Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B0AD70E632511F0BF1E58A6DAE4EC9C.roa
File: 8B0AD70E632511F0BF1E58A6DAE4EC9C.roa (raw, json)
Hash identifier: yQyzu2oKNz9x+LlNF9Agt99g7QgHYdKymSUIpul+PoE=
Subject key identifier: A8:75:27:6A:B3:B9:70:B2:74:28:2A:C2:2D:DE:BE:F4:B0:DE:AF:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018E4E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B0AD70E632511F0BF1E58A6DAE4EC9C.roa
Signing time: Thu 17 Jul 2025 15:48:55 +0000
ROA not before: Thu 17 Jul 2025 15:48:50 +0000
ROA not after: Sun 31 Aug 2025 15:48:50 +0000
asID: 44559
IP address blocks: 154.198.37.0/24 maxlen: 24
154.198.38.0/24 maxlen: 24
154.198.39.0/24 maxlen: 24
154.203.206.0/24 maxlen: 24
154.203.207.0/24 maxlen: 24
154.203.212.0/24 maxlen: 24
154.203.213.0/24 maxlen: 24
154.203.214.0/24 maxlen: 24
154.203.215.0/24 maxlen: 24
154.203.217.0/24 maxlen: 24
154.203.226.0/24 maxlen: 24
154.203.227.0/24 maxlen: 24
154.203.228.0/24 maxlen: 24
154.203.229.0/24 maxlen: 24
154.203.250.0/24 maxlen: 24
154.205.28.0/24 maxlen: 24
154.205.29.0/24 maxlen: 24
154.205.241.0/24 maxlen: 24
154.205.242.0/24 maxlen: 24
154.205.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101966 (0x18e4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 15:48:50 2025 GMT
Not After : Aug 31 15:48:50 2025 GMT
Subject: CN=68791b67-4707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cb:ac:0a:0c:64:af:ef:eb:d9:2e:76:e1:35:
52:94:fc:3c:57:34:96:88:0e:4d:1c:e6:19:52:9a:
25:02:61:3a:e2:59:db:e9:73:f5:01:1b:e5:7a:ae:
4d:eb:26:f7:51:55:45:b5:68:78:cf:32:c2:fd:98:
bb:36:30:46:06:c8:49:ed:16:55:07:b0:9a:50:c7:
bb:0a:93:42:83:30:1f:6c:4d:31:f8:44:00:f3:2c:
82:9f:42:dd:68:6a:4c:44:29:f1:5f:47:75:8b:73:
62:59:e5:44:44:3b:fa:dc:5a:29:9f:3d:1e:37:55:
81:eb:db:41:3c:84:9d:dc:e5:a4:7b:93:39:0e:b9:
8a:96:a7:e8:6f:06:15:84:5e:01:9c:3c:ce:9b:cd:
d4:77:e5:2e:a4:d6:c4:c1:da:bb:9b:09:4a:be:70:
6d:91:0a:87:db:df:cd:ec:10:69:b0:36:d6:c7:6b:
b3:30:34:e1:ad:d0:37:b2:9b:d0:44:26:36:32:54:
ee:e5:1c:68:48:30:d6:b5:6f:b8:58:35:63:77:fb:
93:d3:87:2d:13:5f:19:f3:03:39:e6:bd:4b:4c:90:
78:5f:56:cb:a0:80:21:c7:22:cc:09:fe:03:31:f9:
dd:79:9c:c8:93:00:05:ba:22:19:4a:7a:14:17:a5:
12:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:75:27:6A:B3:B9:70:B2:74:28:2A:C2:2D:DE:BE:F4:B0:DE:AF:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B0AD70E632511F0BF1E58A6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.37.0-154.198.39.255
154.203.206.0/23
154.203.212.0/22
154.203.217.0/24
154.203.226.0-154.203.229.255
154.203.250.0/24
154.205.28.0/23
154.205.241.0-154.205.243.255
Signature Algorithm: sha256WithRSAEncryption
9e:2f:f4:22:6d:4a:55:2e:d4:bc:e3:48:a4:d0:54:c5:6c:cb:
17:69:76:b9:38:a6:76:65:df:3c:46:49:e0:42:ea:6d:e6:6d:
1a:1d:4d:e7:97:db:c5:ec:b9:51:5c:07:8b:6f:f7:3a:1e:06:
6e:4f:f5:c3:90:d0:ce:82:cb:17:72:ee:47:2e:10:cb:97:93:
20:c6:d8:cc:2e:b2:b3:9d:b2:2b:e8:d9:73:c0:ca:04:dd:0c:
c1:c6:1c:b5:11:b9:5d:69:84:e9:42:1b:df:65:94:fb:5d:15:
0d:15:80:3b:95:07:2a:36:73:c5:02:e8:10:33:6c:52:a7:f5:
ba:5e:06:26:8a:f9:a3:82:96:f3:eb:9a:f3:b9:94:2c:a5:4a:
cf:62:3a:e1:24:7b:42:b3:f1:50:a2:8d:31:e1:1d:a6:7c:89:
67:73:d1:5f:b2:05:0b:fc:16:31:e3:9d:52:f9:60:62:f1:84:
63:fd:14:db:86:de:14:81:9c:05:97:cf:9b:81:4c:ff:aa:2c:
7a:05:03:94:a6:f8:33:41:34:bb:97:9e:fb:28:fd:3c:92:12:
b3:34:b6:d6:4c:db:54:a1:23:98:c9:1a:f6:64:40:11:c0:98:
5b:27:3a:c7:7c:91:9f:a2:b2:7b:38:fb:dd:be:5c:0c:fe:e2:
15:b8:45:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:02:38 2025 by rpki-client