Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F47859444E7311F09B4DACA1DAE4EC9C.roa
File: F47859444E7311F09B4DACA1DAE4EC9C.roa (raw, json)
Hash identifier: kgPoiuUWzWtoLVR12gbMIqpOP7Ybv5EgVfybm5Vyz5E=
Subject key identifier: 7E:85:41:08:26:09:0D:77:4E:7D:18:B7:DA:5B:48:F5:E9:38:46:33
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0187A8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F47859444E7311F09B4DACA1DAE4EC9C.roa
Signing time: Sat 21 Jun 2025 07:47:18 +0000
ROA not before: Sat 21 Jun 2025 07:47:14 +0000
ROA not after: Thu 31 Jul 2025 07:47:14 +0000
asID: 214238
IP address blocks: 154.81.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 01 Jul 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100264 (0x187a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 21 07:47:14 2025 GMT
Not After : Jul 31 07:47:14 2025 GMT
Subject: CN=68566386-5d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d4:29:cb:4f:cb:da:ff:8c:5b:b4:20:d3:2b:
20:71:2e:3d:8e:e1:6b:69:3a:e8:c4:dc:7d:69:b3:
98:26:e2:cf:72:62:6e:e9:4e:40:5c:05:6a:ab:2b:
62:d6:a5:b7:fc:bc:a0:88:8d:74:18:3b:30:c7:6c:
c8:7d:b4:73:70:fa:23:20:76:67:17:a3:93:2a:8b:
9f:34:52:70:6e:31:1c:d3:3d:28:f3:5e:a0:4f:00:
fc:7f:32:88:c9:8b:7f:48:13:08:9f:5d:d4:40:d6:
5a:a7:13:06:f1:ea:2c:2e:2e:82:7c:f3:15:a7:4e:
76:a3:5f:65:50:a8:53:0c:1a:55:37:76:f2:37:61:
84:a3:66:a5:4a:05:61:0c:d6:19:e2:9a:7f:fe:13:
39:93:a5:b5:c1:74:7b:99:95:1f:dc:2b:26:10:2a:
e1:36:66:7c:55:38:ec:84:64:55:44:39:93:41:ca:
c1:56:43:88:1c:2a:20:c5:53:21:84:f5:22:1e:cd:
14:17:8f:d0:bf:24:e6:89:7b:f3:c3:29:ad:83:0a:
69:2a:1a:0b:22:41:8b:73:42:d5:b7:e0:68:c2:e6:
d2:e0:c4:6f:b0:dc:ab:b7:14:8e:92:d2:86:60:03:
f4:bc:46:1f:ee:62:17:b9:88:26:32:4f:b6:2e:04:
af:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:85:41:08:26:09:0D:77:4E:7D:18:B7:DA:5B:48:F5:E9:38:46:33
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F47859444E7311F09B4DACA1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.194.0/24
Signature Algorithm: sha256WithRSAEncryption
14:80:e6:9f:a5:20:e8:c8:66:68:1b:bf:48:9e:70:a3:67:4c:
88:72:d0:92:a3:33:6a:b6:c2:e2:df:37:49:dc:e0:57:4a:d2:
4b:69:1c:4f:f0:e1:13:b1:1d:45:05:05:7e:52:04:5e:92:29:
9e:1e:5a:30:fa:83:8e:cb:6a:46:dc:62:d5:ac:77:5b:82:ad:
11:fd:3a:6c:e3:a6:fa:63:d2:c6:6d:19:19:5a:05:f4:aa:63:
da:51:07:09:ab:0e:94:62:13:ab:80:5c:b9:e8:1a:42:94:7c:
18:21:12:1a:8e:c9:91:25:bf:f6:67:0c:59:a6:eb:1a:4e:20:
5f:1c:40:ea:6e:e2:82:a8:8d:b5:b7:35:24:2c:23:7c:57:cb:
1a:1b:b0:e6:d8:cf:f2:2b:4d:03:62:8c:2f:97:69:99:4d:f6:
67:51:64:39:05:63:e1:b3:bc:c7:e8:68:e5:59:60:39:b1:96:
a8:c9:b9:60:4b:9e:02:d9:75:82:bd:90:41:b5:c0:ff:48:11:
cd:ed:17:9d:d9:9b:87:53:68:75:22:96:56:e6:f6:97:f6:cb:
34:1d:24:da:39:0c:2c:bf:33:cc:fc:56:ff:3d:26:14:9a:79:
c8:bb:e9:ba:cc:1f:3b:87:93:99:a0:1c:53:6f:47:47:af:f5:
3d:a0:af:c9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYeoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjIxMDc0NzE0WhcNMjUwNzMxMDc0NzE0WjAYMRYw
FAYDVQQDEw02ODU2NjM4Ni01ZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyNQpy0/L2v+MW7Qg0ysgcS49juFraTroxNx9abOYJuLPcmJu6U5AXAVq
qyti1qW3/LygiI10GDswx2zIfbRzcPojIHZnF6OTKoufNFJwbjEc0z0o816gTwD8
fzKIyYt/SBMIn13UQNZapxMG8eosLi6CfPMVp052o19lUKhTDBpVN3byN2GEo2al
SgVhDNYZ4pp//hM5k6W1wXR7mZUf3CsmECrhNmZ8VTjshGRVRDmTQcrBVkOIHCog
xVMhhPUiHs0UF4/QvyTmiXvzwymtgwppKhoLIkGLc0LVt+BowubS4MRvsNyrtxSO
ktKGYAP0vEYf7mIXuYgmMk+2LgSvpwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFH6F
QQgmCQ13Tn0Yt9pbSPXpOEYzMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GNDc4NTk0NDRFNzMxMUYwOUI0REFDQTFEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlHCMA0GCSqGSIb3DQEB
CwUAA4IBAQAUgOafpSDoyGZoG79InnCjZ0yIctCSozNqtsLi3zdJ3OBXStJLaRxP
8OETsR1FBQV+UgRekimeHlow+oOOy2pG3GLVrHdbgq0R/Tps46b6Y9LGbRkZWgX0
qmPaUQcJqw6UYhOrgFy56BpClHwYIRIajsmRJb/2ZwxZpusaTiBfHEDqbuKCqI21
tzUkLCN8V8saG7Dm2M/yK00DYowvl2mZTfZnUWQ5BWPhs7zH6GjlWWA5sZaoyblg
S54C2XWCvZBBtcD/SBHN7Red2ZuHU2h1IpZW5vaX9ss0HSTaOQwsvzPM/Fb/PSYU
mnnIu+m6zB87h5OZoBxTb0dHr/U9oK/J
-----END CERTIFICATE-----
Generated at Sun Jun 29 17:50:03 2025 by rpki-client