Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A4BEDDC5AA611F08076EEE9DAE4EC9C.roa
File: 6A4BEDDC5AA611F08076EEE9DAE4EC9C.roa (raw, json)
Hash identifier: 7JJLmlVOpSiVLHToQvivGVL8Gri+1pkpAXSIy79TgYM=
Subject key identifier: 6B:0D:C8:44:52:6D:DB:55:62:FB:21:C8:2F:E9:AF:BA:A0:94:97:3B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018BB6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A4BEDDC5AA611F08076EEE9DAE4EC9C.roa
Signing time: Sun 06 Jul 2025 20:18:45 +0000
ROA not before: Sun 06 Jul 2025 20:18:40 +0000
ROA not after: Sun 24 Aug 2025 20:18:40 +0000
asID: 138195
IP address blocks: 154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101302 (0x18bb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 6 20:18:40 2025 GMT
Not After : Aug 24 20:18:40 2025 GMT
Subject: CN=686ada25-51e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5d:1c:f7:35:fd:1e:90:8c:c7:d2:7c:fa:92:
a9:ac:59:7a:f5:57:d7:46:a0:95:2e:5f:f7:57:e9:
1f:30:1a:fc:d5:f4:04:2e:2f:ba:86:ff:a6:ed:b8:
61:93:8f:85:8c:29:1e:ed:04:4d:82:69:8c:3e:30:
03:b3:b9:9b:99:e7:b5:6f:fd:d1:fc:d9:d6:c9:25:
97:1e:91:c3:70:53:55:46:24:78:84:5f:4c:7c:b4:
7d:19:32:79:89:87:c2:e2:c0:0e:61:30:f2:f7:93:
dc:d0:b3:8e:69:ac:f0:f0:3d:6d:c4:35:02:91:ee:
7e:7c:39:d7:e5:90:16:78:3e:b8:4e:47:2f:05:76:
c9:8a:8d:d0:5c:35:ec:1b:8e:91:00:93:cf:7b:28:
60:8c:08:e5:ef:f9:4d:87:f4:4d:35:66:c1:cb:08:
45:15:a8:2a:90:be:7a:da:99:32:66:88:0c:89:7a:
06:d1:11:42:51:f3:a2:b0:f4:1e:33:7e:aa:76:31:
80:3f:cc:2d:ed:cf:4e:3f:05:fd:00:d3:05:71:02:
93:8c:e6:10:c7:aa:94:c1:24:9f:d8:89:4e:13:84:
3a:a4:19:d0:dd:5d:ac:2a:f9:de:d3:cc:44:49:4b:
fb:97:d4:29:6c:a1:68:b3:80:50:fc:22:d3:94:90:
e4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:0D:C8:44:52:6D:DB:55:62:FB:21:C8:2F:E9:AF:BA:A0:94:97:3B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A4BEDDC5AA611F08076EEE9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
86:42:0b:5a:ae:dc:c0:51:c3:e8:60:86:8d:f8:32:cf:c7:7e:
99:6d:f3:4e:5e:53:a9:fc:10:55:65:59:e1:d3:d8:6c:04:b1:
85:38:bb:c2:88:d8:74:83:a5:01:ca:16:03:af:d2:a5:98:2e:
1c:42:03:8b:0b:b7:5f:c5:1a:87:45:3e:93:c4:11:e6:ff:c9:
30:8a:3d:11:dc:e2:d5:83:06:25:25:32:94:73:3f:7b:59:c3:
31:e1:fe:7a:4f:79:ac:a7:74:94:9b:66:52:0c:d2:c3:03:f4:
27:72:b7:94:a7:1b:e0:44:da:03:c1:61:3f:b5:46:a8:b4:ff:
5d:76:54:ed:39:cc:2f:71:74:d8:76:f3:fc:3c:4b:91:44:96:
3b:9d:82:9a:ae:d9:8f:80:4a:bf:7f:f1:34:b2:14:46:18:b0:
df:ac:26:d2:d2:0d:38:fb:bb:7d:51:33:3e:48:d7:f3:0c:67:
2f:91:50:da:08:32:03:c2:85:bb:97:c3:27:6b:5b:fd:c2:fb:
8e:33:af:b4:8e:15:51:cc:83:20:8d:ec:5f:30:e2:5c:a9:bf:
58:a0:c4:18:39:4b:04:28:03:7b:61:35:01:c3:e4:7b:aa:02:
11:ea:a5:9d:a3:96:d9:96:bf:3b:b6:f8:ef:42:e6:83:a0:d0:
e5:3e:89:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:01:14 2025 by rpki-client