Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/22D7B10C834111F0BC0CBC7BDAE4EC9C.roa
File: 22D7B10C834111F0BC0CBC7BDAE4EC9C.roa (raw, json)
Hash identifier: febo1pJeRikh38ZtQ/jMXg+vG87Zr9Hqe/+Hv2D9pCc=
Subject key identifier: 5A:34:A6:2A:9E:56:C6:63:F1:30:D3:9F:3F:D3:C6:F5:6D:CB:71:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019881
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/22D7B10C834111F0BC0CBC7BDAE4EC9C.roa
Signing time: Wed 27 Aug 2025 12:27:03 +0000
ROA not before: Wed 27 Aug 2025 12:26:57 +0000
ROA not after: Fri 10 Oct 2025 12:26:57 +0000
asID: 138915
IP address blocks: 154.90.42.0/23 maxlen: 24
154.90.44.0/23 maxlen: 24
154.90.48.0/23 maxlen: 24
154.90.50.0/23 maxlen: 24
154.90.52.0/23 maxlen: 24
154.90.54.0/23 maxlen: 24
154.90.56.0/23 maxlen: 24
154.90.58.0/23 maxlen: 24
154.90.60.0/23 maxlen: 24
154.90.62.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104577 (0x19881)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 27 12:26:57 2025 GMT
Not After : Oct 10 12:26:57 2025 GMT
Subject: CN=68aef997-35d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:23:8b:42:cf:cb:c9:75:13:96:19:bc:30:00:
20:17:06:cc:41:40:f4:20:87:ad:f0:46:9a:d1:ce:
03:ff:f6:51:64:ba:74:0d:26:a1:e8:4a:5f:f8:8d:
95:4a:61:ba:e7:77:b6:4c:6f:6a:0e:52:f9:ad:79:
e3:b1:50:35:56:e4:92:37:8e:49:34:87:6f:99:87:
05:5e:32:90:bc:3f:e9:c5:1c:c1:2b:d5:b2:ea:80:
c5:1c:b6:e9:14:9c:68:2b:ef:93:8e:d3:fe:6d:75:
fd:72:36:54:e8:c3:d2:36:b5:3f:0c:aa:a3:f2:a7:
d8:89:5a:53:41:13:ee:13:77:6d:a2:49:c9:22:8d:
47:1b:6f:6b:fe:6d:d5:43:db:f0:bc:82:9a:74:6c:
c0:36:64:ca:2c:27:c1:f4:36:4e:fc:56:d4:b6:d0:
7b:10:21:e3:9c:23:de:cb:19:5c:ef:9c:5f:b6:ad:
43:a5:1a:81:f2:f2:d0:ec:b3:cd:36:51:6e:62:f3:
9a:58:8d:9c:6a:b2:e9:2d:d3:d3:de:6a:1b:d7:88:
a1:23:ad:55:70:49:cb:05:99:4c:20:2a:bd:6f:ed:
7e:3d:62:94:d7:54:f9:19:72:0d:47:7b:e8:17:2f:
64:1f:90:8b:a4:ea:f6:f7:24:dd:35:84:b0:00:8b:
78:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:34:A6:2A:9E:56:C6:63:F1:30:D3:9F:3F:D3:C6:F5:6D:CB:71:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/22D7B10C834111F0BC0CBC7BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.42.0-154.90.45.255
154.90.48.0/20
Signature Algorithm: sha256WithRSAEncryption
bd:67:52:56:71:d4:b5:b3:50:09:85:cd:4e:b7:47:32:08:7b:
10:44:ba:bd:f6:85:6e:33:94:ca:09:74:2a:dd:93:26:8f:ba:
68:e9:7e:4d:6f:c8:cb:e1:8e:54:67:97:cb:9e:db:a7:5b:8f:
64:3b:85:d2:d1:ab:11:3f:3d:e8:d7:ff:b5:5b:15:69:e9:cb:
2a:b3:dd:d6:aa:a3:da:3e:57:8f:7f:5e:b6:ce:13:e0:fb:aa:
c2:a3:ba:29:2c:26:51:9d:eb:b1:c0:95:4c:4f:e1:ee:7b:e4:
ac:f3:7a:b2:10:a1:1e:19:50:14:44:a2:5f:89:63:36:0b:f8:
85:0b:c1:97:c8:1e:cd:14:31:45:1e:fa:07:b1:f5:a8:cf:88:
75:c3:6a:e8:4f:47:14:81:8a:b0:93:17:b8:df:a6:75:0b:f4:
6c:49:df:ca:16:e1:ea:ea:71:37:78:d9:f1:06:c1:c5:82:f9:
30:84:9f:9e:ff:6d:62:c3:48:fb:08:2b:02:e5:37:77:7b:85:
ff:83:7b:0c:ef:c8:09:35:a2:b9:d8:90:b9:86:78:e8:07:3b:
04:59:d5:a5:db:15:b4:a2:10:b4:e7:25:0f:06:4a:5f:9d:11:
fa:2b:94:fb:5c:0f:0c:94:42:fe:59:91:e5:31:51:0c:68:45:
a8:9a:7d:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:30:23 2025 by rpki-client