Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/230CCDDE782D11F09C3388AADAE4EC9C.roa
File: 230CCDDE782D11F09C3388AADAE4EC9C.roa (raw, json)
Hash identifier: TuT1kQtkNFEqJPCQNKf5lGcHVfNF2IV6ue63q93t79c=
Subject key identifier: CA:66:3E:ED:91:76:C8:B7:3D:95:6D:F4:9B:2F:56:59:9A:91:F2:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019198
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/230CCDDE782D11F09C3388AADAE4EC9C.roa
Signing time: Wed 13 Aug 2025 10:06:11 +0000
ROA not before: Wed 13 Aug 2025 10:06:05 +0000
ROA not after: Sun 21 Sep 2025 10:06:05 +0000
asID: 25198
IP address blocks: 154.197.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102808 (0x19198)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 13 10:06:05 2025 GMT
Not After : Sep 21 10:06:05 2025 GMT
Subject: CN=689c6393-21cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6f:76:10:09:cd:e2:53:d4:ed:68:2b:45:9f:
59:cb:31:73:be:70:6f:f3:91:27:33:fe:a7:b0:a9:
67:cd:f0:28:22:43:9f:49:7e:d8:72:2c:ea:1b:37:
55:df:a4:76:4e:95:59:7f:43:17:8a:a9:b9:10:dd:
6d:39:1a:7b:64:9b:54:32:7a:1b:84:41:be:56:0e:
ce:41:77:5a:e8:1a:df:f4:14:c0:e4:bf:5f:7f:03:
b1:0c:de:08:6f:ad:b9:50:22:a6:48:b4:f9:09:be:
40:e6:b8:76:e9:07:2e:30:5b:d2:45:35:19:d0:97:
67:5a:29:1f:5c:90:e1:22:bb:54:14:a9:81:70:82:
59:84:26:7e:68:04:08:8c:a8:8a:74:4d:17:9d:e9:
4c:f7:e6:80:13:68:da:7a:a2:8c:40:60:fe:5d:1b:
07:6a:60:49:dd:67:b8:60:fd:3e:c7:6f:fa:35:3e:
e9:6c:d6:ec:09:9f:c1:d5:fd:8e:a1:12:65:84:a7:
43:0a:3b:05:01:55:97:36:51:84:49:1e:76:a2:78:
a3:de:02:81:17:db:f8:73:37:9f:21:dd:84:17:4e:
31:26:96:23:d8:02:61:04:11:24:e8:35:af:a2:79:
6b:c0:3a:37:6f:e9:39:43:a5:41:26:eb:b6:6a:6f:
1c:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:66:3E:ED:91:76:C8:B7:3D:95:6D:F4:9B:2F:56:59:9A:91:F2:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/230CCDDE782D11F09C3388AADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.104.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:89:04:2c:cc:84:41:f4:56:f4:de:02:36:88:2b:08:9c:9b:
ef:51:8d:5b:a9:48:b2:d3:8e:22:f1:bb:f3:2d:58:1f:15:af:
7b:d1:1f:c8:93:33:fe:1b:a7:cc:d4:e4:06:b9:fa:bf:62:d0:
47:68:b5:ac:86:24:d5:e3:e3:ef:88:75:c1:e2:1d:71:d8:28:
1d:a8:92:f6:bf:91:5e:a1:f5:67:c5:e9:f4:3b:1e:52:30:3f:
12:44:a5:5a:f0:fa:7f:1f:a8:0d:44:40:b3:3a:49:36:ec:d8:
aa:af:ee:4d:17:7c:0d:cf:a6:42:2d:7a:93:28:53:16:97:f4:
b9:2a:85:ef:a7:b4:be:37:d6:93:cc:e8:43:f4:83:69:00:1b:
49:4a:31:e5:44:9a:cf:22:95:26:f1:55:6f:71:85:be:99:65:
d4:4f:3a:1d:ec:d1:4a:d1:8b:46:44:ea:85:e2:67:47:60:40:
b5:b7:30:fc:ad:b1:8d:b8:b2:db:16:c4:c7:30:64:55:01:ca:
5a:3e:11:3e:4e:a4:29:29:2d:84:43:88:4c:46:ca:ab:e8:f8:
f1:9d:fa:0d:ee:ad:ca:4e:73:7f:13:34:74:20:0d:e4:04:89:
0c:b4:9f:e9:53:2b:2b:51:3c:58:ae:e5:95:5c:c4:44:f7:d2:
e6:40:ea:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:24:39 2025 by rpki-client