Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0258FF30513711F0A28FDF86DAE4EC9C.roa
File: 0258FF30513711F0A28FDF86DAE4EC9C.roa (raw, json)
Hash identifier: utPdMx0Ee1LhG0JSAIWNLnni8PF7JXNhLRM01nhn2K8=
Subject key identifier: B1:0F:33:57:4B:B0:BE:4F:BC:BD:C7:23:33:D0:D9:4D:88:F2:6B:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0188AE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0258FF30513711F0A28FDF86DAE4EC9C.roa
Signing time: Tue 24 Jun 2025 20:08:36 +0000
ROA not before: Tue 24 Jun 2025 20:08:30 +0000
ROA not after: Sat 09 Aug 2025 20:08:30 +0000
asID: 138915
IP address blocks: 154.95.85.0/24 maxlen: 24
154.95.86.0/23 maxlen: 24
154.95.88.0/24 maxlen: 24
154.95.89.0/24 maxlen: 24
154.95.90.0/24 maxlen: 24
154.95.91.0/24 maxlen: 24
154.95.92.0/24 maxlen: 24
154.95.93.0/24 maxlen: 24
154.95.94.0/24 maxlen: 24
154.95.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 11:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100526 (0x188ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 20:08:30 2025 GMT
Not After : Aug 9 20:08:30 2025 GMT
Subject: CN=685b05c4-2da9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:59:11:f1:7b:0e:3f:87:37:66:34:e5:76:94:
f4:fa:6e:cd:5e:63:aa:0e:1a:e7:fc:6d:85:ad:41:
d3:67:4d:c0:35:2b:a8:d0:d3:57:6a:b2:44:e0:52:
51:87:b1:34:28:72:87:40:0f:ac:fd:9c:69:00:2c:
5d:0e:dd:f5:67:e2:d5:23:ef:1e:4f:c8:9b:d2:15:
ff:34:4c:d8:88:86:ee:8a:75:1c:d0:1f:6c:8d:fc:
0b:22:d5:63:64:49:9d:58:9e:b0:b0:07:6c:2f:83:
3a:52:3a:33:78:42:10:27:58:d0:b8:f3:84:57:bf:
fc:91:6e:2d:5c:1f:18:a0:72:a3:23:f2:ee:22:57:
61:51:15:07:b1:04:b0:e5:34:47:2f:4a:e3:d6:d6:
29:bb:9c:46:d0:64:30:e8:79:b7:56:f4:02:86:36:
01:ba:87:42:1d:b4:3d:d4:d1:79:a6:07:e1:d8:02:
be:90:0a:68:a9:e1:d6:01:4b:b1:86:62:d2:f8:67:
8d:e2:c3:12:f7:a6:30:e7:0e:c1:5b:55:d8:c0:14:
30:36:be:bb:9a:4d:3f:08:e8:d5:15:48:8c:36:5c:
d3:1a:e8:a1:96:e7:b4:ef:3d:30:be:10:d1:cd:f0:
11:af:44:99:7f:65:b2:7b:fb:8c:80:e3:b3:04:88:
aa:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:0F:33:57:4B:B0:BE:4F:BC:BD:C7:23:33:D0:D9:4D:88:F2:6B:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0258FF30513711F0A28FDF86DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.85.0-154.95.95.255
Signature Algorithm: sha256WithRSAEncryption
a9:f8:59:f4:92:ee:1f:f2:93:27:6b:d2:0a:ff:18:b6:0e:8c:
81:f4:59:2f:b1:d6:27:03:aa:ba:9e:c0:f4:fc:ab:3e:ae:68:
fc:29:59:f4:c7:92:b6:9b:fe:c9:03:e5:7d:91:5a:8d:fa:fa:
dd:49:18:a7:b6:47:20:b9:d7:ea:11:f7:db:6e:95:04:b5:8c:
b6:d9:8f:50:2d:f3:31:23:d2:e2:f4:02:25:08:8b:b1:d6:b4:
0b:40:e7:ab:d7:ca:e3:53:1c:87:95:4f:52:9d:18:aa:d2:cb:
31:88:86:77:0b:69:30:91:03:a9:2b:c8:95:f0:29:e9:c8:53:
d1:b0:d6:e6:4c:46:62:9c:05:db:de:d4:d9:dc:02:f6:9f:cb:
f2:d1:59:93:1a:67:62:3e:2f:78:0f:18:c2:f5:93:c5:66:3f:
c5:51:71:72:1e:2a:94:63:92:dd:d3:d2:f1:7d:21:d3:03:1d:
26:f5:f3:d6:4d:d0:09:6b:66:c9:00:09:ba:7a:2b:63:21:c0:
99:bf:73:2e:79:2b:19:67:3a:03:fc:02:21:3d:68:0b:8e:31:
a2:f3:5e:fb:8f:1d:bc:9d:7c:0a:d2:5c:81:49:6f:60:53:79:
aa:4f:2d:c7:a3:cc:1b:75:9c:e7:e8:ad:85:c5:86:f2:77:03:
1f:49:55:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 15:58:54 2025 by rpki-client