Do you have any GeoIP text rules created or enabled? You must have corresponding text rules to use along with the GeoIP database.
Enabling GeoIP in the YAML conf file only configures Suricata to lookup IP addresses in the GeoIP database. It does not provide the rules necessary to inspect the traffic and actually perform the geo-location. Here is an example GeoIP text rule that detects IP addresses originating from Japan:
alert ip any any -> any any (msg:"GeoIP from JP,Japan "; geoip:JP; sid:55555555; rev:1;)
Note that it uses the 'geoip:" keyword followed by the target country code.
I know about this, and I have also tested it this way. What I want to know is whether Suricata supports outputting geoip information (such as city, region, longitude and latitude) to alert logs