Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/073B7C2A532711F0A9E857AFDAE4EC9C.roa
File: 073B7C2A532711F0A9E857AFDAE4EC9C.roa (raw, json)
Hash identifier: emBvbV9S9UxF0pOBssq02GRS0olQLdK83T/swGjNecQ=
Subject key identifier: 74:CE:D1:AF:6D:1B:77:E2:CC:1B:2E:D0:40:68:66:15:16:14:87:CF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018930
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/073B7C2A532711F0A9E857AFDAE4EC9C.roa
Signing time: Fri 27 Jun 2025 07:19:14 +0000
ROA not before: Fri 27 Jun 2025 07:19:09 +0000
ROA not after: Sun 06 Jul 2025 07:19:09 +0000
asID: 141883
IP address blocks: 154.214.32.0/19 maxlen: 24
154.216.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Jul 2025 13:18:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100656 (0x18930)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 07:19:09 2025 GMT
Not After : Jul 6 07:19:09 2025 GMT
Subject: CN=685e45f2-2482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:60:b9:b2:a2:b9:2d:60:c3:c2:5f:d0:22:9c:
f5:9c:b2:06:54:0d:2b:7c:67:7e:6f:37:8c:58:df:
fe:f4:45:15:70:05:d8:2d:36:1a:a1:af:e7:44:84:
04:60:53:f7:18:f7:e3:e4:d4:7e:dc:d2:a3:3e:90:
b5:10:cb:10:07:73:fb:9b:99:3a:c5:1c:5e:d8:6a:
ce:11:23:36:e0:65:81:cb:4d:f2:4e:20:0b:f2:15:
be:c5:09:79:56:e8:7c:fa:8a:1f:15:01:da:87:46:
20:ef:ff:55:db:b4:4d:cd:38:c9:68:8c:9b:51:4e:
01:f7:59:55:eb:c1:e2:46:4a:f8:fd:7b:77:42:79:
4f:69:51:0d:24:b6:73:53:95:9d:47:db:0f:79:68:
8d:4f:28:50:fb:0a:de:ce:56:27:21:b4:b7:11:52:
85:09:2a:6e:7a:12:24:b4:0f:b3:9b:47:63:fc:2f:
3f:12:c3:e3:4c:cc:ec:66:72:82:c8:39:53:17:b2:
46:8f:d3:d1:b5:5a:40:d4:f4:5e:e5:55:84:c6:9e:
cc:c2:88:db:c0:cc:7e:ff:89:5a:af:5a:4b:e5:58:
eb:be:bd:98:27:ae:66:b5:87:44:5f:c1:59:c9:b5:
1b:63:6d:10:3d:c5:92:44:e1:29:34:94:5a:c5:16:
3a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CE:D1:AF:6D:1B:77:E2:CC:1B:2E:D0:40:68:66:15:16:14:87:CF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/073B7C2A532711F0A9E857AFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.32.0/19
154.216.128.0/18
Signature Algorithm: sha256WithRSAEncryption
80:e4:96:a6:ef:80:3d:c6:fb:54:07:49:a1:40:23:60:b1:57:
d6:08:4c:12:67:75:0b:4d:e3:33:14:ae:6d:6a:d3:6b:3a:61:
30:75:c0:18:65:4d:83:e6:07:6b:0c:18:19:c5:5f:ca:11:e2:
81:ee:28:9f:9f:5e:8b:00:94:0e:88:81:bc:1b:53:fd:2c:08:
c7:31:d9:4c:c6:69:e4:9e:aa:1e:e4:25:16:54:15:44:d8:15:
e0:e2:34:bd:0c:a0:1e:36:15:52:92:a6:26:b6:d6:f5:5f:71:
ca:bf:10:3a:8a:fb:d3:f5:45:75:9a:b6:78:bd:b5:23:fe:f5:
b3:67:91:6a:8d:fa:71:b1:57:14:a8:00:fc:97:2e:75:21:e8:
4c:77:54:66:a0:04:dd:07:8d:69:79:ba:3c:e7:b0:8e:b1:ab:
7a:52:5a:53:c2:39:14:ae:32:b0:78:c6:bd:f4:ea:e4:5a:4e:
77:c6:f2:0f:a7:54:ab:7f:d9:75:3a:37:e7:da:66:ae:d2:08:
b5:26:60:bf:57:9a:6c:fa:e3:71:64:ab:5f:c5:d2:93:34:5b:
4c:6f:5a:cb:df:dd:5c:14:9a:28:71:fd:b1:0d:43:ea:cd:69:
62:9b:3e:b4:cc:e9:d2:11:4c:72:31:82:03:1e:94:c6:c5:fe:
e7:66:05:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 16:35:09 2025 by rpki-client