Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A423018408211F0BC73F9C8DAE4EC9C.roa
File: 7A423018408211F0BC73F9C8DAE4EC9C.roa (raw, json)
Hash identifier: OWkY5YRnCVnFBv1PMgRyBirBr+27Ha4qSCxrnyi/gAo=
Subject key identifier: 25:45:6B:7F:53:65:1E:4F:15:85:58:02:14:99:C6:C4:80:5C:DA:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01848D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A423018408211F0BC73F9C8DAE4EC9C.roa
Signing time: Tue 03 Jun 2025 13:55:59 +0000
ROA not before: Tue 03 Jun 2025 13:55:54 +0000
ROA not after: Sun 03 Aug 2025 13:55:54 +0000
asID: 138915
IP address blocks: 154.93.72.0/24 maxlen: 24
154.93.98.0/24 maxlen: 24
154.93.99.0/24 maxlen: 24
154.93.111.0/24 maxlen: 24
154.93.115.0/24 maxlen: 24
154.93.122.0/24 maxlen: 24
154.93.124.0/23 maxlen: 24
154.93.126.0/24 maxlen: 24
154.93.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99469 (0x1848d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 13:55:54 2025 GMT
Not After : Aug 3 13:55:54 2025 GMT
Subject: CN=683efeef-ec4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1c:d2:3c:b9:06:df:46:6f:56:b9:f3:11:73:
cb:c0:4b:08:b8:14:65:10:cf:88:df:4d:57:14:00:
85:4c:b5:72:47:72:96:ca:6f:80:58:69:ce:89:1b:
fe:a1:e7:f0:5c:ec:52:59:fa:bd:ba:b4:75:73:b2:
4c:bc:b0:af:be:8a:3f:c5:42:3f:d6:62:b0:8b:7f:
b9:14:e0:27:36:99:8f:ca:5a:84:3b:28:10:ce:b9:
55:23:23:32:8f:4a:29:5e:c7:cb:32:74:f0:ed:30:
ff:b4:87:48:3b:92:07:b1:68:81:97:5b:74:0b:a8:
11:20:58:ef:29:24:a0:7f:9e:6c:5e:17:da:13:25:
2f:9c:12:0d:2f:e2:77:29:d9:0e:ff:50:84:28:f6:
90:57:a5:29:b4:1f:4f:ff:36:1a:99:9e:ee:c6:83:
0f:7c:2e:a8:71:20:09:fd:14:fe:3c:c6:16:20:5c:
93:dc:19:2b:5f:67:64:e1:c4:dd:c7:c2:f6:de:1d:
76:c8:ec:1a:a7:17:62:62:6e:9f:c7:a3:90:f5:10:
32:63:20:88:e8:2a:e0:21:04:c3:d9:79:9b:a0:02:
91:2c:66:08:5b:34:ee:b9:b1:e3:47:d0:cc:6a:34:
d6:f5:0e:ee:64:ae:1d:a9:31:9f:be:e3:fe:79:c8:
ea:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:45:6B:7F:53:65:1E:4F:15:85:58:02:14:99:C6:C4:80:5C:DA:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7A423018408211F0BC73F9C8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.72.0/24
154.93.98.0/23
154.93.111.0/24
154.93.115.0/24
154.93.122.0/24
154.93.124.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:78:fe:42:60:85:48:7d:17:2a:47:3b:e6:81:15:83:7a:dd:
5c:44:21:c5:51:8d:59:83:55:51:9b:0f:20:af:b0:ac:31:38:
9c:7b:c7:bb:00:a4:8d:d7:9a:56:c2:31:30:67:28:c2:2d:ce:
18:0f:72:ed:47:69:3d:61:bc:5c:e9:08:e2:fb:62:00:3a:95:
47:5f:6a:78:e3:53:54:03:0a:a9:3a:2b:61:9a:aa:b3:d3:dc:
23:e4:3f:7b:ea:7a:f2:ee:03:be:81:26:07:f9:f9:a9:22:7d:
88:56:90:73:60:d4:46:36:b8:2c:8c:37:1a:04:e7:14:50:db:
05:0c:3b:63:1b:b5:b2:dd:1f:62:57:07:f9:95:05:83:2e:9e:
d2:15:3e:33:fb:71:e7:c6:45:ed:7e:0b:e1:dd:dc:66:27:23:
6e:e7:aa:09:50:a6:d6:20:47:dc:50:e0:67:c3:50:d9:ef:7a:
30:8c:ee:ff:fa:88:03:4f:c4:39:f0:0f:5a:14:dd:46:46:fb:
bb:98:2f:df:20:3d:26:3d:08:64:15:7e:76:a7:fa:43:5d:f7:
45:f1:bb:9f:84:97:2b:2d:d0:0a:86:e2:86:1e:94:c4:0d:60:
b9:2d:6e:38:fd:01:66:f4:1e:64:8c:1c:ee:2d:01:92:3f:ea:
6e:f5:cc:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:44:12 2025 by rpki-client