Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E670898E518911F0BD657AB0DAE4EC9C.roa
File: E670898E518911F0BD657AB0DAE4EC9C.roa (raw, json)
Hash identifier: wowuSczfKE+KGErLJJQcnxHw3NdF6tzA0tegzBH3aYY=
Subject key identifier: E2:29:8D:92:0E:D4:1A:88:5A:35:06:D8:39:D6:D2:57:06:91:2A:11
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0188E3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E670898E518911F0BD657AB0DAE4EC9C.roa
Signing time: Wed 25 Jun 2025 06:01:57 +0000
ROA not before: Wed 25 Jun 2025 06:01:52 +0000
ROA not after: Tue 15 Jul 2025 06:01:52 +0000
asID: 62240
IP address blocks: 154.194.36.0/24 maxlen: 24
154.194.59.0/24 maxlen: 24
154.194.67.0/24 maxlen: 24
154.194.207.0/24 maxlen: 24
154.198.63.0/24 maxlen: 24
154.198.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 11:44:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100579 (0x188e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 25 06:01:52 2025 GMT
Not After : Jul 15 06:01:52 2025 GMT
Subject: CN=685b90d5-a1c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:68:9b:ef:4d:54:44:c2:a1:b5:20:f2:e3:e5:
fd:87:49:2b:3c:a1:ff:17:52:f6:f7:00:44:89:e5:
1b:f1:64:5d:76:8e:b9:c9:e5:b0:a9:20:94:12:e0:
41:da:e5:0c:23:ff:cd:50:40:f3:05:72:b9:a2:f7:
50:5e:0f:f3:d7:a5:7a:ef:5f:86:1c:e1:fd:57:06:
b8:02:25:ab:ee:d5:ed:6e:8d:39:b0:63:51:f2:9c:
6e:3b:00:c3:64:43:4c:1a:49:2f:1e:d9:1b:a0:17:
56:1e:be:59:30:e4:c3:f5:36:68:ed:4c:c5:b1:f4:
d5:5f:c5:e9:21:5a:5b:ac:1a:65:cd:4d:34:db:c2:
24:d6:1b:6e:b0:a5:9a:de:b8:42:d5:f9:09:79:86:
87:38:98:76:e2:c9:e3:e9:b9:02:9e:1a:42:46:ea:
de:d1:43:e6:cc:f6:6c:ac:54:96:5f:cd:6f:96:48:
c2:25:7a:04:72:d5:c4:81:e5:26:e4:a3:e0:60:f9:
a5:81:f3:cf:34:81:bb:e9:11:0a:b3:36:20:f4:98:
13:4e:47:0b:29:d1:86:37:0f:54:7d:0c:c1:ca:5d:
96:5c:d4:0d:77:a1:b6:5a:23:64:68:a5:26:e3:3e:
96:63:47:1a:0f:76:e8:4b:d9:c5:dd:bb:b9:3f:89:
df:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:29:8D:92:0E:D4:1A:88:5A:35:06:D8:39:D6:D2:57:06:91:2A:11
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E670898E518911F0BD657AB0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.36.0/24
154.194.59.0/24
154.194.67.0/24
154.194.207.0/24
154.198.63.0/24
154.198.191.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:f6:50:81:54:25:b8:22:ff:9a:b1:86:1c:c3:36:16:16:de:
78:c8:8d:1f:a5:fb:93:f1:5f:e9:e3:0c:85:71:32:eb:87:e4:
5e:1d:a5:98:c7:be:21:9e:2f:e1:3a:a2:6a:6f:af:a2:f3:ab:
ac:77:e3:c5:f8:48:67:39:f0:f5:91:d6:49:7d:6f:26:61:80:
cc:7e:73:9a:cd:90:47:42:7c:2b:3b:21:6a:e8:ff:19:bf:85:
8a:3e:ff:b5:f9:30:a4:d0:f0:c5:16:b4:db:f5:ae:8c:64:09:
0a:c9:1e:ad:6d:e6:c9:1c:ba:ca:4e:a4:07:04:15:28:da:79:
19:4d:16:9e:32:10:c0:bf:95:62:52:04:cb:7f:6c:05:b2:82:
7a:6d:ac:44:f5:1d:38:e8:8e:6a:f4:e6:b0:38:7a:9d:39:11:
b9:28:84:65:75:68:c6:82:13:5b:74:8a:d9:9c:d5:c1:8e:d6:
cd:39:00:21:94:cd:81:4d:1a:45:c4:f7:03:50:aa:25:ca:25:
e8:da:8e:68:25:40:97:56:9c:ed:c8:44:e0:d4:3b:02:09:9f:
bc:ca:c5:0c:3c:7a:4c:43:03:3c:8b:c8:ba:91:ce:6f:73:36:
91:35:41:0b:ba:09:61:0a:79:fa:de:91:73:1e:66:eb:dd:09:
c4:95:3c:85
-----BEGIN CERTIFICATE-----
MIIFojCCBIqgAwIBAgIDAYjjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjI1MDYwMTUyWhcNMjUwNzE1MDYwMTUyWjAYMRYw
FAYDVQQDEw02ODViOTBkNS1hMWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtWib701URMKhtSDy4+X9h0krPKH/F1L29wBEieUb8WRddo65yeWwqSCU
EuBB2uUMI//NUEDzBXK5ovdQXg/z16V671+GHOH9Vwa4AiWr7tXtbo05sGNR8pxu
OwDDZENMGkkvHtkboBdWHr5ZMOTD9TZo7UzFsfTVX8XpIVpbrBplzU0028Ik1htu
sKWa3rhC1fkJeYaHOJh24snj6bkCnhpCRure0UPmzPZsrFSWX81vlkjCJXoEctXE
geUm5KPgYPmlgfPPNIG76REKszYg9JgTTkcLKdGGNw9UfQzByl2WXNQNd6G2WiNk
aKUm4z6WY0caD3boS9nF3bu5P4nfbQIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFOIp
jZIO1BqIWjUG2DnW0lcGkSoRMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNjcwODk4RTUxODkxMUYwQkQ2NTdBQjBEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAmsIkAwQAmsI7AwQAmsJD
AwQAmsLPAwQAmsY/AwQAmsa/MA0GCSqGSIb3DQEBCwUAA4IBAQDH9lCBVCW4Iv+a
sYYcwzYWFt54yI0fpfuT8V/p4wyFcTLrh+ReHaWYx74hni/hOqJqb6+i86usd+PF
+EhnOfD1kdZJfW8mYYDMfnOazZBHQnwrOyFq6P8Zv4WKPv+1+TCk0PDFFrTb9a6M
ZAkKyR6tbebJHLrKTqQHBBUo2nkZTRaeMhDAv5ViUgTLf2wFsoJ6baxE9R046I5q
9OawOHqdORG5KIRldWjGghNbdIrZnNXBjtbNOQAhlM2BTRpFxPcDUKolyiXo2o5o
JUCXVpztyETg1DsCCZ+8ysUMPHpMQwM8i8i6kc5vczaRNUELuglhCnn63pFzHmbr
3QnElTyF
-----END CERTIFICATE-----
Generated at Mon Jun 30 15:56:33 2025 by rpki-client