Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D5DC64A565611F0819D6EE1DAE4EC9C.roa
File: 4D5DC64A565611F0819D6EE1DAE4EC9C.roa (raw, json)
Hash identifier: JxHb3SgmSCp9eekHO/ROubwwu9eoIyRqZHeX0F8oLv0=
Subject key identifier: D8:30:BF:DB:E1:EC:36:BB:B2:0D:BD:F9:6A:6D:2F:18:89:46:85:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018996
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D5DC64A565611F0819D6EE1DAE4EC9C.roa
Signing time: Tue 01 Jul 2025 08:35:12 +0000
ROA not before: Tue 01 Jul 2025 08:35:06 +0000
ROA not after: Mon 04 Aug 2025 08:35:06 +0000
asID: 271988
IP address blocks: 154.88.160.0/20 maxlen: 24
154.88.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100758 (0x18996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 1 08:35:06 2025 GMT
Not After : Aug 4 08:35:06 2025 GMT
Subject: CN=68639dc0-b726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f1:fc:d5:74:99:21:9b:42:9e:58:3f:5e:2d:
a3:e4:b3:1a:af:37:a1:85:0a:78:7b:f6:af:36:15:
71:9d:45:23:c2:77:4a:8a:39:dc:d8:e8:cf:a4:fd:
35:7e:4d:58:bc:61:0e:63:15:b5:2d:d1:48:61:ad:
32:57:ef:00:46:dd:5e:c4:d1:37:ec:3a:f0:a9:b0:
46:5a:f1:3c:1d:05:a6:80:69:a4:4c:d2:89:00:59:
db:99:b3:06:72:a1:4c:df:d2:ee:9c:c7:22:b2:53:
8a:bb:fc:52:e7:53:18:a6:fc:b5:5e:52:b1:d8:40:
86:b7:fd:e9:15:40:b9:1d:cf:25:51:73:b5:b5:bd:
ef:75:08:c7:50:c6:d5:99:1c:e8:6b:61:ab:23:a9:
de:b2:f8:70:29:0b:14:6a:fa:d7:ba:e9:56:2b:7c:
eb:79:93:21:d1:32:80:75:7a:32:5f:8b:e4:7c:81:
e0:f4:de:de:da:cf:58:4f:68:fb:57:50:23:18:49:
9d:6b:f5:f4:8f:ab:5b:4e:d3:a3:db:9c:e6:15:64:
11:04:42:62:81:a9:4f:88:36:cc:e1:0e:9a:9a:d1:
df:80:d5:44:51:25:e6:d3:ec:cf:0c:ea:ae:98:3a:
69:f3:67:c0:14:f4:20:07:c0:c9:1a:9c:53:7f:80:
07:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:30:BF:DB:E1:EC:36:BB:B2:0D:BD:F9:6A:6D:2F:18:89:46:85:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4D5DC64A565611F0819D6EE1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.160.0-154.88.179.255
Signature Algorithm: sha256WithRSAEncryption
62:44:d1:27:23:6e:f2:e4:57:a3:4e:78:82:3f:5a:88:38:38:
1e:ae:24:e8:8e:79:f3:bf:a0:1e:3e:f2:cc:18:dc:0c:90:78:
50:a1:f6:f3:f0:0f:da:cf:5b:43:2f:1e:cf:a4:67:b0:d8:c7:
8a:76:df:98:13:9f:b3:02:9f:55:84:c3:34:2b:8a:9c:16:80:
58:22:ad:2d:e8:4e:b1:17:e7:8c:68:8e:e2:67:a2:cc:5d:c3:
c5:9f:85:fb:1b:02:84:c8:41:80:28:3a:71:59:51:a3:ec:b5:
3a:e0:cf:37:88:15:18:21:ae:ea:76:78:6a:f0:ee:75:09:11:
f2:33:c7:9d:5b:23:f6:56:23:8b:61:6d:19:2c:b8:20:20:ec:
0c:59:35:77:df:bd:52:58:40:02:e2:a0:85:cd:cf:46:0f:02:
69:f4:d3:a2:82:c3:54:a3:4e:11:43:3b:2b:6f:2a:3c:81:90:
95:43:e9:1d:d6:d4:61:8e:07:c2:b3:cf:a6:ac:02:cd:94:a9:
39:b4:33:df:22:65:39:66:4d:29:ab:8f:a6:dc:4a:af:dc:ef:
14:d0:d5:92:96:54:8d:2c:b1:d9:72:9e:e4:d8:eb:ee:1e:d6:
6b:31:10:79:09:d9:58:63:16:5c:21:49:d2:16:21:5c:d8:e4:
60:9c:86:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:12:47 2025 by rpki-client