Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56E7B88C754211F0836AB89EDAE4EC9C.roa
File: 56E7B88C754211F0836AB89EDAE4EC9C.roa (raw, json)
Hash identifier: 0v4ioYGfBuuGOAOCpKHGa5Zpi6213dKxRyOZh09G+H4=
Subject key identifier: 7B:57:C7:E0:42:E0:58:73:AD:85:00:E7:09:38:08:BF:16:D5:61:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01913B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56E7B88C754211F0836AB89EDAE4EC9C.roa
Signing time: Sat 09 Aug 2025 17:00:24 +0000
ROA not before: Sat 09 Aug 2025 17:00:19 +0000
ROA not after: Sat 04 Oct 2025 17:00:19 +0000
asID: 203020
IP address blocks: 154.205.186.0/24 maxlen: 24
154.223.137.0/24 maxlen: 24
154.223.138.0/24 maxlen: 24
154.223.139.0/24 maxlen: 24
154.223.140.0/24 maxlen: 24
154.223.141.0/24 maxlen: 24
154.223.142.0/24 maxlen: 24
154.223.143.0/24 maxlen: 24
154.223.160.0/24 maxlen: 24
154.223.161.0/24 maxlen: 24
154.223.162.0/24 maxlen: 24
154.223.163.0/24 maxlen: 24
154.223.172.0/24 maxlen: 24
154.223.173.0/24 maxlen: 24
154.223.174.0/24 maxlen: 24
154.223.175.0/24 maxlen: 24
154.223.184.0/24 maxlen: 24
154.223.185.0/24 maxlen: 24
154.223.186.0/24 maxlen: 24
154.223.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102715 (0x1913b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 9 17:00:19 2025 GMT
Not After : Oct 4 17:00:19 2025 GMT
Subject: CN=68977ea8-50fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d3:10:4d:b5:00:5a:a3:f2:e2:e2:d9:ed:66:
d5:cd:17:fe:96:77:b1:81:14:17:36:64:77:94:f4:
76:2b:df:09:ab:24:65:b9:77:09:2a:81:0e:a7:b2:
e6:fa:59:b9:a7:10:9a:3c:fd:69:68:89:e7:a7:ef:
26:e3:d6:96:fd:1d:ce:42:69:f3:d2:83:e1:6a:06:
8c:19:65:1c:73:15:70:2b:a6:52:16:bc:ca:04:cc:
98:f1:99:6f:a4:b7:95:53:2c:13:53:46:39:6d:cd:
26:2d:bd:d7:10:a6:fb:39:27:fc:e3:a1:1e:c8:13:
4a:41:99:6b:71:61:df:69:f2:e6:f9:05:d3:ab:76:
7b:bd:1d:da:a6:98:52:1c:25:57:73:04:28:cd:11:
f4:c8:50:e6:b6:87:6f:90:9a:a3:93:d5:01:4a:ba:
b2:74:ca:7a:7e:e0:b9:29:a5:28:92:61:76:f9:75:
af:6d:cc:38:99:7b:94:6d:37:4f:8a:5f:5c:b0:c0:
45:eb:a4:42:8c:0e:91:9f:b7:37:86:c4:27:40:7d:
1a:5d:e5:95:11:aa:3f:f5:8b:eb:9c:58:e1:79:81:
5f:3a:2b:0c:a8:d7:d8:97:05:ef:38:65:80:c5:0d:
ca:2f:d3:2e:75:0b:eb:7a:b0:50:cf:22:e0:4b:87:
67:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:57:C7:E0:42:E0:58:73:AD:85:00:E7:09:38:08:BF:16:D5:61:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56E7B88C754211F0836AB89EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.186.0/24
154.223.137.0-154.223.143.255
154.223.160.0/22
154.223.172.0/22
154.223.184.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:82:ab:08:f6:54:f3:c3:6c:59:ea:c1:d9:15:36:02:d8:f9:
7d:f6:33:25:19:10:cf:46:9c:46:be:18:04:8d:b3:62:ab:bf:
2f:67:42:81:86:6a:9d:6a:31:07:20:5d:ce:bc:d8:01:7a:fd:
86:14:95:f8:a0:b3:00:3a:b9:18:4c:e0:8e:15:0b:38:fb:37:
3b:ba:9e:22:c3:06:c4:59:5d:4d:33:7b:bd:45:71:9a:25:bb:
1a:59:d3:2c:dd:2b:14:d0:2c:6c:51:0b:ab:d3:1b:ca:08:57:
01:e8:14:9a:17:a8:9d:48:41:d5:de:30:b2:03:c5:f6:44:7f:
aa:5d:9b:3c:3c:07:ef:0c:d7:71:54:f7:c5:fa:f7:dd:01:09:
21:1b:1d:fc:32:b3:51:55:67:6f:d2:89:1e:8c:c4:f8:24:32:
2e:a3:69:d9:2c:95:ff:c1:94:cc:78:53:99:cf:c7:14:1c:e5:
e9:14:14:cf:00:27:c8:f8:b6:69:d7:1b:02:fe:13:2a:c7:06:
55:cb:ee:09:ab:ec:67:a2:2f:62:08:7c:dc:23:4a:2c:bf:ad:
55:2d:52:97:65:57:ba:cb:5d:15:c6:96:2d:89:06:67:66:b2:
51:4a:0b:32:25:df:22:00:1c:2a:53:b8:63:79:a6:1f:b5:9b:
57:ad:5d:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:44:23 2025 by rpki-client