Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26AFDAA03BB311F0BFB3018ADAE4EC9C.roa
File: 26AFDAA03BB311F0BFB3018ADAE4EC9C.roa (raw, json)
Hash identifier: UcD9f0uJUviNsvk+q1WmI0LyF/Jbq+wF7v2/ehSnFxU=
Subject key identifier: CB:B8:6B:11:2C:4A:E3:86:63:2E:8D:92:7D:07:3C:9D:BE:58:6A:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018348
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26AFDAA03BB311F0BFB3018ADAE4EC9C.roa
Signing time: Wed 28 May 2025 11:01:49 +0000
ROA not before: Wed 28 May 2025 11:01:44 +0000
ROA not after: Sat 07 Jun 2025 11:01:44 +0000
asID: 9009
IP address blocks: 154.85.100.0/22 maxlen: 24
154.85.126.0/23 maxlen: 24
154.92.112.0/21 maxlen: 24
154.92.125.0/24 maxlen: 24
154.92.126.0/24 maxlen: 24
154.92.127.0/24 maxlen: 24
154.95.0.0/23 maxlen: 24
154.95.32.0/22 maxlen: 24
154.95.36.0/23 maxlen: 24
154.95.38.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99144 (0x18348)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 11:01:44 2025 GMT
Not After : Jun 7 11:01:44 2025 GMT
Subject: CN=6836ed1c-f552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d5:3d:37:4b:ee:49:d9:bb:06:60:4c:2c:14:
47:eb:62:98:22:2d:11:3f:41:68:36:4d:60:06:e8:
da:fa:48:d9:17:1f:4e:12:1e:09:4f:ee:76:35:7c:
bd:88:a6:3c:c0:55:5f:60:66:7c:5f:72:ec:a8:60:
8d:1c:29:51:73:19:6c:2a:d4:32:e9:f3:c4:3b:0c:
66:42:28:a1:63:d5:a2:fd:ad:92:4f:b5:8e:7b:ec:
ac:dc:38:70:86:55:62:d0:9c:14:71:e3:e2:f3:5f:
13:7c:f6:62:62:ec:b8:bd:32:5d:e2:dd:ed:78:45:
97:0e:f6:33:7e:27:ef:78:e4:60:55:88:12:14:80:
47:cf:b7:03:3b:fc:05:58:46:0d:44:c3:c8:7f:8b:
0e:9e:c3:37:66:b3:42:63:91:ca:b3:ad:f4:bd:cd:
f2:16:9c:e5:ee:5c:c3:da:8c:f0:38:b8:c3:07:69:
68:6a:b9:b8:bb:67:92:1a:b4:d6:cd:d5:2e:b7:e5:
4e:b8:d0:ca:fc:4a:a8:1c:66:cc:8c:01:a8:80:9b:
1e:0c:c2:46:2b:2f:94:70:14:67:59:79:5a:8a:7f:
2a:55:20:96:71:07:ef:92:b5:ff:b9:84:b0:48:c0:
91:bb:02:04:c3:c4:7e:90:67:b1:16:dc:71:c9:97:
ea:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B8:6B:11:2C:4A:E3:86:63:2E:8D:92:7D:07:3C:9D:BE:58:6A:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26AFDAA03BB311F0BFB3018ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.100.0/22
154.85.126.0/23
154.92.112.0/21
154.92.125.0-154.92.127.255
154.95.0.0/23
154.95.32.0/21
Signature Algorithm: sha256WithRSAEncryption
50:ba:16:77:fe:51:1f:fc:49:e8:39:54:91:55:53:1e:9f:2a:
5a:b4:af:b1:b5:ea:56:a4:00:06:0a:7b:40:fd:da:01:f7:5e:
52:8e:00:9d:a7:18:8a:c0:18:3a:88:98:da:d1:2c:d7:7c:2a:
0b:38:6a:27:86:f4:3f:3c:2c:8e:b1:dd:f4:bb:37:3e:36:51:
88:e0:88:f5:74:ba:9f:87:9f:10:ec:b1:ca:06:2e:5d:06:d2:
57:44:fa:40:63:89:46:52:84:4c:7d:03:8e:9a:df:ff:28:4d:
17:d4:26:56:45:b5:9a:a5:6f:6c:80:e6:a4:b3:14:8e:56:ba:
4d:aa:be:c6:40:f2:f4:2c:f3:e1:c2:32:cd:f3:ee:9a:d7:f5:
18:22:40:b6:58:50:89:8f:43:1a:ba:f3:e9:b2:a7:94:e5:56:
68:8a:8a:29:d1:d4:d1:64:d8:fe:60:dc:c3:c4:a0:a0:aa:21:
63:fd:88:cd:7e:90:bf:a4:59:fc:c7:86:3d:4e:e1:c7:93:69:
a6:23:38:ed:65:8f:ff:79:9d:5c:9c:cb:e0:92:5d:7e:1c:1c:
81:38:d7:fd:18:f6:ca:1e:4c:bb:17:df:d3:d3:65:b1:4b:fa:
95:e0:60:42:59:c3:59:64:ab:06:b0:06:d9:6c:96:04:35:32:
ac:66:5a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 10:20:17 2025 by rpki-client