Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBFBD0F42B2B11F0B2C051CEDAE4EC9C.roa
File: EBFBD0F42B2B11F0B2C051CEDAE4EC9C.roa (raw, json)
Hash identifier: wRU3mqsd/jWVVvXjrpMd700/1eKcAdE+2nIH4I0Gk1w=
Subject key identifier: 39:A3:A8:A6:37:E5:A7:F7:04:AD:85:B7:7C:D3:14:0E:B0:ED:48:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017F57
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBFBD0F42B2B11F0B2C051CEDAE4EC9C.roa
Signing time: Wed 07 May 2025 10:13:29 +0000
ROA not before: Wed 07 May 2025 10:13:25 +0000
ROA not after: Sat 14 Jun 2025 10:13:25 +0000
asID: 20473
IP address blocks: 154.197.32.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98135 (0x17f57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 10:13:25 2025 GMT
Not After : Jun 14 10:13:25 2025 GMT
Subject: CN=681b3249-f056
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3a:0c:2c:e8:7d:c3:6f:29:0c:78:19:d4:bc:
ed:a4:4d:79:62:9e:e9:db:ca:7d:8d:97:d1:6d:e2:
d1:9a:3b:07:a6:bb:c1:42:78:b6:de:f9:6a:1e:c4:
a3:29:c9:66:ad:ad:0a:0f:d9:f9:30:15:3b:96:39:
38:d4:8e:78:01:83:7a:83:eb:8f:d9:19:60:1c:df:
cf:79:29:19:7d:a4:f6:d3:0f:49:8d:69:c5:3b:4d:
a7:cd:1b:95:3f:78:e9:5d:fb:27:61:fc:8b:16:f3:
60:28:07:51:3b:67:c6:76:d2:89:31:4b:e2:a7:a5:
a4:6a:c9:76:4a:93:c5:93:43:23:2b:6b:65:c1:ab:
ae:93:3b:38:70:44:0f:cd:23:5d:03:e1:d6:27:5c:
00:4d:e5:ba:b2:41:b3:bb:4e:4e:e7:9f:38:a8:ce:
ba:59:12:9f:bd:ab:02:2b:c3:c6:7d:9e:6c:52:8f:
40:3a:11:d0:4f:c1:a6:1e:77:35:e4:d4:f1:6f:d2:
16:ae:78:71:66:a3:f8:92:8d:bb:25:56:78:80:3f:
0b:da:f0:e0:8a:3b:00:df:69:83:8b:bd:d7:b6:18:
06:42:ae:0c:b0:3d:7a:71:ee:be:63:3d:90:f8:fb:
1a:3f:a3:29:d9:b5:92:06:3d:5b:52:22:19:b9:27:
d8:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:A3:A8:A6:37:E5:A7:F7:04:AD:85:B7:7C:D3:14:0E:B0:ED:48:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBFBD0F42B2B11F0B2C051CEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.32.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:2e:fb:1c:36:41:58:39:ed:3f:8d:ea:e6:09:6e:c2:90:5a:
62:87:99:8b:bc:19:be:06:70:1c:0a:48:30:a6:0c:4d:2f:32:
38:91:4b:26:ca:54:ac:66:8c:cd:fd:21:7d:15:d5:aa:31:bc:
d6:d6:99:eb:6f:c9:ef:d9:bc:1b:8a:92:f6:ad:58:fc:c5:1a:
88:70:1a:25:2b:ab:2f:c6:58:25:76:93:35:8c:e5:7f:07:68:
66:1a:20:8e:d0:72:1c:cf:37:5e:f0:bd:5f:ff:00:03:4d:57:
a1:53:d4:d1:31:57:78:ad:3b:40:95:47:ed:7d:fb:7d:61:84:
48:5c:79:32:d5:61:bf:7d:34:cb:e8:d4:8c:af:39:26:dd:0e:
71:6b:d3:59:77:82:93:4b:74:ec:08:95:f6:b3:50:ba:d0:63:
9d:be:02:be:ba:2a:3d:6a:03:59:47:04:b4:bb:da:00:37:8a:
cc:cf:2b:f2:48:71:76:ca:12:56:57:7e:77:b0:01:2d:26:28:
8e:da:12:3d:b6:46:ff:fe:51:c1:c9:c6:b1:d5:21:9f:78:93:
cc:87:5f:a7:ef:c4:08:8e:3b:c7:03:28:10:19:c9:f2:f9:0f:
d3:f7:06:41:ab:6a:3d:83:51:13:6f:9a:8c:14:cb:a7:be:ce:
d8:dc:c0:da
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAX9XMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNTA3MTAxMzI1WhcNMjUwNjE0MTAxMzI1WjAYMRYw
FAYDVQQDEw02ODFiMzI0OS1mMDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4joMLOh9w28pDHgZ1LztpE15Yp7p28p9jZfRbeLRmjsHprvBQni23vlq
HsSjKclmra0KD9n5MBU7ljk41I54AYN6g+uP2RlgHN/PeSkZfaT20w9JjWnFO02n
zRuVP3jpXfsnYfyLFvNgKAdRO2fGdtKJMUvip6Wkasl2SpPFk0MjK2tlwauukzs4
cEQPzSNdA+HWJ1wATeW6skGzu05O5584qM66WRKfvasCK8PGfZ5sUo9AOhHQT8Gm
Hnc15NTxb9IWrnhxZqP4ko27JVZ4gD8L2vDgijsA32mDi73XthgGQq4MsD16ce6+
Yz2Q+PsaP6Mp2bWSBj1bUiIZuSfYYQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDmj
qKY35af3BK2Ft3zTFA6w7Ui7MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQkZCRDBGNDJCMkIxMUYwQjJDMDUxQ0VEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsUgMA0GCSqGSIb3DQEB
CwUAA4IBAQDNLvscNkFYOe0/jermCW7CkFpih5mLvBm+BnAcCkgwpgxNLzI4kUsm
ylSsZozN/SF9FdWqMbzW1pnrb8nv2bwbipL2rVj8xRqIcBolK6svxlgldpM1jOV/
B2hmGiCO0HIczzde8L1f/wADTVehU9TRMVd4rTtAlUftfft9YYRIXHky1WG/fTTL
6NSMrzkm3Q5xa9NZd4KTS3TsCJX2s1C60GOdvgK+uio9agNZRwS0u9oAN4rMzyvy
SHF2yhJWV353sAEtJiiO2hI9tkb//lHBycax1SGfeJPMh1+n78QIjjvHAygQGcny
+Q/T9wZBq2o9g1ETb5qMFMunvs7Y3MDa
-----END CERTIFICATE-----
Generated at Thu May 15 23:55:43 2025 by rpki-client