Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A51337A513511F09DE44D7BDAE4EC9C.roa
File: 1A51337A513511F09DE44D7BDAE4EC9C.roa (raw, json)
Hash identifier: FNZ+0pC/+tXAEG+KCX6HNrzE5NLDplgiFj2dmY9AyTI=
Subject key identifier: EE:E9:C7:20:30:B0:79:41:CC:B0:83:5C:30:7D:53:2D:27:C4:C7:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0188AA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A51337A513511F09DE44D7BDAE4EC9C.roa
Signing time: Tue 24 Jun 2025 19:54:57 +0000
ROA not before: Tue 24 Jun 2025 19:54:52 +0000
ROA not after: Sat 09 Aug 2025 19:54:52 +0000
asID: 138915
IP address blocks: 154.90.44.0/23 maxlen: 24
154.90.46.0/23 maxlen: 24
154.90.50.0/23 maxlen: 24
154.90.58.0/23 maxlen: 24
154.90.60.0/23 maxlen: 24
154.90.62.0/23 maxlen: 24
154.93.34.0/23 maxlen: 24
154.93.36.0/23 maxlen: 24
154.93.38.0/23 maxlen: 24
154.93.40.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Jul 2025 13:18:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100522 (0x188aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 19:54:52 2025 GMT
Not After : Aug 9 19:54:52 2025 GMT
Subject: CN=685b0291-2908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a9:bd:2c:68:98:6a:ee:2a:94:4a:6d:ba:d2:
95:91:cd:ac:19:95:0e:dc:1e:cf:03:2d:43:09:ec:
36:cf:70:93:bc:02:67:6c:d3:03:53:83:a2:73:78:
8b:08:96:0f:87:24:30:f8:3b:6f:b3:bd:9d:31:0f:
51:67:51:a1:28:3c:cb:73:9a:08:0b:99:71:e7:26:
1b:0e:03:70:f2:31:5f:5c:cb:47:f9:37:54:b4:81:
0c:29:2c:69:77:32:8d:7c:af:5c:19:a5:35:99:35:
04:af:5f:ad:f6:24:eb:88:e0:2d:14:01:fd:ce:bf:
6e:9f:03:d7:59:b8:a1:03:7c:85:b6:60:8a:4e:f0:
fd:d4:a6:9c:ea:9a:dd:9d:1f:1f:99:01:fa:59:26:
d5:d8:e1:04:36:64:a8:d3:6f:cc:c5:3a:1e:08:01:
89:39:48:6c:6f:57:8a:28:6f:58:f5:e1:cf:44:09:
52:b5:6f:29:b3:fa:d6:f6:26:d4:46:f8:e8:5e:b3:
b7:aa:48:c2:a1:36:0d:50:f9:71:c6:e2:06:ce:a0:
4c:cb:86:4b:de:6d:12:4c:27:23:8d:69:d8:95:a5:
ef:96:68:97:0a:26:17:da:bf:f7:df:54:da:4e:f0:
b8:be:8e:03:28:9d:e5:f2:b4:c9:1c:29:47:ff:8c:
78:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:E9:C7:20:30:B0:79:41:CC:B0:83:5C:30:7D:53:2D:27:C4:C7:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A51337A513511F09DE44D7BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.44.0/22
154.90.50.0/23
154.90.58.0-154.90.63.255
154.93.34.0-154.93.41.255
Signature Algorithm: sha256WithRSAEncryption
69:e1:9e:ed:4b:5a:62:c1:0e:c1:73:d3:b6:f6:d5:0f:9e:96:
5c:64:b6:9f:ae:e5:c1:8e:76:99:6e:0c:74:9f:3f:c5:51:86:
89:4c:01:6f:d1:21:22:dc:1b:98:fc:34:53:b8:e2:67:6b:78:
01:ff:1c:8d:01:d9:54:f9:80:14:51:37:c9:d6:82:46:45:48:
07:59:8e:92:48:f0:4b:41:0b:ba:91:17:29:3f:5f:53:f6:c3:
85:27:6a:41:24:99:c4:0c:ad:bd:68:94:4d:a3:65:9e:af:a4:
28:0f:89:62:ec:23:3f:3a:dc:47:2d:7f:56:5d:d6:12:90:a8:
5f:3a:87:5b:1f:03:76:96:ea:53:4f:ce:fd:b1:91:51:81:db:
88:6c:a5:07:13:fc:0c:35:8c:5b:93:47:3d:2c:14:02:70:7c:
33:61:35:e9:ae:80:08:e1:e1:62:3a:a0:34:e4:00:ae:f1:01:
b8:21:56:3c:84:c3:0b:c5:91:f5:83:99:27:1d:ef:2d:28:1e:
75:da:a4:a5:34:ec:21:f1:c5:c8:14:3a:06:91:f6:85:70:e0:
17:23:dc:f2:7d:c1:f1:c0:f8:54:4c:53:d7:43:7d:7f:ec:44:
a4:20:e5:22:e3:70:52:d5:f0:07:60:28:a2:f9:a0:84:82:2f:
46:90:95:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 21:56:00 2025 by rpki-client