Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C5C85125D0511F0A62CF4DFDAE4EC9C.roa
File: 6C5C85125D0511F0A62CF4DFDAE4EC9C.roa (raw, json)
Hash identifier: iS4XVroIKUAS7+P+kQwkYEFGPhGdcru5Az/dGbQRhrM=
Subject key identifier: 99:F8:36:38:1E:06:53:77:BF:60:69:02:E5:48:F1:7C:1C:04:A8:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018D14
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C5C85125D0511F0A62CF4DFDAE4EC9C.roa
Signing time: Wed 09 Jul 2025 20:43:53 +0000
ROA not before: Wed 09 Jul 2025 20:43:47 +0000
ROA not after: Fri 17 Jul 2026 20:43:47 +0000
asID: 18013
IP address blocks: 154.202.117.0/24 maxlen: 24
154.202.120.0/21 maxlen: 24
154.204.8.0/21 maxlen: 24
154.204.128.0/18 maxlen: 24
154.210.2.0/24 maxlen: 24
154.211.4.0/22 maxlen: 24
154.217.234.0/23 maxlen: 24
154.217.236.0/22 maxlen: 24
154.217.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101652 (0x18d14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 9 20:43:47 2025 GMT
Not After : Jul 17 20:43:47 2026 GMT
Subject: CN=686ed489-429c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:67:8b:4e:14:98:be:af:7f:1b:62:3e:52:03:
8c:c4:90:ab:56:e1:5d:ab:eb:b8:02:07:26:63:38:
fe:86:dc:e1:f7:63:27:f8:4f:44:a3:62:34:4f:b6:
29:54:4a:14:35:e2:41:73:08:aa:56:62:76:33:5c:
75:44:ff:10:ea:8c:fe:31:1d:fd:ef:41:09:87:e2:
14:3e:6a:be:88:5d:d4:c2:97:e1:7a:e4:57:6c:43:
8e:ef:08:e6:e5:06:2c:12:08:8a:f1:6f:af:ff:ab:
d3:88:0d:ec:19:fc:05:3d:8c:ce:90:0d:ea:fc:bb:
08:49:e2:6b:01:73:53:58:6c:cb:42:e2:36:80:6a:
b5:f3:1c:27:bb:bc:bc:61:51:ec:bf:0d:6e:33:4d:
38:3e:b3:4b:43:8d:90:8a:13:49:7b:71:4b:61:3c:
76:7a:38:90:d5:e6:2a:95:c8:92:7b:aa:dd:55:26:
6e:45:0f:14:96:ff:4f:2e:e1:69:f7:bd:02:91:4c:
43:30:67:a4:04:9c:e2:22:c2:79:6a:8a:cd:5c:4c:
f2:65:c7:72:88:4a:8e:95:e8:b1:86:3c:ab:3f:1e:
0b:b5:ed:2c:5b:b7:17:3d:b8:ad:c8:54:70:73:48:
81:38:25:44:65:7c:23:78:01:90:cd:da:a1:b6:a3:
c0:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:F8:36:38:1E:06:53:77:BF:60:69:02:E5:48:F1:7C:1C:04:A8:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6C5C85125D0511F0A62CF4DFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.117.0/24
154.202.120.0/21
154.204.8.0/21
154.204.128.0/18
154.210.2.0/24
154.211.4.0/22
154.217.234.0-154.217.255.255
Signature Algorithm: sha256WithRSAEncryption
7b:c6:68:30:03:c7:a8:e4:5b:fd:4f:15:56:2a:73:40:bf:3b:
92:c6:27:b4:47:8d:33:05:6a:51:de:af:a6:d3:89:46:a6:f7:
36:38:5c:c3:29:b5:18:32:3e:3a:40:23:0c:f0:d7:66:e0:a4:
93:e1:5b:75:5c:6f:3a:fb:88:21:0d:95:1c:85:22:dd:da:18:
e4:7a:be:82:fb:0c:85:20:ba:0e:e7:5e:33:20:ba:32:99:a4:
18:05:ef:cb:71:a6:dc:ec:89:d7:14:86:05:ad:ad:54:ad:c1:
b5:46:de:8b:05:69:5e:46:6b:15:4c:8e:f7:a5:7d:b4:df:5d:
d7:f7:97:e5:17:01:5d:e6:4d:e4:04:d8:28:3c:1b:db:39:db:
51:ba:b5:ed:c5:e7:a1:21:d3:77:49:ce:ec:16:c9:92:2a:55:
8e:38:2c:67:16:a4:e2:29:a1:b2:82:a9:7e:4d:87:5c:a0:66:
68:15:6c:c5:b6:be:ff:df:2b:ff:ed:54:c8:34:05:57:e4:63:
39:2c:76:8e:33:55:a9:4c:6c:78:46:98:d8:6b:c0:b2:8c:56:
ef:d8:2a:9b:b6:55:14:87:3d:1f:ea:b0:dd:cd:27:32:5a:73:
36:07:c2:05:2b:e8:c5:91:2e:37:f8:27:e2:6e:c7:d0:32:f4:
a0:1f:0d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 12:30:46 2025 by rpki-client