Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA263736243D11F0A3AA3BE9DAE4EC9C.roa
File: FA263736243D11F0A3AA3BE9DAE4EC9C.roa (raw, json)
Hash identifier: hymCEvfDNtIBKnKtztDhtDbprWgbxOQ9Kq/US8hHIgg=
Subject key identifier: 5B:C7:0A:73:89:0A:BD:82:7A:A7:F2:0C:AF:BD:CA:D7:78:C9:C3:0A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017C0D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA263736243D11F0A3AA3BE9DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 14:35:06 +0000
ROA not before: Mon 28 Apr 2025 14:35:01 +0000
ROA not after: Fri 27 Mar 2026 14:35:01 +0000
asID: 984
IP address blocks: 154.90.26.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97293 (0x17c0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 28 14:35:01 2025 GMT
Not After : Mar 27 14:35:01 2026 GMT
Subject: CN=680f921a-6ac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5f:fe:de:ee:aa:cf:65:5b:63:f0:2d:6e:2c:
ce:ee:09:7c:e7:ad:50:49:ec:26:97:05:ba:10:57:
fa:1d:22:1c:c0:12:d8:37:55:14:7d:85:ac:26:46:
25:05:66:42:43:05:73:6e:2e:dc:bb:2d:4e:79:4c:
00:c7:c5:c5:76:07:0c:32:bf:8b:85:3d:48:12:32:
51:ae:1e:e7:27:11:36:ab:f2:1b:80:3c:7e:4f:61:
85:cf:fc:f3:0d:80:f1:25:bc:66:20:37:21:9a:bf:
38:4c:6e:b7:5f:17:35:cf:df:4f:f7:fc:f9:02:58:
c5:8b:3e:b4:13:60:b5:7b:cc:93:e2:93:eb:a5:a7:
83:51:5d:4a:4e:5d:d4:5c:8e:01:e0:37:31:d0:3e:
1a:97:59:d6:58:7e:ac:8c:41:fe:0a:89:65:e2:1a:
0e:e0:31:bc:ea:55:03:87:97:3e:84:a1:8e:b8:cb:
f5:39:ab:07:f4:2b:f1:80:74:09:6d:29:11:c5:44:
84:a3:57:55:12:2e:6d:e8:af:f1:4b:1c:e9:58:e9:
fa:ac:e8:eb:9e:fa:eb:d7:e5:c2:92:0f:93:02:ae:
22:d0:1c:24:7a:7d:6f:ec:93:d4:6c:14:98:fa:52:
88:59:80:51:7d:42:b6:60:54:57:39:55:bf:b7:eb:
f2:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C7:0A:73:89:0A:BD:82:7A:A7:F2:0C:AF:BD:CA:D7:78:C9:C3:0A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA263736243D11F0A3AA3BE9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.26.0/24
Signature Algorithm: sha256WithRSAEncryption
32:81:d6:31:ea:d7:55:1f:15:01:d1:5e:66:d8:2f:76:ef:22:
42:1c:13:f6:3f:d7:ed:01:5d:46:29:f3:24:db:7a:ce:3e:8e:
53:62:ba:fa:bc:c0:b0:c8:d4:4d:8c:20:5e:71:d7:77:1a:78:
74:73:e0:85:17:95:e4:a4:99:f8:94:33:1b:24:f1:6c:6c:bc:
c7:cf:3e:56:13:e4:4d:f9:c0:83:50:9b:a7:c8:db:79:0e:ca:
57:8b:a7:02:06:c2:3a:ba:76:f1:72:03:8f:de:75:e8:19:e6:
33:72:4b:75:50:66:9f:07:ce:a6:46:7a:00:37:0e:e5:0d:72:
10:f3:4e:0a:51:2c:32:e4:01:b3:ea:95:5d:87:a9:01:14:08:
3e:0b:30:32:07:44:f6:f2:c3:7b:b9:5e:cf:64:ec:26:cc:88:
57:81:a3:5d:42:44:95:57:d5:e0:da:dd:b3:2b:e2:14:1c:fb:
8b:7c:37:cd:03:4e:29:70:f7:90:ef:55:42:86:e4:b9:7c:0e:
21:62:95:0b:9e:70:9f:56:be:6c:ed:96:e2:b4:b9:2a:f6:2a:
ca:4f:a5:54:8e:1e:82:3d:8b:b6:0b:4d:a4:05:63:99:9f:28:
fa:0b:6b:e1:aa:82:2b:d5:a3:51:c8:66:cd:2a:f7:46:4a:2b:
16:bf:a6:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:41:35 2025 by rpki-client