Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7B1CA364EAC11F08BA8CF8CDAE4EC9C.roa
File: E7B1CA364EAC11F08BA8CF8CDAE4EC9C.roa (raw, json)
Hash identifier: JRsAhHYW7OTz3rQc5dCbufcaK5hXDTctBZodApl4ZfI=
Subject key identifier: F8:89:E7:28:79:A7:DA:26:52:D7:AF:38:56:DD:C8:8D:B9:E2:03:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0187E4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7B1CA364EAC11F08BA8CF8CDAE4EC9C.roa
Signing time: Sat 21 Jun 2025 14:34:58 +0000
ROA not before: Sat 21 Jun 2025 14:34:54 +0000
ROA not after: Thu 31 Jul 2025 14:34:54 +0000
asID: 44559
IP address blocks: 154.203.216.0/24 maxlen: 24
154.203.218.0/24 maxlen: 24
154.203.219.0/24 maxlen: 24
154.203.220.0/24 maxlen: 24
154.203.221.0/24 maxlen: 24
154.203.222.0/24 maxlen: 24
154.203.223.0/24 maxlen: 24
154.203.224.0/24 maxlen: 24
154.203.225.0/24 maxlen: 24
154.203.230.0/24 maxlen: 24
154.203.231.0/24 maxlen: 24
154.205.224.0/24 maxlen: 24
154.205.225.0/24 maxlen: 24
154.205.226.0/24 maxlen: 24
154.205.227.0/24 maxlen: 24
154.205.228.0/24 maxlen: 24
154.205.229.0/24 maxlen: 24
154.205.230.0/24 maxlen: 24
154.205.231.0/24 maxlen: 24
154.205.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 06:27:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100324 (0x187e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 21 14:34:54 2025 GMT
Not After : Jul 31 14:34:54 2025 GMT
Subject: CN=6856c312-7062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:36:60:5a:25:af:12:ab:d5:3b:a6:a5:c9:23:
68:96:ba:8d:91:07:40:f7:8a:ed:2d:3d:b1:aa:94:
b3:f3:37:22:1b:18:bb:de:ef:07:29:e1:09:e7:36:
86:d6:a2:c6:3a:ce:64:cb:b5:e8:77:eb:cc:f7:5a:
44:c1:01:ac:44:91:9a:be:6a:15:72:4f:0d:23:13:
c2:75:89:d6:f5:fb:df:b7:03:23:37:96:27:26:bd:
45:cc:b9:93:97:a7:06:40:06:d4:2e:22:19:36:bf:
dd:12:8e:ff:77:b8:8b:b5:52:68:14:20:44:8a:32:
35:a5:c9:30:cc:65:a1:0b:f6:dc:5c:4e:69:f2:b0:
1a:cd:a2:4c:71:94:30:a3:88:19:f9:84:de:6e:cd:
6b:27:32:a5:f2:d7:ba:38:2c:dd:4a:72:cd:68:d8:
60:38:84:d0:93:ea:1d:6a:db:63:64:a1:67:f6:40:
51:cb:85:24:b9:e8:27:f2:c6:d5:01:d9:75:2c:4d:
66:51:85:c5:e7:19:a3:df:0b:85:0f:98:33:31:5c:
12:b7:44:22:86:bd:3b:5e:2f:bd:6c:13:83:8a:6d:
d0:2a:c7:9b:2b:7d:22:79:ee:24:41:5d:43:a1:3a:
2c:e2:8d:06:7f:e9:37:62:ec:20:c0:f0:c1:0a:64:
03:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:89:E7:28:79:A7:DA:26:52:D7:AF:38:56:DD:C8:8D:B9:E2:03:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7B1CA364EAC11F08BA8CF8CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.216.0/24
154.203.218.0-154.203.225.255
154.203.230.0/23
154.205.224.0-154.205.232.255
Signature Algorithm: sha256WithRSAEncryption
37:35:c7:8b:47:b1:bb:fa:7f:f5:da:3c:c8:bf:be:be:11:b7:
d2:4a:65:95:6b:f7:09:06:43:20:02:b8:00:98:75:bc:4e:15:
43:70:9c:af:48:5f:b7:74:9d:70:9a:5e:88:66:01:23:94:ee:
c8:05:02:d3:91:c5:50:a6:83:05:13:c6:be:f8:bf:62:d1:88:
ae:98:47:19:68:f4:e4:5b:70:2c:e1:b9:d4:16:8f:84:2a:38:
ba:3b:76:75:8c:4e:98:88:77:d1:2f:fc:f5:53:3c:39:44:b7:
ae:2e:2a:fe:e3:2b:83:50:1a:5e:0f:af:bb:19:18:c1:ba:ff:
1b:06:e0:ea:c0:9c:62:ce:11:2e:5a:57:e0:fc:81:83:c9:20:
37:55:b7:1b:8d:98:86:c5:7c:30:5c:b0:48:4a:5d:da:bd:3c:
e0:e5:26:2e:61:9f:a4:82:c4:43:58:41:36:af:9f:13:6a:b1:
58:4b:45:f3:84:b9:e8:a1:a1:77:d4:3d:c5:a7:5c:98:3f:23:
4a:95:0e:f8:14:34:a5:50:6f:39:c2:db:0b:8b:a3:8c:cd:1b:
b9:a1:d9:74:a1:59:ad:ae:04:9c:61:5d:b9:b9:92:8a:fa:ab:
31:96:eb:24:4f:5a:44:3a:4c:84:f0:e3:00:ee:a5:7f:10:53:
89:f9:d8:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 11:43:15 2025 by rpki-client