Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F19764A0841911F099C90F8ADAE4EC9C.roa
File: F19764A0841911F099C90F8ADAE4EC9C.roa (raw, json)
Hash identifier: sug86hKHba/BvY8bgvS4XfBw+RmIYS08mxX4ZMFpzl8=
Subject key identifier: ED:D3:7E:67:DD:A1:4D:21:1E:CA:F5:FD:AF:81:82:82:4F:E3:A5:58
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0199E4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F19764A0841911F099C90F8ADAE4EC9C.roa
Signing time: Thu 28 Aug 2025 14:19:01 +0000
ROA not before: Thu 28 Aug 2025 14:18:56 +0000
ROA not after: Tue 30 Sep 2025 14:18:56 +0000
asID: 62240
IP address blocks: 154.194.72.0/24 maxlen: 24
154.194.73.0/24 maxlen: 24
154.194.74.0/24 maxlen: 24
154.194.89.0/24 maxlen: 24
154.194.92.0/24 maxlen: 24
154.194.93.0/24 maxlen: 24
154.194.98.0/24 maxlen: 24
154.196.18.0/24 maxlen: 24
154.196.22.0/24 maxlen: 24
154.196.50.0/24 maxlen: 24
154.196.54.0/24 maxlen: 24
154.196.55.0/24 maxlen: 24
154.196.56.0/24 maxlen: 24
154.196.57.0/24 maxlen: 24
154.196.58.0/24 maxlen: 24
154.196.59.0/24 maxlen: 24
154.196.60.0/24 maxlen: 24
154.196.61.0/24 maxlen: 24
154.196.62.0/24 maxlen: 24
154.196.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104932 (0x199e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 28 14:18:56 2025 GMT
Not After : Sep 30 14:18:56 2025 GMT
Subject: CN=68b06555-2371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9f:e9:78:ef:f2:0a:98:10:2d:81:ee:b1:c7:
1c:13:64:c6:ae:3f:79:df:8c:bb:98:27:d8:c3:14:
b9:5e:ff:c7:b5:69:69:7c:45:50:53:90:a7:8d:bf:
01:2a:3e:10:8b:16:49:64:b2:51:28:fd:a1:5a:ac:
1a:cd:fa:73:4f:bb:57:06:01:f6:6f:21:13:94:ba:
82:e9:e0:7f:b9:bc:34:bc:4b:72:09:ed:a6:de:44:
c8:a3:e3:70:28:a2:f2:95:5c:36:4a:fa:5e:04:5d:
da:55:bd:bf:75:d0:6a:fb:eb:bf:e1:b0:62:52:24:
87:59:8c:12:fc:d0:b5:55:18:cd:15:ae:34:c7:e6:
b3:05:ac:55:67:a7:13:43:b4:4f:c3:cb:b0:31:8d:
0b:bf:4b:1b:c3:33:c4:46:39:65:0f:fc:6c:59:3b:
28:3e:f8:e4:08:9e:60:de:c7:8f:d2:33:ee:de:19:
cd:c0:ce:60:f3:5a:b9:6d:44:9b:25:78:6b:17:c7:
03:5f:23:2e:c0:20:4d:63:8e:15:cc:9f:49:81:90:
b0:30:c7:0c:7b:67:c8:ea:99:bf:17:26:ee:ce:4f:
10:99:47:b8:bb:f6:4c:72:13:96:35:d4:6c:f1:3b:
bc:94:81:c0:8c:8e:36:59:36:44:7d:c1:06:50:02:
32:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D3:7E:67:DD:A1:4D:21:1E:CA:F5:FD:AF:81:82:82:4F:E3:A5:58
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F19764A0841911F099C90F8ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.72.0-154.194.74.255
154.194.89.0/24
154.194.92.0/23
154.194.98.0/24
154.196.18.0/24
154.196.22.0/24
154.196.50.0/24
154.196.54.0-154.196.62.255
154.196.64.0/24
Signature Algorithm: sha256WithRSAEncryption
43:b6:df:78:d9:19:6e:1d:b4:f5:15:70:5b:27:79:7e:a5:70:
e8:0e:2b:7c:2d:aa:cb:62:59:5a:84:a7:bf:dd:c3:e7:8a:ab:
d5:0c:09:82:93:e9:b2:19:4a:76:94:ae:70:04:c2:2f:15:f0:
fa:f0:5d:ab:91:e1:20:9d:f7:e3:f5:85:c1:b7:b6:96:5a:43:
34:41:58:4e:00:3b:cd:0a:d4:69:64:93:1d:15:20:79:b6:f5:
4b:6d:b3:96:51:84:4a:df:95:20:48:b0:58:0b:e0:aa:d4:58:
25:a3:5d:8f:30:83:0b:dc:7a:b9:f8:00:97:0b:ce:76:ed:8c:
a6:ba:cd:17:27:a7:ab:f9:9a:47:bd:8b:09:19:ff:8f:af:53:
f7:2c:70:62:bb:b9:c0:e6:00:da:b7:04:79:84:8b:48:0c:b0:
ed:d7:69:9e:b3:b9:ee:ce:58:98:1e:0a:c2:e5:f3:99:de:71:
92:0c:a3:8e:b5:5d:80:e3:b3:93:6a:26:b8:3b:36:b5:db:6f:
bc:2e:63:92:20:cd:46:fd:c9:d7:03:29:75:4c:81:0b:c4:74:
20:36:7e:e7:e5:37:2c:91:b8:2a:d0:e2:52:3d:12:47:e0:5e:
3f:7a:e1:eb:e3:d8:55:d5:90:db:3f:79:e0:86:f9:e4:b9:fe:
18:82:37:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:36:23 2025 by rpki-client