Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F77073AE532611F0940355AFDAE4EC9C.roa
File: F77073AE532611F0940355AFDAE4EC9C.roa (raw, json)
Hash identifier: fhHfPXUDiYTHL37909Q2+nz4b9/2ETX2gdrKsL3gkgQ=
Subject key identifier: 6B:B5:F5:53:69:2E:9A:72:76:24:77:12:1C:74:12:D2:9A:E9:68:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01892E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F77073AE532611F0940355AFDAE4EC9C.roa
Signing time: Fri 27 Jun 2025 07:18:48 +0000
ROA not before: Fri 27 Jun 2025 07:18:41 +0000
ROA not after: Tue 07 Jul 2026 07:18:41 +0000
asID: 984
IP address blocks: 154.83.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 01 Jul 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100654 (0x1892e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 07:18:41 2025 GMT
Not After : Jul 7 07:18:41 2026 GMT
Subject: CN=685e45d8-3bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:a7:39:af:24:15:62:20:8d:06:20:a5:18:5e:
dc:8e:fd:aa:31:99:35:54:5a:5d:ef:9f:49:82:1d:
74:a5:48:e7:9e:97:06:d1:97:6e:e7:fd:ae:fc:c4:
f5:5c:c7:5d:52:b6:96:0c:21:b6:a3:55:d2:bb:c0:
4b:fd:6b:ae:c5:f0:ae:e5:e2:e0:3d:6e:a3:d4:31:
d3:d2:f2:d3:70:6b:4d:f6:20:80:7e:dc:67:5d:19:
a2:00:9c:fb:4f:a8:bf:1f:85:e9:1f:9e:45:c2:f4:
fc:e4:56:d9:69:1b:86:51:7b:2f:8c:c5:4a:3a:90:
c7:c5:2c:bc:0a:1e:11:59:de:8a:ea:5c:86:36:5f:
b7:af:1f:05:72:24:f0:90:03:bb:2d:4f:bb:ef:11:
f2:dd:3a:e7:3e:e9:e0:63:f4:f9:5c:d7:7e:0d:30:
69:cb:9d:55:f4:61:39:6c:eb:99:e9:f6:9b:04:78:
75:07:6f:de:6d:a7:13:8a:03:2e:29:29:3a:96:f6:
65:22:1a:04:66:b7:a9:f8:81:7f:bc:10:5e:f7:f1:
eb:80:5a:e1:72:80:31:2f:d3:0b:ce:75:a9:ff:ce:
87:f6:7b:b3:6a:ed:65:45:7d:70:fd:73:d1:9c:50:
fe:3a:b2:0b:1c:79:c4:ba:84:1d:d6:89:a3:cc:07:
69:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B5:F5:53:69:2E:9A:72:76:24:77:12:1C:74:12:D2:9A:E9:68:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F77073AE532611F0940355AFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.132.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:c4:7d:fc:c7:15:7f:43:21:28:fe:25:1d:40:07:7c:0e:ce:
92:3f:31:4d:fa:e6:6b:47:13:f7:c1:4f:df:76:aa:2c:4b:a9:
df:cd:8b:cb:12:af:26:7e:de:b1:9a:5c:c0:fd:ea:11:ad:a1:
0e:3d:ca:42:17:54:2f:4f:6c:f4:43:66:a8:2f:c4:c1:b5:8f:
c4:c8:0a:c6:dd:6a:b2:2e:1e:22:42:85:f6:7c:56:f5:e2:a6:
7c:30:2d:c4:65:ab:65:4f:62:71:0f:23:c4:fb:8d:4a:ef:bf:
22:6c:47:9d:aa:e1:cc:63:70:8d:d5:8c:49:6f:25:1e:b6:a6:
73:74:97:55:d1:5e:ec:69:d6:9e:97:af:d2:c5:c6:4f:70:75:
fa:a2:2f:e6:27:98:1e:85:49:9b:0e:61:db:b7:8d:16:b2:28:
99:d4:b3:a5:9b:f7:27:9e:9c:49:dc:ce:b9:a8:c5:95:4c:22:
f3:1b:db:37:d2:93:a6:d3:45:4c:57:35:b3:10:93:d9:a7:ed:
22:cf:92:c9:a3:8d:0d:5e:c6:ff:e3:6c:62:5c:37:c5:90:f5:
c1:ad:d5:ca:36:f9:52:3c:51:5e:62:bf:1d:ce:d7:09:c8:f4:
ed:2d:6f:15:af:f5:55:1f:1e:37:1b:28:37:27:7f:72:32:ac:
25:a5:eb:40
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYkuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjI3MDcxODQxWhcNMjYwNzA3MDcxODQxWjAYMRYw
FAYDVQQDEw02ODVlNDVkOC0zYmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8ac5ryQVYiCNBiClGF7cjv2qMZk1VFpd759Jgh10pUjnnpcG0Zdu5/2u
/MT1XMddUraWDCG2o1XSu8BL/WuuxfCu5eLgPW6j1DHT0vLTcGtN9iCAftxnXRmi
AJz7T6i/H4XpH55FwvT85FbZaRuGUXsvjMVKOpDHxSy8Ch4RWd6K6lyGNl+3rx8F
ciTwkAO7LU+77xHy3TrnPungY/T5XNd+DTBpy51V9GE5bOuZ6fabBHh1B2/ebacT
igMuKSk6lvZlIhoEZrep+IF/vBBe9/HrgFrhcoAxL9MLznWp/86H9nuzau1lRX1w
/XPRnFD+OrILHHnEuoQd1omjzAdpNQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGu1
9VNpLppydiR3Ehx0EtKa6WhEMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GNzcwNzNBRTUzMjYxMUYwOTQwMzU1QUZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlOEMA0GCSqGSIb3DQEB
CwUAA4IBAQALxH38xxV/QyEo/iUdQAd8Ds6SPzFN+uZrRxP3wU/fdqosS6nfzYvL
Eq8mft6xmlzA/eoRraEOPcpCF1QvT2z0Q2aoL8TBtY/EyArG3WqyLh4iQoX2fFb1
4qZ8MC3EZatlT2JxDyPE+41K778ibEedquHMY3CN1YxJbyUetqZzdJdV0V7sadae
l6/SxcZPcHX6oi/mJ5gehUmbDmHbt40WsiiZ1LOlm/cnnpxJ3M65qMWVTCLzG9s3
0pOm00VMVzWzEJPZp+0iz5LJo40NXsb/42xiXDfFkPXBrdXKNvlSPFFeYr8dztcJ
yPTtLW8Vr/VVHx43Gyg3J39yMqwlpetA
-----END CERTIFICATE-----
Generated at Sun Jun 29 16:57:32 2025 by rpki-client