Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CD91D0E59AF11F0B478D5ABDAE4EC9C.roa
File: 8CD91D0E59AF11F0B478D5ABDAE4EC9C.roa (raw, json)
Hash identifier: 1o7VnWwtxNKBCmQwgLw+6ADt7dWt2xhYWWZibM82sJ4=
Subject key identifier: C0:D7:B2:EA:DA:A3:90:EF:19:E1:51:88:00:29:07:60:0E:DD:0D:CD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018B0E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CD91D0E59AF11F0B478D5ABDAE4EC9C.roa
Signing time: Sat 05 Jul 2025 14:51:37 +0000
ROA not before: Sat 05 Jul 2025 14:51:32 +0000
ROA not after: Sun 24 Aug 2025 14:51:32 +0000
asID: 58931
IP address blocks: 154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101134 (0x18b0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 5 14:51:32 2025 GMT
Not After : Aug 24 14:51:32 2025 GMT
Subject: CN=68693bf9-228f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:af:67:1d:8e:17:b6:76:0d:33:ef:1b:79:8a:
22:71:58:e8:6f:ce:db:ee:7a:77:41:c7:10:b8:7d:
3c:46:d8:c4:d5:13:90:4d:2a:8b:fb:be:fc:71:c5:
d0:68:3d:06:2f:88:3d:00:19:57:6c:f8:15:51:3e:
e2:ad:2b:50:d7:dd:97:4f:66:43:ea:91:2c:42:e4:
9c:0e:e5:b5:91:9c:78:de:de:0e:02:4d:df:4c:28:
2a:0d:8a:c2:73:14:54:08:e9:cc:fa:b8:52:ca:8f:
b4:11:13:3f:21:aa:cb:39:16:f5:21:77:ae:00:10:
f2:b2:cd:67:91:78:50:5b:a1:d5:6e:3f:69:69:8a:
b2:4e:48:53:10:6c:a6:c7:24:da:30:0e:b4:f7:af:
41:5e:53:db:e5:ad:c7:9b:16:59:a5:ca:d3:2c:53:
03:8a:97:e0:43:97:17:42:42:34:c2:67:24:82:5e:
e2:fe:c6:2e:b8:e5:70:6d:05:5c:10:bb:e8:46:04:
56:d8:ad:bd:86:2c:68:33:1e:b3:55:f0:f0:78:6a:
2f:8b:98:0f:41:ab:88:20:51:3a:56:fb:1b:00:57:
57:2c:fd:9d:19:bd:94:26:80:04:e1:1c:4c:4f:43:
98:2c:5e:ca:48:14:32:bf:36:b1:7f:8d:98:8a:13:
8c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D7:B2:EA:DA:A3:90:EF:19:E1:51:88:00:29:07:60:0E:DD:0D:CD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8CD91D0E59AF11F0B478D5ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
55:21:bf:28:eb:9b:0c:6e:e1:df:e6:fd:59:d7:a7:be:8b:16:
df:e7:28:2a:f9:dc:cd:55:8f:66:57:46:d9:c6:2a:86:0e:a1:
3f:c6:9c:45:74:51:47:3f:27:6d:9d:53:2d:e7:96:05:8e:f3:
04:bc:cd:e1:69:cb:b7:cf:0f:18:a5:47:a0:57:66:f2:60:f5:
b2:fe:22:e3:35:72:6f:fc:e0:78:73:29:ff:b4:b1:3d:a8:bf:
30:a0:43:58:a4:49:86:f0:57:a2:37:9b:1b:7c:05:0e:5e:0b:
fc:76:ec:4c:01:67:c0:eb:2e:0a:76:37:2a:a4:cf:81:8a:7e:
ac:7b:aa:c3:ce:ac:f7:8b:4b:35:b5:23:9c:1f:3d:9d:7b:84:
c0:80:1a:cd:94:27:67:53:9c:b5:58:64:89:de:d3:14:46:d9:
88:6e:4b:1b:44:ec:d3:32:01:a2:a6:75:46:93:ec:3a:bb:17:
12:25:a4:e4:b7:4b:cf:1a:91:64:c0:a4:b9:ce:19:05:7c:08:
bd:61:97:88:4c:db:1e:d7:ed:8c:93:0a:61:93:3e:25:da:11:
6a:43:5c:78:4b:f7:96:26:47:01:c4:af:5d:51:06:79:59:af:
be:f3:ab:b9:c9:95:0b:d6:86:12:ca:78:75:5e:3a:a8:7e:45:
84:f3:3c:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:01:12 2025 by rpki-client