Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1C4931E8D6811F0BF35B797DAE4EC9C.roa
File: A1C4931E8D6811F0BF35B797DAE4EC9C.roa (raw, json)
Hash identifier: KQ2JnSN3IHZa51rYrkUby49kWSKiI8F68To1n9++nkU=
Subject key identifier: 35:9B:9A:8E:2A:16:9A:F2:89:2C:B3:E4:6D:12:77:BA:99:6C:47:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019F1C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1C4931E8D6811F0BF35B797DAE4EC9C.roa
Signing time: Tue 09 Sep 2025 10:34:58 +0000
ROA not before: Tue 09 Sep 2025 10:34:52 +0000
ROA not after: Thu 16 Oct 2025 10:34:52 +0000
asID: 22773
IP address blocks: 154.85.116.0/24 maxlen: 24
154.85.117.0/24 maxlen: 24
154.85.118.0/24 maxlen: 24
154.85.119.0/24 maxlen: 24
154.90.2.0/24 maxlen: 24
154.90.3.0/24 maxlen: 24
154.90.4.0/24 maxlen: 24
154.90.5.0/24 maxlen: 24
154.90.6.0/24 maxlen: 24
154.90.7.0/24 maxlen: 24
154.90.22.0/24 maxlen: 24
154.90.23.0/24 maxlen: 24
154.90.24.0/24 maxlen: 24
154.90.25.0/24 maxlen: 24
154.90.26.0/24 maxlen: 24
154.90.27.0/24 maxlen: 24
154.90.132.0/24 maxlen: 24
154.90.141.0/24 maxlen: 24
154.90.144.0/24 maxlen: 24
154.90.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Sep 2025 00:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106268 (0x19f1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 9 10:34:52 2025 GMT
Not After : Oct 16 10:34:52 2025 GMT
Subject: CN=68c002d2-15c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d8:77:b2:8e:a9:f2:c2:a7:04:65:29:f2:0f:
36:50:60:5b:99:56:a6:00:3d:29:86:95:b2:c7:42:
13:c0:2c:19:0d:72:3b:f8:f7:e0:b4:b4:b7:80:fb:
9d:17:65:28:6f:27:69:08:42:83:5c:0a:2c:24:54:
33:17:65:a7:5c:c4:21:df:42:6c:cf:7a:80:e1:d5:
02:36:47:c4:75:1f:ae:ed:b2:aa:f3:25:e6:5e:de:
a3:01:9d:40:5f:48:7d:cd:f4:30:d5:02:00:26:6b:
c2:bf:59:63:46:a6:b5:31:d0:b7:71:66:9a:be:ea:
cf:92:e2:6f:92:2b:e1:8a:08:82:cd:1c:e8:4f:04:
42:e7:01:2c:c7:1e:86:be:f4:f5:6a:ff:31:58:f1:
10:f3:f3:16:09:61:21:60:e8:82:95:c9:ed:e5:6e:
b8:e9:fc:44:1b:fa:db:ae:c2:8b:a9:ed:d2:8b:c2:
7d:64:0b:6f:25:74:b2:a8:58:0e:65:ad:96:78:31:
dc:82:24:d7:d4:53:9b:4c:44:d4:6a:83:49:62:3f:
35:3c:38:e0:bc:7c:55:41:95:bb:29:16:32:a9:55:
27:0d:b5:16:2e:d3:c7:c7:e6:14:73:e3:06:09:b6:
dc:63:a6:36:27:5f:dd:03:31:2b:ec:a2:a5:99:8d:
f0:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:9B:9A:8E:2A:16:9A:F2:89:2C:B3:E4:6D:12:77:BA:99:6C:47:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1C4931E8D6811F0BF35B797DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.116.0/22
154.90.2.0-154.90.7.255
154.90.22.0-154.90.27.255
154.90.132.0/24
154.90.141.0/24
154.90.144.0/23
Signature Algorithm: sha256WithRSAEncryption
44:5f:c4:0e:b1:00:cc:67:1f:fd:0b:c4:da:3b:29:bd:b2:59:
d0:7b:b7:06:3d:68:e8:f4:b5:4b:7a:98:45:27:77:36:88:6e:
75:fa:06:ca:bb:c9:a1:c0:9e:d2:be:1d:01:e1:63:c7:59:eb:
69:9e:73:33:7b:47:0a:b3:95:37:3a:20:63:a9:d7:67:b3:eb:
63:92:ba:cc:43:97:b7:be:20:7b:27:81:b1:88:b3:9e:a3:02:
08:81:55:eb:56:cd:c3:92:30:0a:03:1e:18:c7:6c:69:da:ca:
a8:de:56:81:42:a6:92:3d:a0:d4:80:b8:4a:4c:25:7c:54:ea:
4e:87:f5:53:0e:bd:88:a3:ce:9c:13:25:de:98:67:0d:61:a2:
3f:06:9e:46:3c:4b:8d:97:81:bf:f7:e7:35:73:c0:cc:49:97:
0c:fd:7e:34:73:b3:3b:27:82:84:44:01:51:5b:58:ab:77:ff:
2c:6f:8b:e0:4a:60:e2:10:37:4a:7d:ac:db:0e:17:a5:78:d1:
9e:94:55:c4:5c:ce:f6:e6:59:a0:75:5d:04:a5:41:e6:9e:86:
97:68:1a:6f:5c:ed:18:2b:44:fe:9e:2f:14:b1:29:79:75:7a:
f4:7b:f4:32:7d:6b:d1:1c:54:5b:df:6d:a5:c5:17:e3:77:4e:
29:3f:91:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 22:10:37 2025 by rpki-client