Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39EA65A0598F11F0BBBE4AD9DAE4EC9C.roa
File: 39EA65A0598F11F0BBBE4AD9DAE4EC9C.roa (raw, json)
Hash identifier: pD2fJ8vA8/GM999Qdo565+VRoN4yH2j/9KM6e+gn6hQ=
Subject key identifier: E2:0E:C2:2B:98:CE:94:2D:4A:1B:86:4E:B3:94:01:16:51:B0:5E:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018ADE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39EA65A0598F11F0BBBE4AD9DAE4EC9C.roa
Signing time: Sat 05 Jul 2025 11:00:14 +0000
ROA not before: Sat 05 Jul 2025 11:00:09 +0000
ROA not after: Sun 10 Aug 2025 11:00:09 +0000
asID: 51896
IP address blocks: 154.194.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 24 Jul 2025 00:29:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101086 (0x18ade)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 5 11:00:09 2025 GMT
Not After : Aug 10 11:00:09 2025 GMT
Subject: CN=686905be-065c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:61:1a:3b:24:2b:20:e9:c6:09:66:f3:01:ee:
0b:0c:c1:18:91:a9:62:11:e6:8e:97:ac:f2:b3:00:
ad:42:df:70:6d:b9:a2:86:85:a8:e7:e2:8e:3e:b6:
d8:07:37:c2:52:dc:1f:bf:1c:66:af:7d:b4:67:eb:
e0:a3:7e:27:5c:b2:d3:c1:76:83:ac:a1:82:ac:f8:
d8:8e:a4:97:16:89:3b:4b:00:77:f8:a5:61:a8:25:
aa:50:25:d5:6e:3a:f2:30:44:ed:79:e7:61:4d:e2:
01:30:ba:9a:f2:1e:bb:3f:90:b7:ba:17:6f:36:bb:
df:36:49:e4:c8:80:72:8e:be:5d:9b:66:bd:94:ff:
5b:3e:59:06:fb:d0:2f:69:c4:c1:7d:0a:7b:f2:56:
dc:69:8e:13:0a:38:40:b9:64:d5:38:b3:f7:78:7b:
e0:c2:a1:e5:5d:69:f1:12:a5:1f:ee:c3:2e:23:1e:
37:b2:18:91:3c:39:f4:ce:fd:d4:cd:6a:6d:91:a9:
e8:3b:34:5d:71:96:a8:d1:3c:12:7a:85:d5:38:b4:
c7:7e:a1:49:89:a5:8d:ad:94:9b:19:c9:0e:a6:34:
8c:4a:b3:5b:53:44:af:e5:7d:51:06:94:5d:6f:a9:
2f:49:7d:4f:01:61:14:37:07:c3:f4:92:eb:9e:8d:
2b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:0E:C2:2B:98:CE:94:2D:4A:1B:86:4E:B3:94:01:16:51:B0:5E:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/39EA65A0598F11F0BBBE4AD9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.43.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ab:41:84:19:82:c2:6a:86:b1:46:43:26:be:40:31:11:cd:
de:2a:99:8d:1a:57:a7:ac:87:59:46:05:aa:8a:cb:a2:a7:dd:
52:a4:14:68:d2:d7:e5:c4:a1:2b:7e:8a:c0:d9:f3:d8:15:b8:
92:f6:69:fa:ae:0b:e1:18:53:39:6a:12:a8:54:b0:5c:a7:a1:
3f:46:17:75:d8:17:d5:ea:d0:66:f4:70:79:17:2a:59:96:92:
08:76:de:8b:be:b4:00:4f:97:f1:eb:46:9c:aa:d5:2f:a7:13:
f7:be:84:49:28:db:6c:06:18:94:2a:83:e2:0f:46:2c:a0:91:
ce:51:cc:15:cc:ce:46:15:d0:35:f9:29:e1:5a:67:9f:03:6c:
1f:a1:b1:af:83:39:bc:7c:99:9a:df:5d:06:bc:14:e8:d4:dd:
70:db:7a:e6:e4:7b:f7:23:91:bd:f0:05:d4:a3:04:f6:29:b6:
69:21:6b:d0:8c:1d:6b:90:ea:18:85:c7:53:ec:1d:a8:76:b9:
8b:4a:a5:92:56:43:5e:2e:fb:e9:12:46:7d:7d:12:b4:3e:56:
d7:d4:1f:9f:fc:20:65:ae:05:df:fb:15:50:2b:a7:c0:b1:0d:
43:60:c6:55:60:ad:56:12:08:6a:05:32:5c:e5:93:3c:52:18:
a1:6e:a0:d9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYreMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNzA1MTEwMDA5WhcNMjUwODEwMTEwMDA5WjAYMRYw
FAYDVQQDEw02ODY5MDViZS0wNjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArmEaOyQrIOnGCWbzAe4LDMEYkaliEeaOl6zyswCtQt9wbbmihoWo5+KO
PrbYBzfCUtwfvxxmr320Z+vgo34nXLLTwXaDrKGCrPjYjqSXFok7SwB3+KVhqCWq
UCXVbjryMETteedhTeIBMLqa8h67P5C3uhdvNrvfNknkyIByjr5dm2a9lP9bPlkG
+9AvacTBfQp78lbcaY4TCjhAuWTVOLP3eHvgwqHlXWnxEqUf7sMuIx43shiRPDn0
zv3UzWptkanoOzRdcZao0TwSeoXVOLTHfqFJiaWNrZSbGckOpjSMSrNbU0Sv5X1R
BpRdb6kvSX1PAWEUNwfD9JLrno0ryQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOIO
wiuYzpQtShuGTrOUARZRsF7IMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zOUVBNjVBMDU5OEYxMUYwQkJCRTRBRDlEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIrMA0GCSqGSIb3DQEB
CwUAA4IBAQB6q0GEGYLCaoaxRkMmvkAxEc3eKpmNGlenrIdZRgWqisuip91SpBRo
0tflxKErforA2fPYFbiS9mn6rgvhGFM5ahKoVLBcp6E/Rhd12BfV6tBm9HB5FypZ
lpIIdt6LvrQAT5fx60acqtUvpxP3voRJKNtsBhiUKoPiD0YsoJHOUcwVzM5GFdA1
+SnhWmefA2wfobGvgzm8fJma310GvBTo1N1w23rm5Hv3I5G98AXUowT2KbZpIWvQ
jB1rkOoYhcdT7B2odrmLSqWSVkNeLvvpEkZ9fRK0PlbX1B+f/CBlrgXf+xVQK6fA
sQ1DYMZVYK1WEghqBTJc5ZM8UhihbqDZ
-----END CERTIFICATE-----
Generated at Tue Jul 22 05:09:32 2025 by rpki-client