Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/ED1CBE545F1E11F0BE57AFDEDAE4EC9C.roa
File: ED1CBE545F1E11F0BE57AFDEDAE4EC9C.roa (raw, json)
Hash identifier: CG3wGpThvedHgos6fSJVGYaIeOcG07T/+7MJReI6EKg=
Subject key identifier: EF:20:31:C1:DC:0D:71:DD:21:D5:07:97:C0:31:77:70:AD:1D:12:65
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1B74
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/ED1CBE545F1E11F0BE57AFDEDAE4EC9C.roa
Signing time: Sat 12 Jul 2025 12:51:28 +0000
ROA not before: Sat 12 Jul 2025 12:51:23 +0000
ROA not after: Mon 12 Jul 2027 12:51:23 +0000
asID: 36947
IP address blocks: 154.16.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Jul 2025 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7028 (0x1b74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jul 12 12:51:23 2025 GMT
Not After : Jul 12 12:51:23 2027 GMT
Subject: CN=68725a50-5a22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0e:a0:26:9e:31:8e:a2:99:cf:5c:2c:f4:9a:
ce:b3:9d:25:44:c4:d7:9d:c8:d1:c4:43:c0:7e:8e:
3a:0e:6c:21:42:f8:3a:8c:b6:1e:03:5f:18:35:17:
af:0c:a8:e2:9d:f0:6d:46:03:df:2c:6d:40:5f:de:
93:84:b7:09:ed:1f:4f:da:0a:06:5a:bd:25:67:9b:
80:d1:d2:3c:68:0c:d2:24:0c:05:80:53:8a:2c:20:
0d:eb:fe:17:86:a4:c3:74:a0:0f:46:e2:f1:f5:61:
4d:ae:6a:09:89:08:ea:e5:2d:c1:65:35:8b:9d:17:
07:28:45:6f:91:5a:bd:76:ea:09:ce:c9:77:1d:1d:
f7:bc:1b:0d:94:f8:fd:f3:cd:25:60:a7:d1:b4:c0:
0f:f5:58:df:2d:00:e7:d3:b8:ed:ad:46:4f:45:bc:
f3:25:80:6f:9a:eb:7e:43:9a:96:44:a1:e6:59:54:
d8:22:b8:ad:14:f3:54:0a:30:03:7f:c3:45:1d:24:
97:b3:41:f0:e1:d2:3c:4f:60:9a:35:d1:be:10:50:
41:a4:b4:19:11:c2:15:cc:41:ad:94:d5:30:ea:55:
68:4b:41:2d:f2:9d:64:7d:fc:36:b6:4f:c2:10:f2:
26:f5:0e:6c:bd:a8:86:fc:a4:ae:aa:e0:8c:60:8b:
d0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:20:31:C1:DC:0D:71:DD:21:D5:07:97:C0:31:77:70:AD:1D:12:65
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/ED1CBE545F1E11F0BE57AFDEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.213.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:ec:a1:1b:89:60:53:91:bd:6d:51:8d:ad:09:c8:3e:d4:a9:
64:0d:e1:9e:e7:e8:8f:48:4e:08:66:3a:2f:6c:01:d2:e8:2f:
ea:93:12:26:f7:fd:6b:1f:13:a8:5f:44:16:b5:01:37:04:23:
36:b8:43:e7:09:17:42:f1:9b:fd:6a:a4:ea:2b:27:de:57:0b:
42:f4:b2:9f:f6:4a:bb:3e:82:75:01:98:36:e2:b7:94:54:e6:
a4:48:af:18:ea:00:38:43:fa:a9:4a:f4:0f:8b:4a:2e:0e:b5:
73:f5:c1:f6:a5:55:84:5a:00:8d:46:0e:36:53:d3:ee:90:47:
19:c6:ce:da:66:48:70:f8:7a:e9:a9:df:ad:53:cb:d7:ae:3c:
7e:02:41:2f:75:49:47:f8:ad:bc:f1:67:24:d9:c3:d7:0c:b1:
ff:2a:e1:76:c9:da:76:b9:01:12:e1:9a:86:ba:b9:62:6d:9f:
fd:84:7f:06:61:12:d4:a3:c5:67:f3:48:be:72:ed:51:81:cb:
08:36:93:c7:b8:2e:26:35:52:3a:73:ef:35:dd:e4:72:7f:be:
2b:1f:31:6b:6e:ff:3d:85:07:6f:c2:2e:69:6a:18:bb:8e:9b:
9f:34:30:4a:30:40:2b:0c:e1:2d:dc:dc:1f:42:96:bd:aa:95:
32:0e:36:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 00:45:25 2025 by rpki-client