e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 21 14:41:36 2025 GMT
Not After : Jul 31 14:41:36 2025 GMT
Subject: CN=6856c4a4-8094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:26:41:fc:45:eb:f5:cf:ad:7b:28:20:43:45:
d7:64:31:18:e1:e8:06:79:1f:c0:9e:db:2c:ef:93:
95:50:70:5d:df:50:1b:bb:4c:9c:7d:57:f2:71:2f:
43:78:5f:74:63:b7:93:ae:04:87:7d:c6:6c:6b:54:
17:b8:fb:4e:0d:90:51:b8:33:2c:2b:95:a1:ed:35:
0b:c6:ca:3f:25:89:3c:33:e7:20:5e:18:0f:98:c5:
16:79:00:b6:5a:1a:ea:4c:44:98:81:c0:2c:29:7c:
37:a6:56:fd:2c:01:89:e1:58:12:61:c6:57:80:39:
03:19:72:f9:b3:f2:c9:b5:50:90:82:c6:42:6b:78:
d8:c1:dc:7d:55:92:8c:22:66:8b:78:89:33:58:d7:
1b:ce:1f:be:0f:ba:45:54:73:9c:23:21:3f:8d:3b:
6d:3d:1d:76:b5:35:01:d8:4a:8f:0c:3b:62:4f:06:
57:67:0a:53:90:02:88:45:86:67:e2:7d:83:6c:26:
49:16:ec:87:b1:50:f4:5b:aa:f9:d9:b7:52:24:98:
06:52:3c:7a:c5:15:ee:61:5c:db:45:19:52:26:00:
7f:84:b1:8b:87:83:06:de:06:09:ea:31:02:9f:70:
d1:7c:31:de:b9:46:65:a5:2a:42:6b:92:5a:2f:be:
00:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:78:8A:78:E2:A4:9D:C9:CB:89:2A:C2:D8:5E:AB:E8:D3:5D:4F:5C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7BEF4C24EAD11F0844BC591DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.36.0/24
154.203.251.0/24
154.205.233.0-154.205.240.255
Signature Algorithm: sha256WithRSAEncryption
89:18:3f:b9:7e:72:12:2c:a7:b8:15:65:f3:32:6c:53:2f:ae:
ca:bb:fe:ff:da:93:ca:29:e6:65:f8:66:f0:d3:a6:15:c1:a1:
34:6c:4a:31:2f:02:ba:ed:14:d5:4d:62:ab:89:1b:28:0c:37:
03:2c:dc:dc:a7:df:e0:17:fb:ef:12:8e:94:d8:70:41:c4:ad:
da:b6:3a:6a:ff:dd:e5:dc:eb:3a:f2:13:5a:71:fb:69:3c:6d:
e0:b6:9d:df:c6:93:91:e2:fc:c7:9b:bd:32:ab:c7:00:b8:f0:
56:01:8f:35:9c:66:77:ce:27:ce:bf:96:0d:c8:4c:57:c7:95:
14:98:5b:39:6f:d4:09:e5:32:4d:27:a0:dd:90:58:22:41:24:
db:5b:72:bb:ed:48:e1:bc:b0:58:6c:63:75:74:12:c5:4c:d6:
87:39:2c:68:7d:d0:b0:97:db:d9:ed:a9:eb:e8:2f:ca:f7:0a:
f6:2d:e6:5f:8d:37:55:44:bb:b1:59:7a:d9:c3:bd:3b:27:60:
9b:6c:a5:f0:28:a4:0d:a2:5d:7a:51:11:58:7b:3c:e1:00:b2:
2f:95:85:a7:5a:d0:15:8d:4a:b6:d6:62:a1:56:de:b2:89:73:
87:59:e4:bd:c6:d6:98:7c:a5:bd:f5:9e:56:54:13:e1:50:0d:
3c:03:f1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 09:04:32 2025 by rpki-client