Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18567D2E413511F0B1D011D4DAE4EC9C.roa
File: 18567D2E413511F0B1D011D4DAE4EC9C.roa (raw, json)
Hash identifier: uLqRzXTBCmXbRkUjK/IBPGK0Z1hbXVd+gDHYtWEoCFA=
Subject key identifier: 99:DE:8B:48:57:34:8D:5D:50:C6:52:0E:54:86:E7:B4:E0:70:6E:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0184CC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18567D2E413511F0B1D011D4DAE4EC9C.roa
Signing time: Wed 04 Jun 2025 11:14:35 +0000
ROA not before: Wed 04 Jun 2025 11:14:30 +0000
ROA not after: Tue 08 Jul 2025 11:14:30 +0000
asID: 200373
IP address blocks: 154.213.193.0/24 maxlen: 24
154.213.194.0/24 maxlen: 24
154.213.195.0/24 maxlen: 24
154.213.196.0/24 maxlen: 24
154.213.197.0/24 maxlen: 24
154.213.198.0/24 maxlen: 24
154.213.199.0/24 maxlen: 24
154.213.202.0/24 maxlen: 24
154.213.203.0/24 maxlen: 24
154.213.204.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99532 (0x184cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 4 11:14:30 2025 GMT
Not After : Jul 8 11:14:30 2025 GMT
Subject: CN=68402a9b-5d05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fd:32:99:85:ce:fc:1d:c2:00:08:7e:66:9c:
89:02:13:c5:32:0c:53:29:7d:7b:4e:cc:6f:22:7a:
82:99:8d:fb:cd:21:3e:70:6e:d2:43:bc:5a:c0:de:
6c:e5:2a:c7:25:33:5f:76:e5:9a:57:d0:3a:b6:c5:
a5:84:1c:0f:f5:8d:af:11:f8:88:6e:c2:bd:4c:0f:
7c:13:e8:95:11:72:f0:93:0f:90:f7:f9:d6:f1:4e:
89:1f:a7:2e:41:cf:e0:87:3b:88:81:37:a7:f8:81:
10:58:a3:21:07:1d:e3:c1:e9:e6:a0:57:04:6f:66:
92:60:1f:94:40:fb:be:33:39:40:39:7b:5a:8d:07:
37:f1:4e:dc:91:2d:b8:19:7f:bf:7f:cb:db:ff:82:
1c:7e:42:53:29:3e:50:46:c8:23:41:6a:3e:60:a6:
f7:f0:c9:e8:4e:56:9a:ed:01:88:f9:2f:00:36:e6:
fc:6d:a3:ac:89:20:64:22:a0:9a:24:77:6d:d8:4f:
be:bd:08:7e:fd:e4:60:85:e7:e1:07:64:6d:37:74:
ff:6a:10:18:8f:85:ec:cd:fb:84:da:88:89:62:74:
a3:3b:e5:07:85:d9:82:88:ee:e9:6e:b2:c3:f2:24:
ea:c6:5d:3b:7d:6a:09:2a:27:03:02:ef:68:1c:ce:
81:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DE:8B:48:57:34:8D:5D:50:C6:52:0E:54:86:E7:B4:E0:70:6E:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18567D2E413511F0B1D011D4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.193.0-154.213.199.255
154.213.202.0-154.213.204.255
Signature Algorithm: sha256WithRSAEncryption
a9:7a:db:eb:c1:ca:26:e1:0c:36:da:5e:b5:46:6c:21:68:22:
dd:fb:5f:77:8f:67:34:dc:84:bb:59:08:9a:fa:56:ec:ce:0d:
00:84:7e:46:69:6a:8f:00:c9:5e:d9:71:a9:5b:8f:67:97:2f:
ff:be:a6:3f:ce:13:1e:d4:f6:2c:6e:19:78:4d:ca:f5:c0:68:
d5:b4:99:1c:19:72:6e:62:09:7b:62:2b:4c:14:ed:dc:65:84:
2b:77:64:79:0f:9f:08:03:f2:a7:8f:ff:97:13:ff:10:cd:78:
18:4d:a0:33:84:87:dd:42:59:45:2e:d1:6d:e0:8f:da:91:7a:
47:fa:04:12:f1:18:bc:14:24:c1:e0:79:b0:3c:d2:06:5f:dc:
ba:32:ac:7d:a5:4f:58:1a:db:67:08:56:40:f7:7e:e9:58:8e:
32:ef:00:b5:3f:21:e8:dd:3c:43:c2:23:56:a1:cb:83:8a:9f:
77:5b:36:df:b4:c4:54:66:2f:6e:57:75:c5:c4:99:b2:ce:20:
fd:b2:4a:11:9a:85:1c:03:c1:fc:e1:5b:d4:06:66:88:b0:20:
d6:08:73:80:a1:e4:ae:94:f2:33:96:e0:b2:cc:d0:82:1b:18:
a5:a1:97:3b:d5:fe:27:33:08:bd:57:0e:d0:c5:90:96:e6:ec:
f9:cd:2c:c3
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Jun 6 14:24:31 2025 by rpki-client