Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DBE5CDE3BA111F0805F6697DAE4EC9C.roa
File: 7DBE5CDE3BA111F0805F6697DAE4EC9C.roa (raw, json)
Hash identifier: 3uP3LCL4UZBLFJK2V56mRwRQ1a09WHDocmhNTkcbmsw=
Subject key identifier: 50:25:FB:BC:5C:4F:26:D0:CA:35:65:D5:D9:64:64:B6:B6:7F:CD:16
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018326
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DBE5CDE3BA111F0805F6697DAE4EC9C.roa
Signing time: Wed 28 May 2025 08:55:24 +0000
ROA not before: Wed 28 May 2025 08:55:19 +0000
ROA not after: Sat 27 Jun 2026 08:55:19 +0000
asID: 984
IP address blocks: 154.196.133.0/24 maxlen: 24
154.200.49.0/24 maxlen: 24
154.200.155.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99110 (0x18326)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 08:55:19 2025 GMT
Not After : Jun 27 08:55:19 2026 GMT
Subject: CN=6836cf7c-ced1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:45:94:ac:92:01:14:27:5f:1c:24:df:b4:14:
f3:ec:54:64:43:11:be:25:24:3b:51:ae:d0:86:97:
5b:ce:88:fb:ab:65:0f:3d:e0:34:2b:c8:14:97:b9:
dc:2d:cc:a3:2d:47:16:5d:f3:78:66:c8:dc:0d:46:
48:0f:69:3d:18:e5:af:02:3f:54:57:bf:33:50:c7:
26:cf:e4:6e:3f:15:71:ab:71:55:27:41:c9:8c:ce:
a7:00:7e:bf:64:ee:bd:ab:7f:ab:4f:54:cb:63:bf:
1e:81:40:6b:0b:51:94:88:2b:3b:4c:75:2a:0b:6f:
02:af:d6:ac:cf:a9:6f:bd:70:01:97:b2:02:2f:20:
15:8c:98:ed:b5:2c:59:7d:e3:9f:64:d7:90:2c:71:
d7:1a:ba:72:77:13:22:a6:98:bd:ec:ef:d4:47:9e:
28:5f:b9:49:0b:71:95:cf:91:ad:b7:09:06:8c:a0:
9c:e5:a8:b6:e1:d7:7c:65:e5:03:52:34:f2:05:9b:
a4:a0:71:d5:9e:3f:96:9b:68:e3:eb:4e:c9:04:a8:
44:6c:ef:2d:23:32:60:82:40:6c:c0:0a:4e:14:dc:
46:9f:51:8a:f4:f6:76:f9:77:41:0b:fe:4b:7d:16:
f5:44:e4:ab:b0:75:d0:15:d1:00:ac:a9:10:17:4e:
e5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:25:FB:BC:5C:4F:26:D0:CA:35:65:D5:D9:64:64:B6:B6:7F:CD:16
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DBE5CDE3BA111F0805F6697DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.133.0/24
154.200.49.0/24
154.200.155.0/24
Signature Algorithm: sha256WithRSAEncryption
06:9c:dc:22:05:07:2d:7c:f1:11:a7:f7:ff:bd:d4:72:f4:a9:
e9:67:10:8c:64:37:5e:94:84:0e:36:6d:e7:8c:d6:a1:4e:ff:
b9:5b:79:ce:e7:18:9d:3d:f3:f7:d3:da:32:bf:92:a8:b3:83:
5d:f8:f6:72:cb:ce:13:0d:59:80:f6:6c:bc:d4:e8:6f:46:77:
ff:d6:6b:73:d5:1a:d6:ae:07:3a:d7:9f:8e:f8:0b:27:c3:5b:
3a:e7:6a:ac:96:0c:4b:8a:60:7c:ca:00:c2:30:4c:57:65:02:
86:03:ae:4e:17:83:03:95:8f:0e:cc:06:68:4f:43:13:be:54:
7d:1f:60:d7:53:4e:4a:b4:a5:b5:8f:0a:6a:4f:b3:3f:bd:a5:
f7:6b:38:70:27:67:1c:ff:8e:89:f4:67:7e:a6:bb:22:37:e3:
0d:15:de:06:ac:af:a3:cb:a0:7e:fa:01:b1:e1:91:88:ae:3f:
f7:fb:8c:40:53:81:09:7c:57:0e:63:f1:dd:3f:98:1c:36:17:
ed:e9:6f:7c:45:8a:b5:87:67:21:33:0f:68:da:bb:39:b4:6b:
66:a0:df:08:6d:4a:58:59:05:b1:95:78:08:b9:b6:62:09:81:
bb:24:99:a3:20:cf:23:44:93:03:60:88:d4:6e:f8:9f:c1:9d:
24:f1:0c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 16:45:57 2025 by rpki-client