Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4DFD54A609A11F0B2A23C8EDAE4EC9C.roa
File: F4DFD54A609A11F0B2A23C8EDAE4EC9C.roa (raw, json)
Hash identifier: ojB8zzpA5Bu3oFdI6a1YZSlEL7nUPTDMq1GHrEtBRrc=
Subject key identifier: 0E:1B:1F:C2:95:D3:D1:DC:9D:A6:A1:DD:16:8E:D4:10:20:A1:8C:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018DAF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4DFD54A609A11F0B2A23C8EDAE4EC9C.roa
Signing time: Mon 14 Jul 2025 10:11:50 +0000
ROA not before: Mon 14 Jul 2025 10:11:45 +0000
ROA not after: Thu 24 Jul 2025 10:11:45 +0000
asID: 54801
IP address blocks: 154.86.0.0/24 maxlen: 24
154.91.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101807 (0x18daf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 14 10:11:45 2025 GMT
Not After : Jul 24 10:11:45 2025 GMT
Subject: CN=6874d7e6-131f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6e:1d:6f:07:cc:74:8e:fd:66:50:31:74:b9:
1c:f2:32:cf:ae:d5:cc:ce:2b:19:d0:ce:b4:e0:8d:
6d:31:c0:3c:1d:a3:ef:98:c9:b3:99:e2:05:c8:d2:
6c:62:54:25:5e:08:27:7b:c8:7d:21:5f:c9:b4:43:
9d:4a:10:d2:c0:c0:84:4b:14:2e:bb:fe:ee:4a:06:
44:79:70:50:42:95:86:d9:38:a0:9a:b7:61:da:9c:
ee:0f:ab:26:f6:7f:7f:d7:c0:de:ee:d8:6c:7d:f9:
09:7c:4b:ef:21:65:94:fc:29:f7:b6:ba:2e:a5:8e:
27:1e:69:32:f5:72:3e:37:a4:3d:1f:ce:6b:47:4f:
fc:75:da:92:84:13:38:65:a3:33:f4:8c:51:df:aa:
53:46:50:89:bd:c9:8f:5e:88:14:3e:d5:50:6d:37:
80:38:41:df:0e:b0:71:3f:1a:83:70:7d:d1:9a:c7:
b6:9f:b1:54:c0:17:5a:ce:ba:09:60:e5:e0:20:1c:
64:c0:1b:52:92:10:4d:75:36:c0:86:da:cf:6e:64:
ac:fc:90:79:14:92:51:b0:e6:77:97:f8:d7:12:54:
ec:64:6b:61:60:5a:21:ef:3c:1f:41:fa:b4:59:5e:
06:f0:23:36:02:19:5a:91:a2:82:52:c0:e4:72:e2:
e9:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:1B:1F:C2:95:D3:D1:DC:9D:A6:A1:DD:16:8E:D4:10:20:A1:8C:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4DFD54A609A11F0B2A23C8EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.0.0/24
154.91.224.0/19
Signature Algorithm: sha256WithRSAEncryption
75:d7:8a:87:32:6b:de:14:3e:47:65:9f:83:ca:7d:95:5a:cf:
43:ba:a6:bf:38:02:ae:b1:48:44:e5:1a:c4:c1:bc:99:6a:d8:
00:c9:39:83:f9:cb:91:d6:75:82:c8:df:34:55:cf:57:ec:b3:
b1:dd:0e:a9:5f:e5:29:c6:09:2d:8d:7f:36:78:b6:70:70:31:
9c:31:35:97:09:97:fb:4b:dc:54:af:5a:d1:d4:a0:40:d2:4f:
14:b7:e0:e2:b9:84:e4:a6:34:dd:b7:bb:fe:58:05:4a:27:4f:
fc:37:44:ee:27:db:a5:92:c3:cc:ce:e6:5a:83:22:ec:80:b2:
a6:ae:5e:b5:7e:a4:4e:33:e2:b5:6e:ff:8d:a7:0d:d1:5a:34:
26:7b:d7:74:78:17:1f:b2:1f:6a:55:12:d3:85:af:b1:56:0a:
2f:b7:eb:8c:d6:12:c9:ae:fd:da:4f:37:3a:4a:01:19:ec:c1:
a5:f0:ad:4d:0f:3d:33:21:1f:0f:db:e4:65:03:11:55:4d:7c:
e5:25:1f:dd:be:61:35:12:f4:05:e2:9b:7b:8d:6f:8d:b0:e1:
8b:8e:de:7b:fa:37:d4:39:86:2e:a0:b5:03:85:b5:b8:30:2f:
a3:26:b0:66:31:e5:22:c0:de:e6:17:27:7c:de:3c:73:60:df:
68:5c:53:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:04:02 2025 by rpki-client