Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/367EFAFA5D0B11F0BA101385DAE4EC9C.roa
File: 367EFAFA5D0B11F0BA101385DAE4EC9C.roa (raw, json)
Hash identifier: wnIQ40eigXfrOujg1indWCal/xoOx2a7yX/3a1wXiu4=
Subject key identifier: 7D:6E:97:E8:80:BB:66:F3:1A:F8:16:DD:30:6A:33:67:D2:D2:99:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018D20
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/367EFAFA5D0B11F0BA101385DAE4EC9C.roa
Signing time: Wed 09 Jul 2025 21:25:19 +0000
ROA not before: Wed 09 Jul 2025 21:25:14 +0000
ROA not after: Sun 24 Aug 2025 21:25:14 +0000
asID: 58931
IP address blocks: 154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101664 (0x18d20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 9 21:25:14 2025 GMT
Not After : Aug 24 21:25:14 2025 GMT
Subject: CN=686ede3f-af85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:24:29:a2:d8:ff:b6:ac:e7:e1:1b:ed:18:65:
28:50:72:4e:3b:25:1b:26:cc:ec:2d:b4:49:f9:34:
92:4e:10:7b:e0:72:f2:02:a3:a4:b0:fc:bf:f3:82:
9a:b1:e4:ce:51:c3:72:46:70:03:f9:af:49:90:61:
b9:03:50:2b:d0:e7:f2:de:aa:8f:8e:21:48:7e:dc:
5e:29:01:89:b9:48:d7:3f:a3:5f:53:be:b6:b8:5c:
43:98:32:a3:4b:d6:d1:0f:5e:5d:41:e3:7b:3c:31:
05:d2:3d:64:78:85:e7:f9:20:15:4c:48:7d:c9:06:
2a:6a:c5:c6:20:42:55:50:cc:23:0e:c1:22:a8:be:
f2:3b:2a:27:ce:2b:9a:b8:83:a1:93:31:b4:b3:56:
79:86:9e:cb:4f:56:1e:82:4d:7e:c4:5b:46:04:7e:
6a:f0:59:09:b8:91:e8:83:bf:97:7a:71:a7:f6:1c:
62:e2:7a:12:a5:c4:02:b2:86:26:60:ff:52:1c:93:
86:f1:6c:3c:b3:9a:c9:bb:f2:dd:be:57:15:97:a7:
1e:c1:ac:ba:54:fb:af:a8:0b:87:d4:18:24:6c:e0:
3a:80:de:de:99:71:81:7c:35:dd:5d:9f:e3:14:72:
a6:15:cc:43:4f:ee:bc:3b:af:74:16:3e:59:71:81:
a3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:6E:97:E8:80:BB:66:F3:1A:F8:16:DD:30:6A:33:67:D2:D2:99:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/367EFAFA5D0B11F0BA101385DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:fd:93:1e:bd:29:5b:20:25:f4:02:74:27:66:6b:fc:f8:6f:
47:28:d9:ca:37:10:8c:45:a8:40:cd:14:ce:f2:4e:28:e0:45:
7a:04:ef:2e:36:e1:64:d8:33:d2:4b:e9:2a:0c:95:4f:a3:ca:
ba:76:94:23:01:7c:8b:1b:92:fd:66:20:3b:a7:46:e9:7d:08:
70:8e:d0:76:44:f9:42:a3:b0:9b:c9:23:46:f0:a5:c8:df:28:
06:76:e1:74:40:2e:07:98:9f:2a:ae:62:9f:de:d9:aa:52:87:
da:56:d3:d5:5a:43:1a:67:31:fa:62:8a:29:5c:d8:c1:2a:15:
b7:83:ae:1d:f3:e3:6e:aa:6c:13:72:b8:ea:8f:74:ca:54:86:
41:34:bf:ed:e2:26:f1:7e:ee:4d:19:3e:59:fc:39:58:1f:f5:
48:b9:d3:04:ee:00:06:07:5c:67:de:fe:2a:8c:83:94:52:bf:
a5:b0:24:87:a3:b0:af:c4:43:8a:49:3a:f1:5e:79:d7:d4:8b:
14:2a:ce:25:65:22:e0:83:98:4f:ac:c0:34:5f:fd:fe:f1:c0:
86:40:b6:73:67:6c:17:02:0b:66:e5:04:75:78:bd:76:7e:ec:
da:38:cf:78:d2:62:64:f7:3b:05:9c:35:2d:9b:23:0e:29:8d:
7c:f9:15:a0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAY0gMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNzA5MjEyNTE0WhcNMjUwODI0MjEyNTE0WjAYMRYw
FAYDVQQDEw02ODZlZGUzZi1hZjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxCQpotj/tqzn4RvtGGUoUHJOOyUbJszsLbRJ+TSSThB74HLyAqOksPy/
84KaseTOUcNyRnAD+a9JkGG5A1Ar0Ofy3qqPjiFIftxeKQGJuUjXP6NfU762uFxD
mDKjS9bRD15dQeN7PDEF0j1keIXn+SAVTEh9yQYqasXGIEJVUMwjDsEiqL7yOyon
ziuauIOhkzG0s1Z5hp7LT1Yegk1+xFtGBH5q8FkJuJHog7+XenGn9hxi4noSpcQC
soYmYP9SHJOG8Ww8s5rJu/LdvlcVl6ceway6VPuvqAuH1BgkbOA6gN7emXGBfDXd
XZ/jFHKmFcxDT+68O690Fj5ZcYGjvQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFH1u
l+iAu2bzGvgW3TBqM2fS0plyMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zNjdFRkFGQTVEMEIxMUYwQkExMDEzODVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml8YMA0GCSqGSIb3DQEB
CwUAA4IBAQCr/ZMevSlbICX0AnQnZmv8+G9HKNnKNxCMRahAzRTO8k4o4EV6BO8u
NuFk2DPSS+kqDJVPo8q6dpQjAXyLG5L9ZiA7p0bpfQhwjtB2RPlCo7CbySNG8KXI
3ygGduF0QC4HmJ8qrmKf3tmqUofaVtPVWkMaZzH6YoopXNjBKhW3g64d8+NuqmwT
crjqj3TKVIZBNL/t4ibxfu5NGT5Z/DlYH/VIudME7gAGB1xn3v4qjIOUUr+lsCSH
o7CvxEOKSTrxXnnX1IsUKs4lZSLgg5hPrMA0X/3+8cCGQLZzZ2wXAgtm5QR1eL12
fuzaOM940mJk9zsFnDUtmyMOKY18+RWg
-----END CERTIFICATE-----
Generated at Sun Jul 20 13:03:21 2025 by rpki-client