Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1E3CA80316211F0907F47E6DAE4EC9C.roa
File: E1E3CA80316211F0907F47E6DAE4EC9C.roa (raw, json)
Hash identifier: HyGB0j+9Y5jeiv+KQjS6vPMWoC0OapHlhE4YAZg6VeY=
Subject key identifier: 91:5C:A9:7A:C9:0E:65:A4:92:39:F1:A5:39:3F:96:37:3E:37:31:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0180B4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1E3CA80316211F0907F47E6DAE4EC9C.roa
Signing time: Thu 15 May 2025 08:02:02 +0000
ROA not before: Thu 15 May 2025 08:01:57 +0000
ROA not after: Sun 22 Jun 2025 08:01:57 +0000
asID: 57043
IP address blocks: 154.83.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98484 (0x180b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 15 08:01:57 2025 GMT
Not After : Jun 22 08:01:57 2025 GMT
Subject: CN=68259f7a-35c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fa:22:2a:b4:8a:15:2b:19:77:67:37:0b:ac:
89:b3:16:78:1f:dd:8a:3a:cd:45:5d:81:89:2f:80:
3e:a2:fe:14:06:9c:a3:3f:4d:8e:b4:53:6c:3b:cd:
40:24:78:20:b1:cd:e4:30:f0:96:d8:b5:fa:49:dc:
7b:f0:03:20:6f:f5:17:c7:1f:c5:c8:a3:26:42:21:
11:30:cf:65:20:a9:43:78:9c:7c:12:5a:dc:69:f7:
c2:c2:12:6b:f3:21:ea:a9:51:e1:98:f1:07:4c:16:
f6:9a:4b:50:03:fb:10:a3:2f:1b:ac:b7:c5:49:ad:
57:f3:62:ac:20:97:b4:c0:ef:9e:5e:c7:d1:d7:39:
a1:28:3b:ec:98:6c:1c:cd:1e:6b:06:4c:f8:96:6d:
7f:2d:98:55:a1:a8:2b:78:1a:84:0a:44:46:24:a8:
af:bb:f9:57:1c:20:ff:26:94:a1:59:7b:64:eb:af:
79:fa:91:66:d4:8e:bc:22:5f:ce:67:3b:02:d4:5a:
06:72:fb:83:30:d2:05:3b:7e:c6:b6:cb:29:87:2e:
75:49:7c:0b:08:d1:4a:46:0c:ce:c8:31:3f:d0:ac:
52:11:55:c6:6a:e3:aa:6d:f7:fa:0c:4b:91:56:1a:
c5:d3:b8:5c:e9:9c:49:e8:45:0d:00:81:79:60:b5:
99:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:5C:A9:7A:C9:0E:65:A4:92:39:F1:A5:39:3F:96:37:3E:37:31:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1E3CA80316211F0907F47E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.136.0/24
Signature Algorithm: sha256WithRSAEncryption
13:41:15:f2:4c:ff:66:56:a5:b1:8b:37:dd:3f:48:7d:ca:c2:
7a:c4:0d:65:29:ab:29:64:19:93:fc:77:bc:0f:81:3a:e4:67:
b3:1b:68:fa:2a:2f:70:5c:46:f6:e0:59:fa:60:4a:7d:3b:b2:
60:7c:2c:c5:b7:8b:50:de:d4:b0:ca:e9:b3:79:67:41:c0:2d:
35:b4:c8:ce:00:86:72:14:7c:f0:f4:92:2c:c0:38:b5:a4:d5:
9e:02:fd:8e:ba:b6:14:51:e1:14:74:10:52:97:51:d2:97:aa:
c9:1a:71:4a:7c:30:08:5f:e8:3f:29:a2:4f:6c:ef:4c:68:f0:
75:c3:43:87:95:a0:4d:4e:a3:b6:12:1c:d1:ed:ea:fb:83:4c:
b3:ed:43:04:1b:5d:da:5a:66:cf:30:13:d8:cf:85:11:04:4a:
5e:dd:c9:14:9e:c1:2e:66:06:9c:be:94:e1:bd:ee:13:09:d1:
e7:8a:bd:ba:82:89:78:b9:62:23:73:f0:81:db:f3:dc:b9:02:
e8:0f:c9:7d:39:df:19:e7:09:09:65:71:f2:d2:5d:91:08:74:
ab:ff:b6:fd:ff:29:73:77:5c:be:9c:b6:a7:55:79:b1:58:ec:
f7:bb:d5:4a:f3:ea:01:c7:cc:59:73:b7:4e:c3:8d:cc:2b:3f:
5c:5d:82:58
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYC0MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTE1MDgwMTU3WhcNMjUwNjIyMDgwMTU3WjAYMRYw
FAYDVQQDEw02ODI1OWY3YS0zNWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuPoiKrSKFSsZd2c3C6yJsxZ4H92KOs1FXYGJL4A+ov4UBpyjP02OtFNs
O81AJHggsc3kMPCW2LX6Sdx78AMgb/UXxx/FyKMmQiERMM9lIKlDeJx8ElrcaffC
whJr8yHqqVHhmPEHTBb2mktQA/sQoy8brLfFSa1X82KsIJe0wO+eXsfR1zmhKDvs
mGwczR5rBkz4lm1/LZhVoagreBqECkRGJKivu/lXHCD/JpShWXtk6695+pFm1I68
Il/OZzsC1FoGcvuDMNIFO37Gtssphy51SXwLCNFKRgzOyDE/0KxSEVXGauOqbff6
DEuRVhrF07hc6ZxJ6EUNAIF5YLWZPQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJFc
qXrJDmWkkjnxpTk/ljc+NzG2MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FMUUzQ0E4MDMxNjIxMUYwOTA3RjQ3RTZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlOIMA0GCSqGSIb3DQEB
CwUAA4IBAQATQRXyTP9mVqWxizfdP0h9ysJ6xA1lKaspZBmT/He8D4E65GezG2j6
Ki9wXEb24Fn6YEp9O7JgfCzFt4tQ3tSwyumzeWdBwC01tMjOAIZyFHzw9JIswDi1
pNWeAv2OurYUUeEUdBBSl1HSl6rJGnFKfDAIX+g/KaJPbO9MaPB1w0OHlaBNTqO2
EhzR7er7g0yz7UMEG13aWmbPMBPYz4URBEpe3ckUnsEuZgacvpThve4TCdHnir26
gol4uWIjc/CB2/PcuQLoD8l9Od8Z5wkJZXHy0l2RCHSr/7b9/ylzd1y+nLanVXmx
WOz3u9VK8+oBx8xZc7dOw43MKz9cXYJY
-----END CERTIFICATE-----
Generated at Thu May 15 23:53:52 2025 by rpki-client