Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D5B5036532B11F0AF61EEC9DAE4EC9C.roa
File: 5D5B5036532B11F0AF61EEC9DAE4EC9C.roa (raw, json)
Hash identifier: qRmIuwTleZM+Gdx5Q6/k42rFa3/Zs6cRGx3B1WlJLOA=
Subject key identifier: 0C:EB:27:A9:49:F4:88:10:C9:BA:C1:34:68:91:6F:0C:A0:E4:6B:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01893A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D5B5036532B11F0AF61EEC9DAE4EC9C.roa
Signing time: Fri 27 Jun 2025 07:50:17 +0000
ROA not before: Fri 27 Jun 2025 07:50:12 +0000
ROA not after: Sat 02 Aug 2025 07:50:12 +0000
asID: 23470
IP address blocks: 154.202.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 11:44:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100666 (0x1893a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 07:50:12 2025 GMT
Not After : Aug 2 07:50:12 2025 GMT
Subject: CN=685e4d39-4435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7a:5a:f2:52:5c:67:a4:8c:ee:eb:ff:96:f5:
39:cd:c3:f3:80:e7:90:98:6d:4f:f1:7f:9d:ca:b5:
eb:28:c2:86:d3:bc:78:9b:4e:48:ed:91:d8:03:b3:
bf:ac:01:6d:c6:bb:8d:43:26:21:42:d5:b6:1b:d0:
b7:d9:86:5c:cd:b9:a0:80:cb:45:08:d9:05:d9:eb:
f5:46:df:c3:ce:25:89:ab:9d:24:69:5a:ad:b1:b1:
c9:1e:29:82:9f:b3:2f:d5:5e:4b:47:04:c9:97:cf:
52:12:25:ea:25:0b:1b:17:5b:5a:16:2a:2e:4f:ca:
ad:be:ea:6e:61:c2:df:b8:5b:b0:2f:1d:a0:b3:a4:
af:4e:79:43:4a:0f:b7:93:90:ad:e0:f8:0d:e7:c3:
80:19:ff:77:3e:78:8e:03:39:4d:d9:f0:49:2f:17:
53:c7:7e:5c:9d:c8:31:23:8b:4f:52:7a:35:50:ac:
60:79:24:9b:59:31:2a:54:64:1b:a2:14:33:9c:96:
1e:41:68:88:6f:0c:ac:a9:c2:e3:fb:20:bd:d5:ba:
8f:cd:25:0d:a4:81:8f:9a:46:ef:2d:e9:37:6c:57:
56:cd:4c:d1:85:0b:3a:ba:c3:bc:e3:3e:f1:2c:86:
ec:68:3c:88:a7:30:25:58:fb:ad:8d:43:3c:f0:f5:
a5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:EB:27:A9:49:F4:88:10:C9:BA:C1:34:68:91:6F:0C:A0:E4:6B:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D5B5036532B11F0AF61EEC9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.0.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:aa:6c:70:11:cc:6e:2b:da:09:40:cc:70:eb:41:e0:46:ac:
1e:7a:f1:af:45:9e:c8:e7:9b:81:be:26:c7:6d:39:6c:6b:80:
e4:1d:48:10:ea:ac:a6:66:66:99:fa:97:6b:7f:8e:48:fc:97:
a5:66:b4:89:e3:58:68:37:3b:6b:ea:29:80:03:4f:a2:2f:f3:
5c:85:2f:8d:d4:6c:48:9b:a1:d8:ae:05:25:12:a1:c7:6d:32:
35:ae:7b:8d:ef:59:18:c9:3b:74:04:4c:e4:ce:41:0c:14:d4:
32:18:90:5a:d1:bd:ad:e0:84:c9:75:9b:5e:d9:57:c1:b9:24:
29:b4:89:0b:1e:e0:71:73:27:9c:cf:bd:a4:ae:83:a5:3e:c4:
cd:92:ac:67:fe:f1:b5:8e:c8:e4:01:5f:62:47:10:f7:d1:3d:
b2:dc:91:27:ff:0d:e0:b6:74:11:7a:c5:a3:12:f5:cf:c0:8a:
a4:d3:ca:f2:5a:0e:dc:71:87:3b:2c:7e:1b:37:95:74:94:37:
8c:03:51:1c:14:3f:1d:d5:19:ab:d0:98:0d:3b:39:74:d9:62:
5c:bb:69:95:05:ee:31:b4:eb:cd:47:97:54:34:6c:23:d1:12:
a9:b1:6b:64:9b:86:15:be:96:a0:76:b5:b0:a3:20:62:42:06:
7d:4c:bf:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 21:46:35 2025 by rpki-client