Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5A80CFC5AB611F0BF1656D1DAE4EC9C.roa
File: A5A80CFC5AB611F0BF1656D1DAE4EC9C.roa (raw, json)
Hash identifier: 9+dRax0QTUXu4sHXHVU+0q0pfkgfkuBexMedmdvE9vY=
Subject key identifier: 02:F6:43:98:66:C2:FF:8C:5E:2A:FA:59:6B:A2:B4:38:B4:34:2A:B7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018BCC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5A80CFC5AB611F0BF1656D1DAE4EC9C.roa
Signing time: Sun 06 Jul 2025 22:14:56 +0000
ROA not before: Sun 06 Jul 2025 22:14:51 +0000
ROA not after: Wed 03 Sep 2025 22:14:51 +0000
asID: 18229
IP address blocks: 154.210.130.0/24 maxlen: 24
154.210.131.0/24 maxlen: 24
154.210.132.0/24 maxlen: 24
154.210.133.0/24 maxlen: 24
154.210.134.0/24 maxlen: 24
154.210.135.0/24 maxlen: 24
154.210.136.0/24 maxlen: 24
154.210.137.0/24 maxlen: 24
154.210.138.0/24 maxlen: 24
154.210.139.0/24 maxlen: 24
154.210.140.0/24 maxlen: 24
154.210.157.0/24 maxlen: 24
154.210.158.0/24 maxlen: 24
154.210.160.0/24 maxlen: 24
154.210.161.0/24 maxlen: 24
154.210.162.0/24 maxlen: 24
154.210.163.0/24 maxlen: 24
154.210.164.0/24 maxlen: 24
154.210.165.0/24 maxlen: 24
154.210.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101324 (0x18bcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 6 22:14:51 2025 GMT
Not After : Sep 3 22:14:51 2025 GMT
Subject: CN=686af560-0a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d8:13:ab:a5:05:31:2e:20:f7:7c:40:8c:a6:
27:82:68:18:22:de:b5:2b:c3:62:44:97:bd:da:35:
e1:dd:f6:d1:03:01:75:a3:e3:c4:1b:bf:54:9a:32:
df:c7:94:08:fe:8c:2c:24:58:84:7e:d5:f1:63:5c:
46:ba:2d:b9:fe:82:d1:ea:6c:1f:69:2c:da:21:26:
f8:1c:7b:d2:f4:cb:25:6b:fd:0f:bf:10:07:f9:32:
6b:dc:76:dc:91:19:78:9a:94:78:83:2e:27:01:59:
06:0a:4e:26:10:24:fe:54:c2:38:0b:dd:3c:83:7f:
6e:f3:12:c0:f8:ef:21:82:ee:fe:b9:ce:d7:2a:f4:
7e:4b:3e:a3:30:ea:4b:dd:b0:8f:9a:59:ac:bc:02:
d0:b1:2a:7a:f9:b6:01:1f:28:f1:e5:64:15:ff:de:
e3:53:52:fa:85:c2:a9:06:22:40:1e:c9:0a:6c:a9:
7d:f1:8c:a6:18:bb:cb:78:28:e4:e0:08:8c:1f:19:
d3:4e:df:32:ab:ac:f5:a0:b4:87:ea:92:44:4c:11:
98:30:ca:51:9d:5c:25:d3:d3:20:dc:92:88:24:b0:
fe:ef:ff:f9:fd:63:d3:29:72:02:e8:c7:40:67:b9:
25:e0:e5:b5:60:d1:66:8d:27:63:af:66:b4:d6:d4:
74:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F6:43:98:66:C2:FF:8C:5E:2A:FA:59:6B:A2:B4:38:B4:34:2A:B7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5A80CFC5AB611F0BF1656D1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.130.0-154.210.140.255
154.210.157.0-154.210.158.255
154.210.160.0-154.210.165.255
154.210.223.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:9d:6c:82:89:db:b9:c8:10:67:42:bf:6b:2e:52:1f:d1:fa:
13:e9:2c:62:e3:01:7d:ee:5d:86:e8:33:cb:c9:3a:cc:6d:28:
8a:ae:12:78:04:4c:0a:e2:b6:92:94:89:12:7f:50:00:a3:dc:
f4:28:e5:dc:f2:48:90:cf:53:ae:ea:3e:ef:98:6e:15:cb:81:
0f:cc:de:8f:cd:6d:27:37:16:8f:5a:a3:80:26:e7:75:35:7c:
b9:87:ac:2e:25:2d:8a:06:e7:ac:f8:52:44:e6:06:22:e8:cb:
7c:89:2d:1e:f7:b1:2d:32:7f:29:17:a7:cc:49:b7:4f:c2:ae:
8d:5c:ef:f0:2e:a8:9d:bf:f1:7d:b1:62:3f:3b:81:3b:e6:6f:
60:ff:f1:19:35:50:f8:83:00:c2:58:20:95:05:55:e6:dc:07:
7c:58:5a:46:95:26:6b:8d:be:34:33:d5:0f:47:70:cb:30:68:
06:23:44:bb:f1:9d:e5:7a:86:da:a9:ed:af:b2:ef:3d:9d:31:
ae:1e:18:0b:4f:21:6b:32:3e:0d:3a:bc:54:02:57:6a:ee:57:
1e:60:2b:e0:73:e0:bb:04:aa:73:de:da:0c:d4:2c:4f:80:3e:
e6:ae:85:c2:ef:f4:e3:ab:c0:50:7d:cf:8a:49:92:40:47:b9:
41:14:2c:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:02:51 2025 by rpki-client