Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/518D76A2630D11F0B63B198BDAE4EC9C.roa
File: 518D76A2630D11F0B63B198BDAE4EC9C.roa (raw, json)
Hash identifier: y0WpJxBGo1lKXewJBmYhjgGr8AAsMFAYMBD55WAb+Kk=
Subject key identifier: B4:63:18:D5:CD:84:1C:70:58:AC:D7:05:4A:E1:72:3E:14:A3:68:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018E32
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/518D76A2630D11F0B63B198BDAE4EC9C.roa
Signing time: Thu 17 Jul 2025 12:55:31 +0000
ROA not before: Thu 17 Jul 2025 12:55:26 +0000
ROA not after: Sat 30 Aug 2025 12:55:26 +0000
asID: 62240
IP address blocks: 154.194.112.0/24 maxlen: 24
154.194.113.0/24 maxlen: 24
154.194.114.0/24 maxlen: 24
154.194.115.0/24 maxlen: 24
154.194.116.0/24 maxlen: 24
154.195.24.0/24 maxlen: 24
154.195.25.0/24 maxlen: 24
154.195.26.0/24 maxlen: 24
154.195.27.0/24 maxlen: 24
154.195.28.0/24 maxlen: 24
154.195.29.0/24 maxlen: 24
154.195.30.0/24 maxlen: 24
154.195.31.0/24 maxlen: 24
154.195.96.0/24 maxlen: 24
154.195.188.0/24 maxlen: 24
154.195.189.0/24 maxlen: 24
154.195.190.0/24 maxlen: 24
154.195.191.0/24 maxlen: 24
154.196.82.0/24 maxlen: 24
154.196.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101938 (0x18e32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 12:55:26 2025 GMT
Not After : Aug 30 12:55:26 2025 GMT
Subject: CN=6878f2c2-9d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:25:f9:8c:9b:e2:03:3b:d8:b8:85:c6:d8:8c:
e2:ff:e9:fe:51:3e:2e:12:32:69:07:e1:d9:5e:75:
73:ff:cd:59:c4:87:cf:00:36:2a:7c:3d:a9:ea:48:
aa:88:a5:e2:3c:59:77:49:ea:30:cf:d6:d7:3e:a2:
36:7b:c3:c8:66:b9:f3:4f:ad:5b:52:e9:4e:1e:96:
8c:65:38:92:06:1f:a9:2d:48:95:f3:78:46:c0:66:
a4:df:81:59:05:23:c8:7e:ac:4b:f5:f2:82:fa:3c:
99:34:41:6b:3e:ea:33:b8:48:b3:46:b3:3c:0c:69:
b4:3d:73:3d:6c:93:e8:e8:d2:b1:6a:a9:d4:b9:fd:
3d:ef:2f:66:9a:ab:6d:7a:29:b8:c7:70:7f:0c:32:
d5:fb:7f:21:00:f0:c5:6a:63:2b:a5:15:47:86:79:
07:7b:7f:d3:c0:3a:3d:cb:92:cc:0e:ed:04:4d:a8:
6d:a4:07:86:de:ca:68:44:6b:8b:d7:ff:ff:1e:9c:
01:9d:e3:d4:12:66:ee:2b:fe:a8:9b:36:57:ea:3d:
11:8c:5e:f6:b1:ce:02:5f:4f:5e:ff:27:b6:93:45:
c2:f6:7e:5b:19:6e:54:b6:ff:f8:5e:d7:e0:15:f0:
23:98:bf:8c:1e:c4:31:45:48:53:6b:ba:da:e0:35:
10:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:63:18:D5:CD:84:1C:70:58:AC:D7:05:4A:E1:72:3E:14:A3:68:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/518D76A2630D11F0B63B198BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.112.0-154.194.116.255
154.195.24.0/21
154.195.96.0/24
154.195.188.0/22
154.196.82.0/24
154.196.86.0/24
Signature Algorithm: sha256WithRSAEncryption
60:6b:1f:03:4c:db:a8:f3:88:33:68:c4:d4:b1:1c:b8:ef:2f:
ae:69:0b:3f:ed:d6:42:1b:2d:21:f4:92:8b:f3:87:ff:2e:48:
ae:19:ea:f8:63:b0:e8:f5:38:5d:1d:6c:8f:4b:6c:3f:f4:bb:
b0:e3:25:87:f0:f5:39:d7:5f:c5:ed:f9:33:18:6a:14:b1:4f:
1c:69:ca:6a:3f:7c:1c:2c:c3:b4:6f:1e:47:d3:0d:6d:7d:eb:
e3:65:85:50:0e:2c:72:fd:16:a7:34:d5:d9:54:da:8b:4c:a5:
b3:a2:0b:db:a2:a8:e7:27:d3:d4:3a:f4:fa:da:5f:c0:96:94:
6a:99:b0:64:53:6f:67:b4:df:ad:bd:64:60:2a:d6:5a:af:5b:
17:a6:6d:1b:59:88:ab:c0:97:dd:5e:72:4c:b3:19:a9:b8:c8:
13:0e:a9:51:f4:23:b1:6a:5b:b1:bf:87:df:32:b2:b5:2b:43:
f1:83:30:8c:a7:54:bd:e9:a0:6d:9e:10:05:ab:66:f8:a8:84:
dc:97:4b:ff:1f:10:3c:f6:26:d7:23:5b:79:56:10:f3:e5:4a:
45:62:41:42:73:cd:89:7b:40:75:c5:ac:60:b2:4c:1a:9f:57:
54:73:d5:62:74:82:a5:9a:d9:95:46:e2:9f:29:7d:bb:bf:fb:
39:e3:bd:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 22:40:57 2025 by rpki-client