Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CD9336C5AB311F099738ABADAE4EC9C.roa
File: 2CD9336C5AB311F099738ABADAE4EC9C.roa (raw, json)
Hash identifier: o0bHWtHj/8AevB+5/nzhQsUr4t2ne1Yv3S7opLIJv1Y=
Subject key identifier: AD:B0:3B:29:B4:C5:4D:58:5A:32:32:51:9D:70:7E:65:52:FA:13:D7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018BC6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CD9336C5AB311F099738ABADAE4EC9C.roa
Signing time: Sun 06 Jul 2025 21:50:05 +0000
ROA not before: Sun 06 Jul 2025 21:50:00 +0000
ROA not after: Wed 03 Sep 2025 21:50:00 +0000
asID: 18229
IP address blocks: 154.206.22.0/24 maxlen: 24
154.206.29.0/24 maxlen: 24
154.210.172.0/24 maxlen: 24
154.210.173.0/24 maxlen: 24
154.210.174.0/24 maxlen: 24
154.210.175.0/24 maxlen: 24
154.210.176.0/24 maxlen: 24
154.210.182.0/24 maxlen: 24
154.210.191.0/24 maxlen: 24
154.210.192.0/24 maxlen: 24
154.210.193.0/24 maxlen: 24
154.210.194.0/24 maxlen: 24
154.210.195.0/24 maxlen: 24
154.210.196.0/24 maxlen: 24
154.210.197.0/24 maxlen: 24
154.210.198.0/24 maxlen: 24
154.210.199.0/24 maxlen: 24
154.210.200.0/24 maxlen: 24
154.210.201.0/24 maxlen: 24
154.210.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101318 (0x18bc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 6 21:50:00 2025 GMT
Not After : Sep 3 21:50:00 2025 GMT
Subject: CN=686aef8d-ae2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1d:61:0e:bb:e3:af:f0:be:49:b4:a6:ff:0f:
d4:33:ce:29:84:ed:3c:6c:7f:35:76:78:97:ab:93:
2f:85:56:20:ed:3c:39:2c:5d:63:f2:e1:30:86:12:
0b:8d:92:2f:f2:47:45:56:b0:85:6e:b7:0a:5c:48:
11:86:a6:94:91:28:58:4e:5a:97:f0:f0:08:f4:70:
13:84:57:33:22:9a:c4:ab:93:a3:20:2e:95:ce:96:
3e:c3:c1:99:2d:af:9a:68:58:34:4b:b9:b7:10:ec:
21:60:cd:aa:f0:6b:9a:c6:61:0e:2c:c2:dc:27:5d:
a4:5e:71:cf:95:c9:9f:a5:ee:8d:ff:c8:92:cc:27:
e5:65:cb:9c:aa:5f:be:87:c9:dd:ab:1d:05:26:43:
6e:8c:3f:3e:21:ca:14:b5:4d:99:c4:cf:26:be:de:
b1:0c:9b:b0:97:c8:cc:13:90:54:31:f7:a1:cd:8f:
b3:e3:25:c8:bf:52:9b:04:ee:cb:02:bb:b2:38:20:
bf:53:6e:8e:f0:31:46:08:22:01:e1:91:98:55:90:
c4:13:cb:39:50:65:68:1b:17:19:62:fa:2b:1e:17:
8c:67:f0:70:2f:39:5d:3a:ff:be:9e:1b:f6:c9:c1:
4f:0d:71:d7:8f:c2:92:fc:3b:d3:a3:4c:b9:3c:02:
f6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B0:3B:29:B4:C5:4D:58:5A:32:32:51:9D:70:7E:65:52:FA:13:D7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2CD9336C5AB311F099738ABADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.22.0/24
154.206.29.0/24
154.210.172.0-154.210.176.255
154.210.182.0/24
154.210.191.0-154.210.202.255
Signature Algorithm: sha256WithRSAEncryption
62:f6:1b:a9:1f:54:4c:dd:35:20:f1:9f:83:82:44:82:e7:c2:
da:82:d8:20:da:4c:fa:2d:14:fa:29:10:48:c9:b5:45:bd:65:
97:36:2a:72:d3:7f:d7:ed:8d:b8:b6:95:49:19:af:df:97:2e:
f9:f9:36:29:34:8c:37:93:60:bb:fb:a6:dd:26:14:84:b9:bb:
7d:49:5a:9f:28:56:66:94:76:9e:d0:7a:1a:8d:fd:bf:e0:cd:
7e:25:f3:5b:72:b3:bf:49:44:2e:5b:96:1a:8a:92:dd:fe:b8:
78:bd:97:60:ec:4c:01:c4:ec:2c:75:62:8e:1f:01:23:d4:58:
4e:aa:93:34:be:ad:32:79:76:a7:93:9b:1d:12:ce:48:32:7a:
82:f8:f2:73:aa:de:f6:7f:34:07:2e:4d:32:e8:c2:b0:73:26:
f8:6d:5b:ad:c2:4e:9c:52:20:34:12:0a:82:55:eb:f0:f3:22:
e0:4c:e0:8d:41:5b:a1:b9:a6:9b:c5:55:ef:5e:b4:76:a1:36:
e1:60:0b:e9:eb:b6:86:f3:bf:52:cf:64:6a:43:75:c1:32:cc:
7c:0e:a7:36:0d:1f:57:67:44:65:1b:4c:2a:cb:ce:ea:a7:c6:
d8:69:79:b9:cd:1b:eb:26:6c:c0:14:e3:07:e2:b5:29:31:2c:
ce:93:8e:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:01:08 2025 by rpki-client