Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/548720068AD111F0A9B215C5DAE4EC9C.roa
File: 548720068AD111F0A9B215C5DAE4EC9C.roa (raw, json)
Hash identifier: IlVKvxAy0fseatOIlj1Ky2Z7ZOZBHoLZRsPR9Vy7cc4=
Subject key identifier: 44:91:E9:37:AE:E7:5B:00:E3:3A:D2:FD:DF:ED:BF:1B:E3:53:F0:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019E4D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/548720068AD111F0A9B215C5DAE4EC9C.roa
Signing time: Sat 06 Sep 2025 03:26:52 +0000
ROA not before: Sat 06 Sep 2025 03:26:47 +0000
ROA not after: Wed 06 May 2026 03:26:47 +0000
asID: 395886
IP address blocks: 154.86.17.0/24 maxlen: 24
154.86.18.0/24 maxlen: 24
154.86.20.0/24 maxlen: 24
154.86.21.0/24 maxlen: 24
154.86.23.0/24 maxlen: 24
154.86.24.0/24 maxlen: 24
154.86.26.0/24 maxlen: 24
154.86.27.0/24 maxlen: 24
154.86.29.0/24 maxlen: 24
154.86.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 19 Sep 2025 05:10:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106061 (0x19e4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 6 03:26:47 2025 GMT
Not After : May 6 03:26:47 2026 GMT
Subject: CN=68bba9fc-3aff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e2:8a:b8:31:ce:b8:74:9a:e2:4e:f3:58:a0:
7d:03:0f:fe:1b:dd:1c:75:4a:8b:b4:53:7c:f8:aa:
73:8a:c4:5e:c2:b0:b1:93:8a:2e:7e:ad:fc:f7:9b:
b9:99:48:8e:7f:50:69:8d:8a:61:2a:3f:91:16:6b:
5a:b9:2b:0b:3b:f2:3f:f2:1f:2d:c2:82:59:f0:02:
34:eb:8d:ee:14:c5:4a:f6:61:0b:0a:ad:3c:d1:85:
5f:66:bc:5b:f2:b0:55:c3:d4:e8:b2:23:b8:f7:95:
5f:9b:14:10:e5:fa:30:bc:24:da:a9:98:a0:33:7f:
5f:e5:be:34:56:f0:90:d2:12:25:3b:1f:e5:e6:5f:
65:fb:91:87:c3:3e:e1:a4:ee:3e:a6:a8:88:75:e8:
a2:c4:34:c0:bb:9b:5d:87:fb:64:62:21:87:25:65:
65:2a:f1:3c:fb:a0:e1:3f:ef:3e:24:a2:ba:07:54:
18:d0:61:b4:d7:c4:c3:0b:89:ad:8e:62:3a:c8:d3:
41:f1:12:93:5e:fb:ef:e4:bf:f3:15:26:17:1b:88:
2d:58:69:e3:19:6f:26:fd:b7:d0:dd:a5:50:1b:db:
66:ff:bf:30:11:31:5c:c1:bb:59:e8:af:c1:7a:9b:
6d:70:78:6e:94:6e:c6:c9:a6:fb:56:60:59:48:1c:
87:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:91:E9:37:AE:E7:5B:00:E3:3A:D2:FD:DF:ED:BF:1B:E3:53:F0:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/548720068AD111F0A9B215C5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.17.0-154.86.18.255
154.86.20.0/23
154.86.23.0-154.86.24.255
154.86.26.0/23
154.86.29.0-154.86.30.255
Signature Algorithm: sha256WithRSAEncryption
d4:a0:12:8f:fc:da:9e:21:98:1f:0b:2f:45:08:34:54:d6:ad:
f7:77:0c:27:31:dd:f2:9c:5e:fd:cd:e6:29:b5:c8:09:fa:78:
a0:cd:d2:6b:f3:26:de:bc:2e:12:00:99:e3:21:c4:e7:8e:58:
6b:6f:1f:b4:a6:89:ec:8c:42:70:a5:e5:ff:a6:05:31:af:03:
f1:f0:a6:a8:63:3b:ca:a4:45:d5:cb:8a:0d:6b:df:8a:f8:d1:
e8:a9:6b:9e:fa:b1:a3:4c:f9:9c:79:32:40:c7:95:d3:1d:87:
07:f0:58:b9:96:94:4d:bf:b4:9c:c4:30:1c:6c:52:54:c7:89:
8c:bd:8e:cf:4e:40:8f:56:23:e2:75:90:f0:a4:4e:78:e2:77:
ac:a1:8d:b5:d6:d2:33:9b:d3:f0:a6:34:e4:bb:4c:5f:94:f9:
25:6d:b4:49:09:30:04:51:66:f1:be:90:35:a4:27:6f:2d:4b:
1a:5c:e2:a5:fa:20:1b:cc:f2:92:68:11:5e:d0:65:58:1f:25:
a4:e2:8a:bc:ea:4a:b5:94:89:8e:5f:9c:6c:a2:27:2d:c8:5c:
25:09:30:7d:ce:f9:46:83:df:14:ad:04:f6:2e:82:85:d2:2b:
9a:33:de:1c:15:67:15:fa:c9:81:36:12:ca:8c:aa:35:8a:c2:
a1:63:3d:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 17 23:40:29 2025 by rpki-client