Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/698B48805D7011F0BB77F1A4DAE4EC9C.roa
File: 698B48805D7011F0BB77F1A4DAE4EC9C.roa (raw, json)
Hash identifier: urL/Lq1WG+myk3FOGiBrdIpk/wF/IeiNQ6D6lfTB44U=
Subject key identifier: 20:70:DB:B9:E7:D5:20:89:24:8B:ED:5D:C9:C0:DF:71:2A:F7:88:BF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018D2F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/698B48805D7011F0BB77F1A4DAE4EC9C.roa
Signing time: Thu 10 Jul 2025 09:29:44 +0000
ROA not before: Thu 10 Jul 2025 09:29:39 +0000
ROA not after: Sat 16 Aug 2025 09:29:39 +0000
asID: 22773
IP address blocks: 154.82.11.0/24 maxlen: 24
154.82.12.0/24 maxlen: 24
154.82.13.0/24 maxlen: 24
154.82.14.0/24 maxlen: 24
154.82.15.0/24 maxlen: 24
154.85.12.0/24 maxlen: 24
154.85.22.0/24 maxlen: 24
154.85.23.0/24 maxlen: 24
154.85.104.0/24 maxlen: 24
154.85.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 23 Jul 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101679 (0x18d2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 10 09:29:39 2025 GMT
Not After : Aug 16 09:29:39 2025 GMT
Subject: CN=686f8808-c027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a1:75:0b:7c:9e:86:a1:3a:c1:0e:7f:b4:7a:
7d:bb:f9:7b:dd:22:7f:b6:3b:f5:49:31:36:0a:c6:
5b:72:ef:3c:08:6f:74:df:87:6e:c1:5f:76:31:e6:
70:8d:1c:cd:b9:9a:2a:b2:8d:59:f7:b4:06:4d:1b:
38:4d:34:b3:3d:e3:be:78:fe:70:63:e4:f5:0d:fb:
57:48:70:eb:3d:e9:74:c8:9f:fa:24:53:dc:68:33:
5a:b8:7b:8f:00:50:53:d2:7c:3a:f6:5a:27:67:bb:
97:7d:71:dc:66:02:a8:eb:20:53:b0:66:23:8b:1d:
2a:0d:9f:fd:ea:e5:da:87:82:6a:d0:d3:ea:9b:6f:
d6:c3:7f:7d:1d:f0:f9:38:a4:c8:31:9b:6c:b9:6a:
4b:dc:a0:9e:fd:3c:9a:64:00:03:2e:dd:6d:b6:e2:
87:9b:e9:05:d7:55:57:32:69:b3:89:e0:ec:5b:a8:
df:69:c9:96:d6:4b:00:d5:93:be:6d:85:90:1c:db:
e9:85:e5:4e:04:a5:c7:38:a8:f2:1b:96:23:4b:6d:
d4:a7:f7:a5:ce:52:16:94:d4:fc:cf:f4:60:49:44:
de:bb:ca:0d:0c:b1:c4:d0:29:62:87:98:5b:19:fb:
b8:5f:37:27:ea:27:2e:5b:43:1d:da:de:4e:cb:b6:
a6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:70:DB:B9:E7:D5:20:89:24:8B:ED:5D:C9:C0:DF:71:2A:F7:88:BF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/698B48805D7011F0BB77F1A4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.11.0-154.82.15.255
154.85.12.0/24
154.85.22.0/23
154.85.104.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:27:53:75:74:3e:48:5e:b2:18:73:52:84:cc:bd:41:ab:5a:
9b:f6:16:e1:c8:2f:00:a1:ff:2e:9d:6d:d5:72:e0:c2:a2:7d:
94:46:eb:1d:f4:c8:68:01:d9:de:f8:45:34:bb:ef:a8:28:fa:
3a:52:d7:08:39:01:3f:b2:4f:a0:34:9f:9f:20:7e:7e:c2:ca:
c8:ba:1d:b1:0e:24:af:dc:25:6e:15:45:f6:36:45:9b:4f:04:
41:bf:60:4a:06:05:88:db:e0:1b:fe:2d:17:df:f6:89:89:0b:
19:50:a2:26:4c:f2:ee:e8:39:25:63:bb:aa:9c:00:28:30:ce:
80:8a:11:90:66:b6:df:50:b5:84:8d:b3:4c:21:38:29:26:1f:
62:18:35:48:eb:07:54:54:fa:68:05:62:6a:96:51:22:fd:ff:
67:6c:3d:6a:56:a7:a6:d6:d2:83:23:a6:8a:36:4e:81:da:6b:
a9:16:af:07:77:96:58:36:87:0d:fe:ea:f7:da:a3:4c:5f:55:
11:61:e1:bd:36:eb:85:be:2b:4a:a8:8b:e0:3b:5c:2f:e5:72:
18:ad:17:7e:49:1e:ed:64:35:b5:39:31:cb:80:98:3a:1a:8e:
15:f7:3b:4d:14:38:d9:f4:68:1f:6d:ad:84:28:db:ed:a2:c9:
7d:33:8d:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 12:34:12 2025 by rpki-client