Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72A4951472A311F0AB9D6292DAE4EC9C.roa
File: 72A4951472A311F0AB9D6292DAE4EC9C.roa (raw, json)
Hash identifier: XzHO+TgJrCyM2jLDB8+K30Y0XVlfUmWac7uF0T1hN0g=
Subject key identifier: C8:2D:77:F9:4F:9E:A6:FD:23:11:5E:A1:37:C2:99:A2:4A:B3:94:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0190B0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72A4951472A311F0AB9D6292DAE4EC9C.roa
Signing time: Wed 06 Aug 2025 08:57:58 +0000
ROA not before: Wed 06 Aug 2025 08:57:53 +0000
ROA not after: Sat 13 Sep 2025 08:57:53 +0000
asID: 20457
IP address blocks: 154.198.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Aug 2025 07:05:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102576 (0x190b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 6 08:57:53 2025 GMT
Not After : Sep 13 08:57:53 2025 GMT
Subject: CN=68931916-9e43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a2:d7:a4:d1:e6:ea:0c:c2:6f:71:07:76:13:
45:58:e1:99:6d:74:67:78:ad:73:a6:d7:ba:92:22:
70:1a:94:04:09:e7:19:82:52:14:4f:99:dc:18:9f:
ed:b1:41:38:76:1f:04:33:f0:a4:46:7c:8d:c8:c7:
62:50:ee:00:ba:5c:77:76:f7:60:05:a9:2e:d9:89:
ec:72:df:9d:30:f0:dd:c8:d1:f6:fa:44:4a:7e:ab:
dc:f3:12:c6:cf:16:d0:e1:19:70:d8:cc:95:5c:b0:
91:7c:dd:1d:b4:aa:9b:ff:80:29:a4:66:d6:bb:39:
8a:bb:23:ee:e8:21:ef:16:e1:02:c8:9e:35:09:2f:
7e:5c:02:0e:23:de:26:0e:b0:af:f3:87:18:41:7e:
80:e3:c2:c5:38:81:10:98:66:18:b0:94:15:e9:9d:
2e:9f:d0:ba:52:d2:01:e4:26:60:4e:f1:2a:1d:0d:
c7:87:eb:59:cd:a7:38:45:5a:12:78:ff:63:2b:49:
40:d5:4e:97:94:43:01:89:15:f8:e8:f7:ee:b1:d5:
14:9f:11:be:5e:06:c2:5f:02:65:0f:d0:ce:a4:6c:
28:9f:e7:44:73:64:ff:4e:b0:65:ca:fb:d9:e7:f7:
ab:b8:45:49:27:cf:d2:68:3e:31:b1:fd:64:d5:c9:
76:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:2D:77:F9:4F:9E:A6:FD:23:11:5E:A1:37:C2:99:A2:4A:B3:94:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72A4951472A311F0AB9D6292DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.11.0/24
Signature Algorithm: sha256WithRSAEncryption
40:b2:0e:c3:48:7b:e0:63:f3:5a:c0:52:23:18:b1:4e:a9:f6:
6f:a1:81:55:cf:4d:77:a7:4d:ac:22:c1:cf:41:a8:c5:a8:e7:
8c:90:3f:1b:34:23:e5:b2:48:4c:1e:63:47:b7:4b:27:3b:af:
08:63:f1:aa:3c:cb:c7:36:c7:19:d4:d6:a0:55:6b:02:1c:75:
6f:6f:c1:e0:01:54:c7:44:3b:f8:33:8b:2b:b6:7c:1d:4b:c1:
bd:98:0d:42:0c:68:98:a4:10:c3:d3:45:10:01:82:b6:18:96:
8c:4d:3b:d3:63:ac:d3:a9:a8:02:9d:5c:08:5b:e9:50:28:ee:
46:97:7d:5d:19:04:0c:51:02:59:ad:1b:2c:f9:46:87:22:f6:
52:44:87:04:c3:c4:1d:cd:67:46:cd:6c:91:c3:b4:44:f7:99:
e8:60:3d:9e:d5:5a:2a:ca:72:ce:b7:1b:71:4d:14:38:dd:ab:
c5:a8:c0:40:f3:4e:0c:3e:b8:68:11:a6:08:02:b3:81:da:5b:
02:63:9d:c3:90:c2:00:a8:13:df:c7:40:6d:ad:99:d5:ca:b2:
aa:36:68:a8:2f:ae:cd:bb:11:b5:58:66:da:9e:76:2c:f4:a7:
9c:af:7f:e6:3c:f4:ee:7d:9a:12:63:bf:cf:ac:09:08:8e:4f:
c9:16:b3:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 20:22:39 2025 by rpki-client