Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F89B3C40259111F093CC55D6DAE4EC9C.roa
File: F89B3C40259111F093CC55D6DAE4EC9C.roa (raw, json)
Hash identifier: IIkIylXh6V2QdrFwA8dbCMWzFgXWr216uQoEm7OiSos=
Subject key identifier: BE:F7:83:E7:7B:49:29:B0:5A:71:B7:95:11:00:D6:DB:D6:6A:68:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017D0C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F89B3C40259111F093CC55D6DAE4EC9C.roa
Signing time: Wed 30 Apr 2025 07:08:52 +0000
ROA not before: Wed 30 Apr 2025 07:08:47 +0000
ROA not after: Wed 04 Jun 2025 07:08:47 +0000
asID: 61112
IP address blocks: 154.88.66.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 17 May 2025 09:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97548 (0x17d0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 07:08:47 2025 GMT
Not After : Jun 4 07:08:47 2025 GMT
Subject: CN=6811cc84-a20f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:43:8f:7f:e4:28:31:b7:0d:ab:75:ad:10:6b:
48:d2:4c:4e:00:b5:42:4a:aa:29:aa:2d:aa:4e:7e:
8e:3e:65:fe:db:ef:1b:8f:cf:cc:53:29:b2:5e:38:
a9:c9:11:ff:d0:60:64:c3:a3:7d:00:96:73:c1:ec:
47:4f:58:10:67:0b:fe:e7:ff:8b:2f:0a:71:1f:36:
ec:c0:7d:c7:be:54:da:6d:09:ca:a5:4b:17:c9:1f:
ec:99:4c:3b:da:4c:13:f0:33:ba:08:82:e2:63:48:
b5:b6:0a:38:00:b6:74:14:7d:3e:de:ba:31:b8:fa:
5c:c8:d8:45:74:d4:32:e8:7d:ae:b5:3c:cf:e8:db:
2b:52:97:e3:31:b8:d3:1a:5d:d3:78:91:c9:50:e0:
36:4b:0d:07:d4:c1:91:51:70:35:7d:71:f0:4a:1c:
60:9e:8c:bb:c0:01:fb:97:66:e2:71:6c:02:8d:d2:
c7:70:90:19:f3:20:37:cb:33:58:37:8c:96:12:97:
35:b4:a7:05:4d:a7:1a:d4:73:4d:10:69:d0:be:2e:
9a:98:0f:c3:ed:b6:6f:6d:96:cd:0a:3a:7e:0f:50:
1d:c0:3d:6e:dc:01:71:eb:f2:3f:da:94:86:5f:54:
e1:c9:82:d3:64:78:3a:ba:fd:2d:06:ce:8e:4d:38:
72:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F7:83:E7:7B:49:29:B0:5A:71:B7:95:11:00:D6:DB:D6:6A:68:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F89B3C40259111F093CC55D6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.66.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:15:b5:bc:8c:26:90:52:c8:bf:0b:69:6e:76:6e:9a:5a:8b:
52:74:6b:09:8d:a7:cc:f4:f3:0f:e4:b9:ad:8e:fd:6a:65:ae:
2b:2f:2a:77:6a:e2:57:4c:1a:e6:eb:8e:ef:51:01:79:60:c9:
02:36:98:9e:65:16:fe:ef:18:62:19:c2:28:88:d6:6e:56:a9:
79:2a:e9:45:49:a2:36:6c:80:42:fe:73:2b:99:00:13:e2:b9:
91:77:5c:2f:97:f8:57:81:31:3b:11:48:52:58:5d:32:c8:61:
f5:48:48:e8:de:52:07:c4:cb:de:d5:d8:30:8d:f0:14:80:51:
bb:06:b3:96:c6:97:05:5b:ba:bc:fb:89:e0:24:3c:62:54:fd:
46:15:81:0b:e7:67:55:4f:01:8c:c0:c1:85:05:e0:44:59:63:
c7:06:be:7e:71:0d:04:9c:f5:3e:5e:27:04:8a:29:a0:f0:ac:
65:2c:43:be:d8:90:c6:d4:38:62:f4:9a:84:6b:10:ad:77:85:
2d:4d:80:fe:90:c7:f9:bf:9c:b2:f9:2e:a4:61:a2:51:a4:d8:
81:b8:3e:57:88:f1:04:92:c3:50:3c:96:5f:01:fc:53:29:2c:
a9:4a:74:2d:e7:77:7e:d2:4c:9e:f2:31:d6:ce:d5:96:c8:ce:
6c:34:bc:fb
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAX0MMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNDMwMDcwODQ3WhcNMjUwNjA0MDcwODQ3WjAYMRYw
FAYDVQQDEw02ODExY2M4NC1hMjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8UOPf+QoMbcNq3WtEGtI0kxOALVCSqopqi2qTn6OPmX+2+8bj8/MUymy
XjipyRH/0GBkw6N9AJZzwexHT1gQZwv+5/+LLwpxHzbswH3HvlTabQnKpUsXyR/s
mUw72kwT8DO6CILiY0i1tgo4ALZ0FH0+3roxuPpcyNhFdNQy6H2utTzP6NsrUpfj
MbjTGl3TeJHJUOA2Sw0H1MGRUXA1fXHwShxgnoy7wAH7l2bicWwCjdLHcJAZ8yA3
yzNYN4yWEpc1tKcFTaca1HNNEGnQvi6amA/D7bZvbZbNCjp+D1AdwD1u3AFx6/I/
2pSGX1ThyYLTZHg6uv0tBs6OTThycwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFL73
g+d7SSmwWnG3lREA1tvWamjMMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GODlCM0M0MDI1OTExMUYwOTNDQzU1RDZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmlhCMA0GCSqGSIb3DQEB
CwUAA4IBAQCzFbW8jCaQUsi/C2ludm6aWotSdGsJjafM9PMP5Lmtjv1qZa4rLyp3
auJXTBrm647vUQF5YMkCNpieZRb+7xhiGcIoiNZuVql5KulFSaI2bIBC/nMrmQAT
4rmRd1wvl/hXgTE7EUhSWF0yyGH1SEjo3lIHxMve1dgwjfAUgFG7BrOWxpcFW7q8
+4ngJDxiVP1GFYEL52dVTwGMwMGFBeBEWWPHBr5+cQ0EnPU+XicEiimg8KxlLEO+
2JDG1Dhi9JqEaxCtd4UtTYD+kMf5v5yy+S6kYaJRpNiBuD5XiPEEksNQPJZfAfxT
KSypSnQt53d+0kye8jHWztWWyM5sNLz7
-----END CERTIFICATE-----
Generated at Thu May 15 23:45:52 2025 by rpki-client