Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6ECF5862841311F08FE848DEDAE4EC9C.roa
File: 6ECF5862841311F08FE848DEDAE4EC9C.roa (raw, json)
Hash identifier: Z65UUq1pfIZSkEWlwgd5V3dn0/YxDBPFGjvZtk73FCY=
Subject key identifier: 50:C9:A8:B9:BA:11:F6:08:DD:98:F8:35:46:32:58:18:2C:0D:78:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0199D4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6ECF5862841311F08FE848DEDAE4EC9C.roa
Signing time: Thu 28 Aug 2025 13:32:25 +0000
ROA not before: Thu 28 Aug 2025 13:32:20 +0000
ROA not after: Tue 30 Sep 2025 13:32:20 +0000
asID: 62240
IP address blocks: 154.195.2.0/24 maxlen: 24
154.195.3.0/24 maxlen: 24
154.195.97.0/24 maxlen: 24
154.195.98.0/24 maxlen: 24
154.195.99.0/24 maxlen: 24
154.195.101.0/24 maxlen: 24
154.195.102.0/24 maxlen: 24
154.195.103.0/24 maxlen: 24
154.195.104.0/24 maxlen: 24
154.195.105.0/24 maxlen: 24
154.195.106.0/24 maxlen: 24
154.195.107.0/24 maxlen: 24
154.195.109.0/24 maxlen: 24
154.195.110.0/24 maxlen: 24
154.195.114.0/24 maxlen: 24
154.195.115.0/24 maxlen: 24
154.195.119.0/24 maxlen: 24
154.196.83.0/24 maxlen: 24
154.196.84.0/24 maxlen: 24
154.196.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104916 (0x199d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 28 13:32:20 2025 GMT
Not After : Sep 30 13:32:20 2025 GMT
Subject: CN=68b05a69-9ff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:20:ae:ba:43:ba:dd:7a:4c:ae:14:b1:ee:aa:
e9:90:d6:27:61:f3:3a:5d:91:78:7e:a5:7b:a2:65:
1e:96:1b:b0:8f:c1:43:f2:6a:23:b7:5e:90:0e:2b:
12:10:ee:69:d5:d6:c2:03:b3:1a:8e:ad:7f:07:7c:
f3:32:c0:16:59:a0:ea:58:3c:b2:b8:c9:76:19:99:
62:c9:d0:ed:1b:cd:99:43:f4:89:e5:17:e5:b8:1d:
97:d1:46:3c:2e:91:bc:59:27:c9:58:2f:97:b5:cb:
0f:77:ac:56:ca:ad:95:58:ac:f7:ad:d5:09:d1:df:
f9:f1:b9:5b:80:61:cb:d9:54:2c:10:67:da:bd:54:
46:64:1e:bd:ec:ee:95:41:e8:c4:3d:9f:37:7e:3b:
17:df:27:71:55:4c:a6:5e:4e:56:f9:30:1b:0d:1c:
82:c3:e4:19:91:3b:a7:54:b8:ed:3c:37:ea:df:15:
45:4d:77:b3:8b:e3:e3:d7:fd:a5:20:f7:94:90:df:
36:f3:c3:08:8f:31:11:70:1c:09:52:e0:0b:f6:7e:
43:f6:05:09:0a:47:85:f2:bb:6c:75:b2:10:4b:bf:
a1:4e:c5:28:5c:38:03:54:d5:e2:c3:e3:ae:06:65:
06:b7:32:04:03:69:06:a6:7f:05:52:4e:e9:38:f2:
75:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C9:A8:B9:BA:11:F6:08:DD:98:F8:35:46:32:58:18:2C:0D:78:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6ECF5862841311F08FE848DEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.2.0/23
154.195.97.0-154.195.99.255
154.195.101.0-154.195.107.255
154.195.109.0-154.195.110.255
154.195.114.0/23
154.195.119.0/24
154.196.83.0-154.196.85.255
Signature Algorithm: sha256WithRSAEncryption
11:48:a1:54:69:40:1d:98:4d:cc:e0:72:34:eb:5c:a6:4c:aa:
70:63:22:9a:c8:5a:a3:e7:d7:ef:5d:28:a5:85:98:85:66:08:
29:28:80:22:29:5c:04:6c:9f:31:cb:3f:17:8c:d8:86:56:60:
c2:c4:f7:95:d3:81:ec:e2:12:a1:8b:a9:ec:c9:80:53:f7:23:
ff:93:24:27:c4:da:28:1a:0d:8d:6e:40:06:42:16:3a:01:bb:
04:2a:81:47:f6:9b:2b:ef:9a:97:be:da:78:05:8b:d0:8e:0f:
79:1a:b6:c0:71:44:ed:69:69:bb:e2:7f:cb:fc:6a:14:77:a1:
32:f9:28:33:d8:32:62:ec:e6:aa:b8:52:1d:0f:d1:c0:1a:70:
7d:33:5b:42:d2:5e:ad:19:47:db:5a:1c:b3:68:e9:32:5d:ec:
5d:d3:38:60:5a:d4:d3:58:28:06:3e:a1:a3:fc:d3:9e:0e:d2:
96:04:d8:e1:f5:e2:ef:50:b1:09:e6:d2:80:24:48:f8:ab:97:
2b:bd:0a:a4:3e:91:c6:54:09:fe:61:3e:bb:04:1f:94:1a:db:
43:9b:10:a1:60:15:15:66:7d:a2:d3:4b:ff:8b:54:7d:8a:8a:
76:1e:09:53:26:f2:07:69:1c:5f:41:86:6f:6b:ec:d0:b3:11:
2e:19:61:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:30:12 2025 by rpki-client