Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFF0A15459DD11F08A7323D2DAE4EC9C.roa
File: EFF0A15459DD11F08A7323D2DAE4EC9C.roa (raw, json)
Hash identifier: soX/t89movDVtT7Lr2qebZ3LSfW9Tni3Zb4+D9Kz4q4=
Subject key identifier: 0D:BD:17:4B:61:83:C4:19:5E:86:2B:98:8E:AD:AA:68:BA:F8:27:59
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018B58
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFF0A15459DD11F08A7323D2DAE4EC9C.roa
Signing time: Sat 05 Jul 2025 20:23:40 +0000
ROA not before: Sat 05 Jul 2025 20:23:35 +0000
ROA not after: Fri 17 Jul 2026 20:23:35 +0000
asID: 21859
IP address blocks: 154.193.248.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 08 Jul 2025 23:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101208 (0x18b58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 5 20:23:35 2025 GMT
Not After : Jul 17 20:23:35 2026 GMT
Subject: CN=686989cc-ed8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:16:d2:1d:0f:8b:4d:94:0f:5f:b3:ae:53:
9d:12:a1:2e:da:2c:71:ed:fc:da:07:31:f9:cf:47:
33:7b:aa:97:2a:b6:f6:e0:eb:6e:97:f5:0b:c7:3a:
2e:55:0d:59:84:4b:28:51:a1:80:17:bd:6b:32:37:
ec:81:76:f2:84:af:b1:8a:e7:7b:33:d0:d6:a0:d8:
a8:2c:41:2c:33:50:af:79:26:26:ba:e4:82:8e:8a:
22:9d:5e:74:09:b3:75:a0:17:01:14:31:3c:86:ca:
d1:ad:b5:12:1d:8e:ee:87:76:b5:80:97:49:8f:18:
03:6a:cd:a4:2e:f8:ff:4b:c6:22:7b:5a:d9:cd:91:
5f:53:40:a7:7c:86:67:36:32:e6:95:8e:44:54:97:
19:b7:9e:55:12:3e:8b:34:84:7e:52:36:45:d4:b2:
75:e3:d4:48:d7:7f:30:9c:23:16:e1:15:d0:d0:9a:
b3:a5:72:02:49:55:55:2d:e1:85:fe:85:55:e5:f2:
7b:dd:15:fb:fe:e7:b2:45:5a:8b:97:fb:5f:ca:60:
ec:1e:6d:b5:16:50:fa:28:54:97:e7:d3:1e:43:16:
1c:cb:2e:8f:ee:5b:9c:ce:3b:ff:c4:6f:76:60:f9:
73:8f:19:7d:93:0e:8b:4f:4a:c6:44:63:f1:a2:36:
1e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BD:17:4B:61:83:C4:19:5E:86:2B:98:8E:AD:AA:68:BA:F8:27:59
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFF0A15459DD11F08A7323D2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.248.0/21
Signature Algorithm: sha256WithRSAEncryption
78:92:fa:3c:df:4f:3f:06:46:ff:0d:73:ec:be:bd:b4:29:ac:
27:7c:26:93:97:42:8a:46:e6:35:ac:0b:56:1a:df:b0:d5:38:
df:bc:7d:5f:ff:33:8a:79:08:66:86:0f:7d:af:76:2a:60:8e:
4b:88:31:7b:04:cf:9f:e1:4a:40:a5:57:1f:43:c6:f7:d9:86:
ed:08:c1:aa:a1:cf:5d:28:46:3b:ea:07:d6:d7:b6:7b:8a:01:
be:a5:86:00:08:c5:e3:64:3e:8d:b2:64:65:db:47:89:f4:eb:
08:90:14:36:6c:bd:d9:74:fc:5b:1f:24:e5:48:45:47:ca:5b:
b2:32:ea:19:b1:ff:ab:49:d2:49:77:60:e6:20:7f:20:1b:74:
3e:5b:e5:b3:1a:ca:3a:b2:6a:12:68:69:0c:14:ad:2a:a1:b3:
21:6c:d2:4e:fd:39:8d:b9:e7:44:30:e9:8b:bf:df:b7:34:65:
6d:3e:2e:c7:26:35:b7:6f:f8:a3:6e:23:0b:7f:7a:b1:82:5e:
6d:e4:82:8d:44:19:c5:44:bd:4d:30:b4:25:4a:43:26:4c:96:
90:c2:5c:6a:2d:d3:50:35:27:45:40:be:75:7a:df:28:84:cb:
4b:5c:80:a1:bf:e7:ab:8e:36:8d:ad:05:24:79:2c:a5:9e:bd:
12:cf:97:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 7 02:18:25 2025 by rpki-client