Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED1D1DF44ABA11F096B3F8CCDAE4EC9C.roa
File: ED1D1DF44ABA11F096B3F8CCDAE4EC9C.roa (raw, json)
Hash identifier: AlVggnT8ddFDENzvBbN1NEdCqMjjZ+FxWvCkll5713M=
Subject key identifier: 70:D7:3B:21:F6:95:50:A7:6A:45:C6:E2:05:38:75:19:5E:BF:02:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0186D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED1D1DF44ABA11F096B3F8CCDAE4EC9C.roa
Signing time: Mon 16 Jun 2025 14:05:15 +0000
ROA not before: Mon 16 Jun 2025 14:05:10 +0000
ROA not after: Tue 07 Jul 2026 14:05:10 +0000
asID: 984
IP address blocks: 154.83.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 01 Jul 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100056 (0x186d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 16 14:05:10 2025 GMT
Not After : Jul 7 14:05:10 2026 GMT
Subject: CN=6850249b-5da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:da:d3:1e:46:e8:1d:8e:8e:d6:dd:73:f5:41:
8d:10:48:b7:22:ee:b3:ff:83:59:a6:a0:53:1d:2a:
16:4e:36:0a:22:8d:d0:32:47:3e:62:36:77:62:b2:
ad:16:1c:71:ea:6c:4f:1b:e6:e8:1e:d5:2a:e9:28:
35:66:b1:f0:4a:83:d9:f5:60:e2:58:91:f2:9a:74:
b0:f2:e4:8d:30:84:9b:e4:ee:be:23:65:ad:51:bd:
20:4f:1e:04:37:2a:d3:8e:a4:4b:92:93:52:26:9f:
a9:a7:f6:f0:f3:66:f2:bb:19:8d:02:66:da:da:e3:
64:e0:d4:bb:7e:d9:cb:d6:b8:bc:25:79:9c:7e:90:
a8:d6:ff:bb:db:8c:52:dc:af:33:2e:24:db:28:a7:
cb:86:5b:33:95:c6:5e:39:5d:60:0f:57:16:44:89:
eb:94:7a:7c:53:bc:40:85:c5:b2:8c:2e:d6:d4:65:
b8:a0:b0:7b:f8:64:37:63:19:50:96:8e:0f:47:39:
16:0e:48:3c:e1:c2:fd:3d:ae:d1:13:37:a4:df:9f:
60:6e:1b:56:28:8e:1e:ef:c9:8c:d7:f9:10:63:ac:
2a:62:06:c1:74:21:8a:25:76:f8:c2:67:f9:81:4c:
7a:c2:19:8b:72:8d:46:70:31:5e:c3:e4:b2:5e:9f:
6c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D7:3B:21:F6:95:50:A7:6A:45:C6:E2:05:38:75:19:5E:BF:02:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ED1D1DF44ABA11F096B3F8CCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.132.0/24
Signature Algorithm: sha256WithRSAEncryption
40:d2:53:43:ed:73:5b:dd:59:86:8d:63:e5:d7:b8:e0:e6:2b:
d0:65:cf:0d:96:06:09:c5:fb:67:e4:7b:14:a4:c0:39:fa:0c:
68:4d:82:7f:e8:fb:65:d2:da:4f:cf:f3:bb:7d:0d:df:11:e9:
e2:26:7b:c5:b7:38:9a:8a:ec:4d:71:24:b6:da:f9:35:c6:40:
ed:58:a3:d0:4b:23:bc:fc:c7:7d:3e:65:c4:ad:52:ea:7b:f7:
ee:23:cd:2b:d6:ef:c2:e0:34:2b:40:21:51:98:3a:b8:0a:15:
c1:aa:74:0a:f4:0e:43:71:16:a0:7f:ad:69:bc:e9:33:ff:e7:
85:48:6b:b5:d6:f4:50:6d:c9:48:be:d8:a3:41:34:de:05:9a:
45:53:4f:36:c5:cf:f5:58:88:56:b0:50:5d:18:66:46:25:e8:
a4:9e:31:e8:79:0e:1d:23:63:7f:f8:5a:b3:ff:c7:cc:b5:d1:
e6:93:92:2a:72:70:9e:a8:76:d5:d7:0c:d7:93:93:d1:3e:77:
45:05:43:a0:30:25:29:23:ef:04:62:31:60:c3:2b:cb:88:c6:
31:9d:8d:da:24:a4:5e:82:84:c2:68:90:2b:79:53:9c:ca:0a:
64:2c:f3:86:0f:2f:da:3c:e4:51:e2:b6:e0:e5:9f:fe:61:c4:
1b:a6:bd:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 10:45:36 2025 by rpki-client