Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1350B5C5B9211F09BADA5EADAE4EC9C.roa
File: F1350B5C5B9211F09BADA5EADAE4EC9C.roa (raw, json)
Hash identifier: P7JRI9ul1uHugVEjO5yiPQAdmcMwbmRvnC4FjPD+eaU=
Subject key identifier: 3D:F5:E1:CE:8C:3D:11:66:0E:41:FD:23:62:5E:1E:39:71:BE:B5:B8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018C8C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1350B5C5B9211F09BADA5EADAE4EC9C.roa
Signing time: Tue 08 Jul 2025 00:31:52 +0000
ROA not before: Tue 08 Jul 2025 00:00:47 +0000
ROA not after: Wed 13 Aug 2025 00:00:47 +0000
asID: 61461
IP address blocks: 154.216.192.0/18 maxlen: 24
154.218.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101516 (0x18c8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 8 00:00:47 2025 GMT
Not After : Aug 13 00:00:47 2025 GMT
Subject: CN=686c66f8-b93b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:61:f9:b1:09:bd:bd:54:0e:1a:54:46:3e:21:
5f:79:8e:05:c4:a2:3a:5f:d5:66:fe:51:3c:7c:82:
41:53:29:b0:9a:09:0d:55:06:4c:8d:a3:34:1f:d8:
47:8d:8d:22:11:d0:99:e8:95:2c:73:8a:d9:64:06:
aa:2a:49:67:10:d7:55:bf:f8:80:3f:5b:80:2e:c9:
05:48:70:4e:d9:14:54:68:dc:7b:20:6c:0c:e9:83:
24:98:a8:c5:7a:a7:a3:16:e1:64:54:e6:ed:38:ac:
e2:33:b9:bc:da:16:54:63:56:5b:fb:f3:31:c6:63:
8e:d4:24:03:93:06:b6:50:e5:7d:79:6a:d5:58:01:
e7:5c:58:4e:ca:0d:11:00:9a:bd:f0:64:d8:a5:cb:
2d:4f:8e:f8:60:22:8a:b7:84:89:76:41:fd:58:c5:
f7:1c:63:d3:97:96:68:55:70:ed:8b:e4:42:c0:61:
90:54:47:7a:27:da:24:4e:95:2d:fd:bc:86:c8:38:
a7:b8:60:c6:b2:c2:56:7c:6f:b9:44:04:68:fb:0c:
b5:f1:e6:c3:8f:9d:c9:7f:b4:e0:75:1e:0c:5f:da:
59:e5:f5:87:fc:fe:71:7f:aa:19:e7:9f:41:58:fe:
e8:6a:24:e8:15:51:9a:42:4d:3d:c1:d9:26:f8:4c:
51:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:F5:E1:CE:8C:3D:11:66:0E:41:FD:23:62:5E:1E:39:71:BE:B5:B8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1350B5C5B9211F09BADA5EADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.192.0/18
154.218.192.0/18
Signature Algorithm: sha256WithRSAEncryption
a8:22:b1:c1:66:ba:85:01:a0:33:dc:1c:a5:bd:cf:3e:04:a7:
30:24:5a:04:92:31:af:7a:9a:0d:42:c7:9d:6c:a7:ee:6b:bd:
2e:f8:b3:17:3c:d0:32:d9:50:42:22:65:29:f6:54:e4:d3:f3:
07:a7:48:ff:9a:19:4d:24:00:7a:ef:76:71:a6:0a:04:91:4a:
a9:97:a0:b0:df:03:da:66:62:4a:39:10:4e:b9:df:ff:50:2b:
65:3a:3e:a9:ac:c5:ac:a6:fd:3e:15:6d:a8:6e:98:8a:e4:0e:
a0:22:7f:67:a9:06:05:c6:3c:ca:fe:16:7b:69:d0:2f:dd:55:
de:95:7a:75:ba:58:2f:4c:e1:26:d9:2e:81:a0:8c:b5:53:8a:
dc:95:1d:55:ce:c1:2c:49:11:46:21:b8:1c:a8:90:5c:5e:7e:
51:1e:6a:a7:1c:c2:8c:5f:07:80:b2:91:01:b4:27:ca:00:4a:
b2:8a:62:91:a4:68:3f:4c:9a:f5:26:b5:ef:fd:1b:66:fb:a7:
23:88:56:01:09:b3:c3:2b:7b:61:d7:e6:a7:ca:5e:35:15:e9:
d6:6a:e2:16:33:78:27:b8:b6:75:0f:48:81:14:75:1f:76:7b:
91:56:73:f6:53:26:78:a0:e0:61:6a:41:ea:af:2f:b5:dd:39:
70:9d:34:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 12:58:50 2025 by rpki-client