Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/378CE284835A11F09F62B79DDAE4EC9C.roa
File: 378CE284835A11F09F62B79DDAE4EC9C.roa (raw, json)
Hash identifier: 71TDHbY9LxXYeKKKIcMCb40fWSlrVmNPYg8UAmGTmhA=
Subject key identifier: DD:01:35:18:6A:EF:17:92:A4:E5:A1:2D:46:42:FB:38:69:2F:AA:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0198C6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/378CE284835A11F09F62B79DDAE4EC9C.roa
Signing time: Wed 27 Aug 2025 15:26:35 +0000
ROA not before: Wed 27 Aug 2025 15:26:30 +0000
ROA not after: Fri 10 Oct 2025 15:26:30 +0000
asID: 138915
IP address blocks: 154.223.17.0/24 maxlen: 24
154.223.18.0/23 maxlen: 24
154.223.20.0/24 maxlen: 24
154.223.21.0/24 maxlen: 24
154.223.22.0/24 maxlen: 24
154.223.23.0/24 maxlen: 24
154.223.24.0/24 maxlen: 24
154.223.26.0/24 maxlen: 24
154.223.28.0/23 maxlen: 24
154.223.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104646 (0x198c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 27 15:26:30 2025 GMT
Not After : Oct 10 15:26:30 2025 GMT
Subject: CN=68af23ab-52ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ae:bf:5b:e4:de:a7:bd:04:48:86:28:39:13:
ca:c8:43:46:20:d2:c6:79:89:df:b4:8a:62:f5:98:
0c:8a:37:dd:ab:50:1a:9c:d1:8a:0d:fc:38:60:4e:
97:96:5e:bc:c2:34:53:e9:f4:52:cd:df:b2:70:a2:
86:b3:59:91:d0:aa:1c:bb:3c:8e:de:e4:7e:5b:ee:
59:26:89:9a:70:f2:01:77:2b:af:7b:de:37:6c:50:
59:b1:d6:3d:e2:78:ec:8e:5f:05:b3:56:ad:9d:69:
e4:82:4f:67:d4:14:13:5b:da:21:cf:15:5e:ae:d2:
67:41:3e:1a:a9:0d:b8:cf:88:4e:18:84:1a:bd:8c:
77:86:61:84:7e:a7:c6:d0:81:4c:b1:5e:89:41:66:
3a:b4:d3:ed:01:67:ca:7b:89:d5:bf:d2:b0:a6:64:
0d:99:b3:0b:0e:f2:72:31:99:ff:fd:0c:4e:b8:8b:
ba:e4:a7:59:60:40:82:4c:3f:58:e6:ee:97:20:c5:
4c:39:2a:68:5e:7a:22:81:c2:16:20:5c:a1:5c:6e:
2d:35:48:62:35:87:bb:db:e2:d0:d9:dd:9e:65:59:
fd:70:0e:f9:6e:de:38:90:11:a3:23:0b:bf:12:0c:
4c:2b:a6:58:f3:c6:e4:34:77:d0:1d:3b:20:51:0f:
41:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:01:35:18:6A:EF:17:92:A4:E5:A1:2D:46:42:FB:38:69:2F:AA:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/378CE284835A11F09F62B79DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.17.0-154.223.24.255
154.223.26.0/24
154.223.28.0-154.223.30.255
Signature Algorithm: sha256WithRSAEncryption
9c:5b:86:78:e1:03:7f:08:ab:c7:60:97:58:c5:84:d8:74:ca:
54:ba:d6:77:81:78:fc:68:60:13:70:ea:36:a1:e2:39:df:02:
ad:80:3d:83:65:1f:52:d0:b9:bc:32:24:3d:ba:7d:60:e4:9e:
b7:25:b7:f0:83:7e:b9:09:4e:ea:a0:dd:24:77:20:56:2b:4d:
ec:c4:02:6b:a7:bc:ed:a2:69:4f:91:a5:7c:b1:e3:11:e5:6c:
5b:ac:d6:f0:cb:60:79:b9:a7:e8:ed:a9:5f:2c:27:1c:ff:9b:
2d:bd:0f:84:2d:b3:52:9b:f7:18:23:a7:76:dc:a5:dc:e3:90:
e2:f0:26:1b:5e:61:02:ab:69:26:3c:47:23:12:8f:2f:37:05:
c0:96:76:e4:f1:e8:5b:e9:63:28:69:81:7f:22:16:c3:fd:54:
31:06:36:34:bf:7b:ca:0e:9e:e3:44:06:0e:ec:5c:26:71:b0:
57:a7:91:9d:f2:79:9b:81:ea:ef:79:68:d8:e1:f0:72:88:c5:
3c:ba:38:d0:bb:0d:d3:cb:cd:d5:05:c3:00:3f:2e:72:81:83:
11:fd:4a:4b:b3:67:69:cd:87:9f:16:10:f5:9e:e6:f3:20:e4:
33:2a:f9:48:22:73:63:23:30:de:ad:ae:9f:a1:c3:18:b7:e8:
29:cc:08:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:36:20 2025 by rpki-client