Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDFC0D1C406911F09FF63FADDAE4EC9C.roa
File: EDFC0D1C406911F09FF63FADDAE4EC9C.roa (raw, json)
Hash identifier: KjCImaS2bO7oNAq3mWXbS4HSA+7Wi/1HqaZOAntDKOM=
Subject key identifier: 72:18:8E:89:50:56:E4:A9:AA:09:B4:0C:7E:84:18:CA:20:79:86:16
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018467
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDFC0D1C406911F09FF63FADDAE4EC9C.roa
Signing time: Tue 03 Jun 2025 11:00:16 +0000
ROA not before: Tue 03 Jun 2025 11:00:11 +0000
ROA not after: Mon 07 Jul 2025 11:00:11 +0000
asID: 396073
IP address blocks: 154.198.12.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Jun 2025 07:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99431 (0x18467)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 11:00:11 2025 GMT
Not After : Jul 7 11:00:11 2025 GMT
Subject: CN=683ed5c0-5cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:59:42:fa:90:28:76:2b:07:60:50:a8:c8:36:
20:ec:9b:56:29:f4:7b:98:91:31:7c:96:1a:ee:c5:
63:bf:ea:56:d9:6b:44:ca:ff:78:9b:39:17:48:a5:
54:c8:e7:0c:c6:fd:75:04:bc:6d:0e:68:d6:1f:a3:
1e:c8:81:b7:f1:63:a4:0f:6b:49:84:1f:ae:85:67:
6e:00:f2:0b:31:b5:f0:19:4f:98:dc:9e:cc:3b:7f:
93:14:d6:cd:d6:bb:34:9a:f7:01:74:b7:b1:20:aa:
06:e4:9d:0e:65:f7:a8:e9:ad:8a:d6:17:e5:fe:b8:
56:a6:21:63:6f:54:de:f1:02:85:66:2c:20:ff:67:
bb:03:f2:3c:57:a9:32:75:5c:a5:8d:c9:88:eb:1f:
65:22:c7:e3:41:17:3b:6c:16:7a:d7:99:7d:a0:7d:
c6:ab:96:3c:46:5d:73:48:2f:64:f9:fc:64:dd:1e:
86:f4:1a:dc:4a:03:9e:51:c5:66:3a:e7:f9:64:36:
9e:ad:4c:c7:11:4d:bf:cf:8f:17:73:6b:ed:c0:80:
8d:41:c2:94:49:66:07:19:cb:c6:2a:a1:38:11:cc:
67:1d:e2:31:0f:78:36:73:44:df:9a:bd:a5:62:08:
fe:b5:ff:06:77:34:5f:e8:0d:57:0d:3f:88:25:40:
f8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:18:8E:89:50:56:E4:A9:AA:09:B4:0C:7E:84:18:CA:20:79:86:16
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EDFC0D1C406911F09FF63FADDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.12.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:bb:75:bd:ed:0b:ab:e8:4b:27:5a:36:f3:57:1c:ab:b6:9e:
37:29:fa:d9:e9:48:a9:eb:33:c0:79:f5:a3:cd:6a:76:d3:ba:
09:83:c0:81:f1:1c:b6:ba:1a:5c:99:98:61:d2:29:c1:88:8d:
07:39:b5:6f:bc:24:38:20:7c:9a:d6:52:ce:2b:72:e2:c8:5f:
05:35:26:84:0e:24:c7:51:36:89:00:95:bf:d9:11:ca:04:26:
a9:24:af:5b:cd:29:52:30:96:5c:60:fd:be:61:09:47:08:18:
08:db:6b:f9:0a:93:66:3e:75:e3:24:6d:e0:e9:71:89:59:2e:
61:6d:85:2a:5e:bf:33:c8:6f:23:cd:2b:be:a9:27:64:ec:f0:
36:3f:7b:ea:7b:86:48:8c:a6:c3:9c:34:c5:3b:72:ca:4a:3b:
cb:69:c9:b8:4b:4c:61:3c:ee:81:95:63:48:5c:0c:24:de:0f:
95:ba:d0:b1:b8:11:bf:4b:dd:ea:ca:4f:86:31:03:59:53:f3:
84:a5:23:db:d0:d6:ee:e2:64:e0:6c:0c:20:e3:2d:26:1e:c6:
3e:85:12:8c:90:bd:59:16:c0:bf:3f:16:0b:94:1f:98:84:36:
5e:47:ae:eb:d1:58:45:60:e8:f1:5d:1e:0f:aa:13:9e:3b:d3:
19:e4:91:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 17:05:09 2025 by rpki-client