Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/313C89D25B7011F09F54EE8CDAE4EC9C.roa
File: 313C89D25B7011F09F54EE8CDAE4EC9C.roa (raw, json)
Hash identifier: auf7C08iI3Y8CawvmxgCLCk9hrrC9M9g/zuyYQ99gjQ=
Subject key identifier: AF:14:8F:84:D9:26:83:E0:8C:CE:00:E3:F5:B3:2B:C7:96:71:0D:1E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018C5C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/313C89D25B7011F09F54EE8CDAE4EC9C.roa
Signing time: Mon 07 Jul 2025 20:23:07 +0000
ROA not before: Mon 07 Jul 2025 20:23:02 +0000
ROA not after: Wed 03 Sep 2025 20:23:02 +0000
asID: 150008
IP address blocks: 154.206.17.0/24 maxlen: 24
154.206.18.0/24 maxlen: 24
154.209.252.0/24 maxlen: 24
154.209.253.0/24 maxlen: 24
154.209.254.0/24 maxlen: 24
154.209.255.0/24 maxlen: 24
154.210.213.0/24 maxlen: 24
154.210.224.0/24 maxlen: 24
154.210.225.0/24 maxlen: 24
154.210.226.0/24 maxlen: 24
154.210.227.0/24 maxlen: 24
154.210.228.0/24 maxlen: 24
154.210.229.0/24 maxlen: 24
154.210.230.0/24 maxlen: 24
154.210.231.0/24 maxlen: 24
154.210.232.0/24 maxlen: 24
154.210.233.0/24 maxlen: 24
154.210.234.0/24 maxlen: 24
154.210.235.0/24 maxlen: 24
154.210.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101468 (0x18c5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 7 20:23:02 2025 GMT
Not After : Sep 3 20:23:02 2025 GMT
Subject: CN=686c2cab-c365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ae:ca:a1:ff:30:50:63:bf:30:12:d5:b3:b2:
96:b8:11:68:9c:03:5e:73:ee:1d:af:09:a4:c4:42:
ed:83:ba:e0:a3:2d:93:79:02:2d:85:e2:65:65:c6:
4f:cb:3b:e4:0a:55:1b:04:06:cc:88:74:86:d8:3d:
ab:63:95:3c:ac:cc:bc:fa:cc:05:23:78:0b:7c:9e:
97:31:92:b9:0c:06:36:2d:1a:31:67:52:98:4d:b9:
c8:88:2e:6c:89:3e:8c:06:dc:4c:b2:b5:31:89:22:
40:4e:08:2a:7a:cd:37:dc:22:0f:eb:1d:35:3f:db:
6c:b0:c4:bb:bc:db:24:07:58:da:47:be:7b:3a:05:
65:dc:4e:5c:96:22:3c:af:92:3c:08:a1:ac:8e:39:
1a:7c:ee:84:aa:94:fc:d3:01:38:f8:be:38:5f:94:
e2:fb:e1:19:2b:1e:fb:de:8a:c7:b0:ee:fb:87:3d:
84:99:20:ad:1d:f7:9c:68:d7:32:93:63:d7:4e:50:
04:b8:73:bb:e8:1b:58:14:9f:f4:9c:fc:70:f4:e0:
f2:06:10:30:b1:eb:27:a6:bd:b4:dc:04:14:9b:5a:
7d:8c:b6:d4:7a:ab:28:30:ca:26:7f:5e:46:61:41:
7a:2a:30:be:81:30:56:b1:b4:ae:76:88:ef:72:93:
54:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:14:8F:84:D9:26:83:E0:8C:CE:00:E3:F5:B3:2B:C7:96:71:0D:1E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/313C89D25B7011F09F54EE8CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.17.0-154.206.18.255
154.209.252.0/22
154.210.213.0/24
154.210.224.0-154.210.236.255
Signature Algorithm: sha256WithRSAEncryption
d1:40:4e:65:79:ee:43:c2:fe:96:02:50:6b:b4:7c:74:33:2e:
ed:7f:b8:0c:c0:54:ed:b3:6d:19:1e:26:60:ac:b3:8a:b2:63:
06:59:be:b0:4d:e5:60:6e:5f:cd:23:39:d5:df:6e:a3:18:df:
32:9b:80:ff:a0:c5:79:17:e9:31:75:ac:ce:bf:ea:8f:29:ef:
f5:e8:33:5f:0e:1a:f0:26:f9:27:49:a2:fb:ac:0f:94:b0:1f:
64:14:1a:54:20:fa:f5:45:96:4d:5b:f9:5b:03:c1:85:5b:d8:
29:1c:c3:c6:fa:dc:5f:23:33:53:c1:d5:3d:7b:94:3a:7c:8f:
86:09:e9:d6:26:09:cc:66:49:2d:61:bc:32:de:c7:fc:a9:41:
f3:15:79:ee:af:87:66:25:94:1a:c5:ab:cf:a5:ba:68:aa:58:
0d:ad:be:4d:7c:c5:60:80:bf:6b:46:e2:8d:e1:15:2c:70:b9:
66:eb:96:c2:7d:6e:c1:87:61:fa:64:2c:f8:d4:46:9e:2b:04:
b3:b8:f3:59:4a:0c:e2:ca:be:50:2d:5e:69:4a:92:be:42:f5:
28:ac:e8:53:fc:00:9e:a6:0b:33:af:67:94:c7:3b:2f:e6:99:
46:c4:15:a2:ca:2d:49:c2:19:ee:fa:b1:3b:e2:6a:b9:1f:8b:
15:7c:3d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 12:58:57 2025 by rpki-client