Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/029124D25B0511F0AB8F8CDFDAE4EC9C.roa
File: 029124D25B0511F0AB8F8CDFDAE4EC9C.roa (raw, json)
Hash identifier: YiiVayb2oQL1n4/evuJ0zmuPW0eNZRZzIs8Qn8ZoB5A=
Subject key identifier: B2:7C:39:2E:DD:4B:E0:F8:34:FC:67:79:42:CD:D5:7A:56:6E:A2:A0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018BF2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/029124D25B0511F0AB8F8CDFDAE4EC9C.roa
Signing time: Mon 07 Jul 2025 07:35:53 +0000
ROA not before: Mon 07 Jul 2025 07:35:48 +0000
ROA not after: Tue 05 Aug 2025 07:35:48 +0000
asID: 150750
IP address blocks: 154.208.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101362 (0x18bf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 7 07:35:48 2025 GMT
Not After : Aug 5 07:35:48 2025 GMT
Subject: CN=686b78d9-e536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:28:28:10:37:1b:dd:67:82:d8:56:65:c6:df:
6d:01:e3:62:97:0a:fc:7e:2c:4c:7f:47:0b:c4:13:
28:fb:ac:ce:51:f3:db:b9:23:15:e4:d0:b4:31:1a:
aa:a3:25:0c:d0:47:5a:4d:6b:d9:14:cb:3f:0b:8f:
1b:d6:4e:cc:98:ff:f9:72:1a:53:1c:ff:be:e4:a6:
e4:15:13:e6:33:1b:bb:d3:38:1e:3f:34:b7:f1:c7:
d6:31:cc:73:2f:9c:fc:22:89:c1:0e:fd:e5:94:b9:
5d:5d:32:e5:86:eb:62:be:af:f6:45:37:8b:ae:17:
d6:d5:1d:c8:b1:b7:7e:02:28:72:a3:4e:5b:ea:2c:
56:29:60:28:44:f5:b2:86:b2:aa:9a:30:dc:28:9f:
6a:95:5f:ac:3c:e9:14:1f:52:0b:51:dc:da:db:59:
6f:a5:34:1a:78:b0:59:75:00:53:fa:de:13:c5:31:
13:6e:df:6f:8e:1f:43:3d:e5:a0:da:1f:04:24:51:
d1:84:8d:cf:c3:2a:ad:16:2e:93:8c:1b:5a:85:57:
fe:61:b2:ca:24:03:67:01:d9:99:f0:1c:e7:f0:1a:
74:a0:dc:a1:ff:83:46:3f:7e:e6:6b:92:f3:54:00:
69:2c:81:a4:7c:49:bc:aa:d4:7b:80:c4:01:d2:91:
a2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:7C:39:2E:DD:4B:E0:F8:34:FC:67:79:42:CD:D5:7A:56:6E:A2:A0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/029124D25B0511F0AB8F8CDFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.32.0/19
Signature Algorithm: sha256WithRSAEncryption
d7:f6:69:0e:24:f0:5a:d9:9e:5e:c1:01:19:f9:b9:84:89:11:
cd:aa:eb:59:95:9e:16:e0:76:42:84:02:b6:33:bf:ba:ea:89:
a6:13:2f:cb:67:0e:c9:9e:b7:61:fe:48:c0:57:7d:a9:e3:ec:
15:4d:18:a6:34:de:b3:20:9e:07:bc:38:7c:8b:6c:84:6d:c7:
f3:12:fd:f4:b9:6f:b5:83:9d:c6:85:dd:a4:e5:bd:fc:83:22:
f0:03:fb:c1:ec:52:82:5f:59:da:64:46:e3:e1:61:72:e0:69:
30:b5:57:eb:8d:89:e8:5e:80:f3:fe:b2:46:0d:db:15:bb:c1:
01:ba:69:03:9d:27:db:35:e5:33:70:2f:65:fc:01:de:94:cf:
bd:c1:0a:a6:bc:b3:1f:c0:b3:3c:5a:c3:8a:af:15:a1:c1:1b:
d3:44:b0:55:1e:13:64:a2:44:3f:24:4a:08:d3:3e:69:fe:ee:
c1:90:c6:a0:37:07:76:47:70:dd:67:e2:53:f6:68:c6:7c:88:
8e:b2:c7:ce:1f:21:ea:8c:10:94:35:59:ed:98:e4:a5:85:1a:
b5:fa:1c:69:bd:8e:58:09:d2:da:9c:94:b1:de:56:ed:57:96:
17:46:de:4a:50:0b:6e:c9:30:d6:e3:72:c4:5f:cd:4c:07:35:
e8:8e:67:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 12:30:19 2025 by rpki-client