Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/256DEA628D6411F0B480D77CDAE4EC9C.roa
File: 256DEA628D6411F0B480D77CDAE4EC9C.roa (raw, json)
Hash identifier: AKgWJDM1WjIpksxIXe61hBvFuZjrAGVT3657J89Z5ww=
Subject key identifier: 73:F5:F3:25:09:B1:B6:13:8F:BA:05:68:05:E3:51:D7:5E:6B:F2:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019F12
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/256DEA628D6411F0B480D77CDAE4EC9C.roa
Signing time: Tue 09 Sep 2025 10:02:52 +0000
ROA not before: Tue 09 Sep 2025 10:02:45 +0000
ROA not after: Thu 16 Oct 2025 10:02:45 +0000
asID: 2914
IP address blocks: 154.83.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 10 Oct 2025 06:36:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106258 (0x19f12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 9 10:02:45 2025 GMT
Not After : Oct 16 10:02:45 2025 GMT
Subject: CN=68bffb4b-a8fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1e:c9:e9:31:ef:04:e4:ea:34:fe:7d:cf:12:
30:46:4d:22:ae:68:9e:38:79:56:b5:9e:21:83:c7:
73:6c:ee:57:05:cd:bd:49:0e:db:0a:b5:e2:45:eb:
2f:b4:1b:44:c9:4e:7a:f5:e0:2c:ed:d6:c7:4e:80:
29:15:d3:98:2b:dc:2f:7b:30:8b:e8:55:3c:6c:0a:
d5:e0:9c:6f:ea:28:c5:db:30:f7:ed:7b:c9:29:78:
6e:2d:96:2a:6f:1a:04:5e:85:aa:02:61:0c:5e:78:
7b:49:c7:6e:9b:78:3c:b7:0d:03:c0:7b:3f:cd:87:
2e:8c:42:55:b1:7f:cf:f9:1b:82:a2:68:a8:37:e1:
e7:d8:d1:f7:29:59:41:b0:19:ea:ee:a8:eb:55:c0:
b4:0a:40:5f:b4:de:83:5e:3f:e3:4c:f5:bc:a3:a6:
a6:f2:98:98:95:b4:6c:39:4d:4e:be:90:e5:63:8b:
74:90:63:28:72:3a:3e:9a:c4:ea:b2:fe:99:1a:f5:
c9:7d:77:f6:87:da:de:f3:ac:84:4a:a6:09:60:32:
a0:9c:b9:73:de:c2:e7:94:60:e3:d0:43:ed:e4:68:
48:8d:44:bf:4d:cc:65:c9:f3:11:ca:96:49:b8:41:
38:bf:1f:d5:22:3f:4e:9c:86:87:2b:43:5b:5a:54:
02:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F5:F3:25:09:B1:B6:13:8F:BA:05:68:05:E3:51:D7:5E:6B:F2:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/256DEA628D6411F0B480D77CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.11.0/24
Signature Algorithm: sha256WithRSAEncryption
07:77:28:cc:97:c7:12:67:87:04:48:65:7c:c2:11:79:05:34:
3c:68:02:fb:73:4e:d4:ae:8e:e5:6b:41:92:fe:cb:fb:44:58:
14:34:0f:55:22:4a:b5:cc:ec:fc:5d:f4:e9:14:40:dd:fe:70:
f2:f8:fd:fd:3d:2d:f7:56:86:df:5f:14:28:d4:2a:32:e2:6d:
15:4c:54:77:7e:36:8a:1b:ed:49:00:96:8a:eb:7d:c8:c3:c7:
51:94:e5:d3:0e:f5:a2:af:97:90:42:0f:00:26:cd:54:af:2d:
9b:d6:d2:3e:c9:52:10:d0:1b:10:fb:02:52:d4:08:c5:76:ce:
ab:30:41:5f:29:a1:f5:5c:a4:8e:8b:52:2e:21:c3:a5:8c:69:
7c:3a:c7:37:21:3e:3f:66:13:69:d6:4e:8a:78:05:0a:d2:e5:
2a:ac:96:1f:70:ab:e7:f4:ba:1e:f3:54:1f:f4:87:4f:af:43:
e8:db:59:3a:5d:ec:37:9c:85:a1:5e:02:ca:bf:70:52:af:a2:
3f:40:cb:19:b6:d5:2d:2f:02:e7:5b:95:f3:bd:b4:80:17:6c:
d6:5a:e8:77:4d:2c:00:43:ed:aa:1c:e5:d3:6b:b7:e1:e1:1d:
7b:15:c1:6b:ed:87:d9:44:ea:92:8d:d3:fb:64:0d:79:f1:a0:
ee:b3:8b:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 12:01:34 2025 by rpki-client