Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E266F53C2B3F11F0BFD082D1DAE4EC9C.roa
File: E266F53C2B3F11F0BFD082D1DAE4EC9C.roa (raw, json)
Hash identifier: hXJYhdpCtczrJvm5PAqxTzCo7qPO23tD3fs9Pogi0DA=
Subject key identifier: 02:FE:95:EF:7C:E3:CB:54:8E:E9:A3:8D:6B:12:8F:AA:11:A9:AA:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F69
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E266F53C2B3F11F0BFD082D1DAE4EC9C.roa
Signing time: Wed 07 May 2025 12:36:23 +0000
ROA not before: Wed 07 May 2025 12:36:19 +0000
ROA not after: Wed 15 Oct 2025 12:36:19 +0000
asID: 58944
IP address blocks: 154.91.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98153 (0x17f69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 12:36:19 2025 GMT
Not After : Oct 15 12:36:19 2025 GMT
Subject: CN=681b53c7-bc7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:37:82:17:1b:ae:56:e7:50:dd:db:8f:63:e9:
d9:a7:1e:b9:40:d0:74:45:89:fb:04:f1:d1:7d:4e:
d6:83:1a:1c:f1:e3:aa:47:84:90:54:57:70:34:b6:
8a:7a:63:c3:d3:00:c3:31:27:ef:f4:19:74:7a:0f:
f2:fc:d7:e0:70:18:73:8f:d5:29:62:72:88:6d:19:
62:6e:10:c0:9f:c7:1e:12:20:30:9d:1f:34:7f:dd:
59:ee:66:64:07:96:67:fa:7e:75:4a:a8:15:f8:88:
8c:3d:3d:59:f7:65:f2:e4:d3:e0:c6:27:bf:91:46:
62:ad:e5:cf:2b:a8:3d:7c:27:37:d8:04:67:99:ca:
d2:ba:1f:b0:d6:06:9e:e3:a9:44:de:4c:1e:5d:b2:
a5:54:07:46:f7:d4:8e:c6:ef:e6:c7:6f:74:d0:a0:
1b:3b:3e:98:68:68:ee:ae:4f:9f:f5:da:78:ea:97:
5e:ff:55:22:ac:17:61:eb:48:61:6a:47:bb:9a:a5:
38:d1:3f:ac:a9:b5:e1:53:36:9e:93:36:d4:b7:0c:
56:5d:5c:f0:c0:9b:40:15:bb:9c:5b:dc:5d:25:86:
97:a9:fe:72:20:cf:d2:55:36:84:04:8c:55:92:1b:
13:0e:53:91:bf:40:bf:d9:31:20:3e:ab:2b:7b:5a:
0b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:FE:95:EF:7C:E3:CB:54:8E:E9:A3:8D:6B:12:8F:AA:11:A9:AA:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E266F53C2B3F11F0BFD082D1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.1.0/24
Signature Algorithm: sha256WithRSAEncryption
be:6d:5d:56:bd:fb:4e:1f:8b:fd:da:bb:3f:e8:20:fd:ba:f4:
de:9c:e7:3c:46:0e:2a:83:a6:07:9d:d8:a5:bc:b1:e4:24:a9:
24:d0:44:5b:b5:29:98:34:f7:9b:cf:67:da:1b:22:86:cb:86:
a1:93:3e:1c:24:8c:04:c7:d2:89:fd:e0:42:a9:3a:43:5c:2b:
03:e4:1f:7f:f7:cf:46:46:d5:f9:a1:e0:10:bf:e1:60:aa:56:
c5:40:0a:2f:54:d9:4d:48:f9:f4:21:eb:f5:d9:d9:c3:8e:ca:
08:9d:4c:b9:c6:3b:b6:c0:e6:82:0a:09:b0:32:1d:18:1d:8c:
0b:8b:f1:21:95:0a:d3:27:37:48:e6:f9:95:94:cc:90:4e:76:
59:2b:bb:d6:11:42:b8:5b:ba:c7:f0:03:23:7d:e8:60:2e:33:
93:76:0a:48:74:85:d2:47:2b:e0:c0:05:eb:32:be:4b:ad:45:
b8:b4:83:e5:d1:d1:b4:5c:55:0f:bf:33:b0:ce:83:48:69:b1:
74:ed:46:a6:c7:5d:d6:e0:e4:c1:5d:51:f1:f6:80:41:00:89:
af:1b:f1:76:e9:34:77:a8:5b:18:46:cf:d4:20:aa:bc:02:f9:
df:5a:89:db:57:df:f1:8d:1a:15:fa:d3:fa:8d:1b:81:3e:b8:
74:6f:e8:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 23:44:46 2025 by rpki-client