Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D93A0F4E5B6411F09E24FEC3DAE4EC9C.roa
File: D93A0F4E5B6411F09E24FEC3DAE4EC9C.roa (raw, json)
Hash identifier: 4Ryt5c/sEUxJ6LKSK3c9O0YlNX2Uwn0yCe9Pb8XPe7s=
Subject key identifier: 18:D8:53:C0:F5:1C:6D:57:01:2A:03:55:96:A2:C7:70:C2:5F:25:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018C4E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D93A0F4E5B6411F09E24FEC3DAE4EC9C.roa
Signing time: Mon 07 Jul 2025 19:01:55 +0000
ROA not before: Mon 07 Jul 2025 19:01:50 +0000
ROA not after: Fri 17 Jul 2026 19:01:50 +0000
asID: 400619
IP address blocks: 154.193.192.0/18 maxlen: 24
154.202.117.0/24 maxlen: 24
154.202.118.0/23 maxlen: 24
154.202.120.0/21 maxlen: 24
154.204.8.0/21 maxlen: 24
154.204.128.0/18 maxlen: 24
154.210.2.0/24 maxlen: 24
154.211.4.0/22 maxlen: 24
154.217.234.0/23 maxlen: 24
154.217.236.0/22 maxlen: 24
154.217.240.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101454 (0x18c4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 7 19:01:50 2025 GMT
Not After : Jul 17 19:01:50 2026 GMT
Subject: CN=686c19a3-707d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:46:2a:43:3e:a3:6a:0f:b8:fe:75:9b:f7:af:
73:3f:62:98:70:ae:47:ed:58:24:23:b9:50:03:21:
97:c5:2d:24:25:4e:12:f5:0e:5f:41:8d:ea:6d:11:
16:82:78:9e:ce:3b:74:9a:db:b6:66:f3:aa:47:7c:
21:b9:f3:6e:49:7f:2c:cf:75:c7:65:39:fa:90:9c:
80:38:2d:f1:d7:4a:67:46:a3:55:bb:fb:64:40:d0:
3d:c2:09:d6:fc:92:59:96:ce:61:15:55:c2:12:6f:
00:f1:2d:79:1a:0f:60:9e:71:6d:a9:c2:77:a0:fa:
70:c9:9a:75:f2:74:43:f3:4a:ea:68:bf:d1:b2:42:
63:19:fc:65:8e:10:b5:17:7a:7d:36:a0:6a:3f:f6:
f3:04:9e:bd:a1:c4:ab:a6:6b:9d:2f:0d:ce:8b:2a:
d1:22:59:ff:f1:c6:a8:2b:24:36:6c:65:40:d4:e7:
ac:83:43:0b:4e:28:f2:96:6d:b9:3e:d2:ea:a4:a9:
e1:cf:19:2e:be:eb:8d:5d:90:38:ef:27:3b:ba:58:
41:2e:9b:4e:1c:07:5c:8b:88:86:88:a3:20:09:74:
90:da:c0:c7:2f:2a:36:8d:27:ac:96:cd:19:02:bd:
56:bc:2b:38:bb:61:52:ac:90:18:61:57:f3:08:33:
18:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D8:53:C0:F5:1C:6D:57:01:2A:03:55:96:A2:C7:70:C2:5F:25:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D93A0F4E5B6411F09E24FEC3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.192.0/18
154.202.117.0-154.202.127.255
154.204.8.0/21
154.204.128.0/18
154.210.2.0/24
154.211.4.0/22
154.217.234.0-154.217.255.255
Signature Algorithm: sha256WithRSAEncryption
5f:c1:30:5d:8f:0b:67:c4:a3:92:f0:70:aa:41:16:75:b4:69:
16:ec:27:53:53:ea:36:ac:48:90:55:fd:96:b1:19:db:c1:ff:
2d:2e:f2:32:bd:35:08:f9:b1:1b:64:e6:ce:a2:8f:b4:a3:80:
bc:a9:78:f8:72:73:74:80:e8:7f:a7:66:51:a5:5a:a0:f6:92:
c2:66:98:c7:2b:6b:4f:f7:ff:a3:62:01:b9:1b:d8:2d:cd:99:
21:8c:e4:17:87:ff:73:37:7f:7b:96:48:5c:66:3b:4a:f9:dd:
ec:28:d0:54:03:c8:ad:fc:e7:5a:13:fb:70:41:ba:1d:25:99:
85:a9:21:17:d3:0f:78:7c:89:0d:d1:b6:3d:f0:04:3a:b0:69:
37:be:9e:e3:89:e9:9a:2d:3a:0a:8e:b4:29:dd:82:22:91:2c:
62:37:79:e7:c1:1a:a5:ae:b8:f1:45:06:83:f3:bf:a8:50:a6:
c5:a9:1b:e5:c6:69:6a:22:94:6f:67:34:22:d8:b6:fa:2c:58:
c9:48:08:12:c7:b3:f4:8c:04:27:41:fd:52:dc:9e:0a:b4:73:
22:02:8e:c0:23:a3:eb:44:e6:4a:31:1f:c8:9a:b0:36:9b:2b:
f0:4b:ae:36:de:94:85:fe:b8:60:22:1b:e9:68:47:8d:7d:47:
e0:28:0b:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:02:41 2025 by rpki-client