Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95179306910411F0AE1E629BDAE4EC9C.roa
File: 95179306910411F0AE1E629BDAE4EC9C.roa (raw, json)
Hash identifier: tXl4kDcP+DrEaHRd9dhUoNVdSNiXTb6xWt7xvM6lkfk=
Subject key identifier: 86:B3:3C:D0:92:03:38:65:E6:78:71:07:56:1B:A8:A1:27:A3:C5:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019F99
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95179306910411F0AE1E629BDAE4EC9C.roa
Signing time: Sun 14 Sep 2025 00:48:52 +0000
ROA not before: Sun 14 Sep 2025 00:00:47 +0000
ROA not after: Tue 21 Oct 2025 00:00:47 +0000
asID: 57043
IP address blocks: 154.84.164.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Sep 2025 00:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106393 (0x19f99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 00:00:47 2025 GMT
Not After : Oct 21 00:00:47 2025 GMT
Subject: CN=68c610f4-6ab5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3b:16:09:33:5f:9f:70:23:3f:d5:0d:d6:bd:
33:01:11:41:ec:3a:e0:8d:f0:2e:c9:b4:8a:dd:13:
46:07:d8:54:9b:4f:29:9d:3c:f0:7e:e4:d5:a9:b9:
ba:0d:60:4d:af:83:1c:2d:7d:aa:a5:0a:4b:83:ec:
08:3e:46:14:59:80:4f:33:80:80:49:01:93:76:da:
08:44:5d:d1:bd:ec:69:a6:6a:12:dc:fc:c6:5d:b4:
e7:79:e3:e2:75:3c:c5:bb:22:b7:eb:9a:6c:dc:02:
61:f5:d3:59:f3:e8:f2:68:0a:d4:f6:5f:24:eb:a4:
71:30:d4:23:47:a0:f0:34:4d:20:f3:01:c1:0b:13:
33:c3:6a:e7:66:17:bb:b9:79:e1:ba:9d:d1:c2:0a:
47:1c:f6:ac:f2:07:7d:28:30:36:66:37:81:96:79:
c1:5e:0a:48:c1:f8:a8:fc:44:2c:29:61:a6:8b:29:
06:f6:47:05:48:74:6a:2d:c7:6d:fc:98:35:c5:a4:
e6:63:90:b7:8b:71:61:37:fe:38:d7:c0:ce:b9:99:
0c:3e:09:0e:ce:e2:0e:a1:3f:86:10:2c:15:db:91:
07:9e:50:f2:09:17:bf:1e:be:b7:c8:d3:1e:d1:29:
6c:dc:39:4e:6e:a3:84:46:c0:04:69:b0:9e:04:14:
c9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B3:3C:D0:92:03:38:65:E6:78:71:07:56:1B:A8:A1:27:A3:C5:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95179306910411F0AE1E629BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.164.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:bb:46:28:27:7c:83:0d:99:fc:e2:61:1b:ca:0f:61:65:76:
f6:9b:f5:82:2f:9f:15:d1:5d:53:22:f9:87:33:a3:ba:24:82:
5c:00:48:ec:09:bf:6e:4f:76:73:00:c2:4e:b4:96:ca:81:c9:
0f:a5:82:39:85:ea:56:6e:72:22:60:57:fc:ab:7a:1d:f4:34:
dc:db:51:06:5e:6a:32:cd:63:1a:92:c5:0a:ce:f2:f2:89:e6:
47:fc:cf:60:d9:fc:d4:dd:05:31:08:6b:65:8b:ba:7f:b8:4b:
60:95:b9:c8:ce:a9:81:60:20:19:29:02:db:7e:37:70:f8:dc:
22:b2:78:9f:20:ef:03:40:44:e6:30:8d:65:21:e4:b8:57:8b:
3a:a9:4f:e2:42:51:d6:00:2e:7f:3d:8f:f2:d7:6e:ae:14:bb:
3c:20:7a:8a:0c:9d:79:82:68:35:48:b9:3e:c8:78:e2:cb:c3:
83:44:3c:ec:3e:63:d3:bb:2f:d3:de:67:ac:16:9c:71:5a:ad:
3b:c3:db:63:21:7e:4a:a8:e6:be:35:e8:1f:23:77:a1:2d:b7:
52:09:3b:05:d0:89:64:81:44:86:05:fa:08:e7:5b:ec:66:0d:
c1:9d:ab:19:c3:f0:5c:27:fa:89:f3:ac:25:ad:25:f7:57:5b:
22:f3:8b:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 04:31:37 2025 by rpki-client