Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00CAB00076C611F0B3C9D17DDAE4EC9C.roa
File: 00CAB00076C611F0B3C9D17DDAE4EC9C.roa (raw, json)
Hash identifier: cPLx9wLxgpnVgr2OklIIvfyYgiXdLRgPQnfBCJUQu+s=
Subject key identifier: 57:1F:43:87:D9:46:0D:3C:B8:34:D5:85:FB:C0:88:95:5C:EA:08:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019153
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00CAB00076C611F0B3C9D17DDAE4EC9C.roa
Signing time: Mon 11 Aug 2025 15:15:24 +0000
ROA not before: Mon 11 Aug 2025 15:15:18 +0000
ROA not after: Tue 16 Sep 2025 15:15:18 +0000
asID: 22773
IP address blocks: 154.82.11.0/24 maxlen: 24
154.82.12.0/24 maxlen: 24
154.82.13.0/24 maxlen: 24
154.82.14.0/24 maxlen: 24
154.82.15.0/24 maxlen: 24
154.85.12.0/24 maxlen: 24
154.85.22.0/24 maxlen: 24
154.85.23.0/24 maxlen: 24
154.85.104.0/24 maxlen: 24
154.85.105.0/24 maxlen: 24
154.85.106.0/24 maxlen: 24
154.85.107.0/24 maxlen: 24
154.85.108.0/24 maxlen: 24
154.85.109.0/24 maxlen: 24
154.85.110.0/24 maxlen: 24
154.85.111.0/24 maxlen: 24
154.85.112.0/24 maxlen: 24
154.85.113.0/24 maxlen: 24
154.85.114.0/24 maxlen: 24
154.85.115.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102739 (0x19153)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 11 15:15:18 2025 GMT
Not After : Sep 16 15:15:18 2025 GMT
Subject: CN=689a090c-99f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d0:47:53:78:19:89:1d:64:cc:39:a4:f7:70:
e3:59:e7:fe:5e:9c:15:c8:3f:05:07:25:71:b8:cf:
09:1a:aa:35:4f:86:cc:13:58:d0:d7:e1:80:34:72:
6d:75:dd:30:5d:35:56:ac:d4:02:44:c0:48:2b:4d:
1b:27:cb:b5:fc:dd:90:03:b0:15:2d:61:c4:ef:aa:
4f:c1:2e:fa:6a:4a:02:39:3d:0f:87:1f:f7:ba:e3:
84:d2:dd:ce:49:57:df:a6:73:91:0b:3e:b5:be:8a:
e2:08:73:e2:fd:4a:7a:25:48:8f:65:0a:4e:ee:0b:
de:ff:a6:09:5c:38:32:a1:c8:3b:20:df:43:14:62:
82:e8:37:82:e5:4b:dd:24:07:9d:8f:3c:5f:93:db:
56:07:0a:ff:50:fe:24:c6:9e:e0:b2:5a:8e:ec:bc:
c7:6f:f9:67:3c:6f:88:39:60:eb:cf:a2:34:0f:c2:
d5:b5:c2:4d:f3:c8:10:f7:c6:ef:95:30:46:95:75:
8e:be:28:a5:ec:0e:3d:a8:8a:a9:97:eb:c2:be:9a:
f5:ad:e4:ea:f9:ed:91:c2:e4:8f:99:68:dc:41:3c:
c7:15:ee:69:2b:b5:ab:81:e2:b9:7d:1e:74:c7:dd:
86:e2:05:de:e0:38:1d:36:97:dc:76:47:33:08:13:
c8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:1F:43:87:D9:46:0D:3C:B8:34:D5:85:FB:C0:88:95:5C:EA:08:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/00CAB00076C611F0B3C9D17DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.11.0-154.82.15.255
154.85.12.0/24
154.85.22.0/23
154.85.104.0-154.85.115.255
Signature Algorithm: sha256WithRSAEncryption
5c:29:95:d0:6b:66:58:d6:d8:0f:5f:57:64:12:5c:54:90:96:
80:11:92:5e:00:67:a3:00:e6:5a:8a:bf:d0:20:38:4f:e8:a1:
49:81:3a:25:9f:2f:85:b3:35:d7:ef:37:58:39:d9:36:ca:d2:
49:25:61:14:7e:e0:e3:18:75:11:cd:2c:61:a8:7d:32:d0:e2:
ab:bd:01:50:f2:1f:96:c0:09:ab:55:5f:31:24:33:6c:38:35:
70:92:4c:af:90:cd:5b:cc:9a:ce:72:8d:ff:25:98:ab:5f:6a:
c3:23:06:62:45:50:01:bd:7d:70:42:04:98:40:83:da:f6:81:
60:95:57:90:03:34:1d:e0:fd:9e:fa:ce:a5:d9:9f:38:34:f6:
b1:b7:bc:ab:5b:17:e3:2b:f3:01:99:5d:0c:9b:a9:7d:f6:77:
e8:d4:69:76:f8:b0:f8:98:d0:c5:88:3f:03:5f:d6:26:16:98:
20:a3:56:81:b1:88:0b:76:9f:98:28:60:76:08:ed:bd:35:2e:
3c:28:74:b6:5f:2f:52:08:d1:5a:6a:d7:ee:0d:20:7b:4a:48:
74:d0:3b:b4:de:d6:73:2e:05:16:df:92:67:7c:0a:30:1b:18:
60:97:b4:67:6a:23:1c:83:fe:c5:58:d5:5e:fa:c8:b7:6d:a6:
89:f1:81:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:50:00 2025 by rpki-client