Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8DD6EA56543C11F09D4ACFB0DAE4EC9C.roa
File: 8DD6EA56543C11F09D4ACFB0DAE4EC9C.roa (raw, json)
Hash identifier: fLtjV12c5nReIyMu5/81IgGxsrveMRdGovigakTFzs8=
Subject key identifier: 0E:1B:BC:06:79:16:05:F5:FA:F1:6B:5F:FC:79:04:48:8F:C2:54:1E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018963
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8DD6EA56543C11F09D4ACFB0DAE4EC9C.roa
Signing time: Sat 28 Jun 2025 16:25:51 +0000
ROA not before: Sat 28 Jun 2025 16:25:46 +0000
ROA not after: Tue 05 Aug 2025 16:25:46 +0000
asID: 20326
IP address blocks: 154.83.152.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 11:44:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100707 (0x18963)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 28 16:25:46 2025 GMT
Not After : Aug 5 16:25:46 2025 GMT
Subject: CN=6860178f-0710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fe:84:a1:c4:d5:65:df:3b:76:0e:6e:09:4f:
89:04:88:b2:f4:aa:cb:46:fa:31:97:b9:fa:ee:2c:
eb:74:c2:ba:9e:0d:dd:97:81:33:ee:10:d1:6a:40:
fd:7e:f4:97:5f:4a:07:24:c1:93:9c:ee:d3:00:e4:
3e:53:0a:ea:ab:54:bb:89:7d:87:dd:fb:2f:45:21:
04:b9:3b:5f:41:04:18:94:85:a0:28:f1:81:fe:ad:
9c:f3:e5:f0:7e:19:74:b7:e1:2c:c3:2d:91:e0:e5:
51:5a:39:ab:98:16:ca:f2:fc:05:15:4e:49:29:25:
94:8a:99:e5:d9:6c:1e:27:33:ee:68:48:1d:84:e7:
b3:84:5e:46:d2:fb:a4:b4:a0:a3:fa:dc:1b:1c:d0:
f8:a4:ca:88:b7:e4:70:74:a2:d6:a2:8a:fa:ee:e9:
9c:d6:31:68:7d:a0:78:3a:b3:cd:c6:ed:26:4d:57:
3b:3a:aa:4e:66:df:42:3d:e1:0b:c3:62:89:8e:01:
03:e4:9c:a3:97:74:25:cf:bb:46:08:be:56:e3:4d:
9f:91:78:c3:a4:e1:0c:28:ed:7d:4f:c9:b9:70:c5:
7d:56:78:d9:eb:ae:10:fd:e7:0b:2f:d8:67:30:b4:
75:9e:49:fa:d6:58:c9:a0:1d:e9:6c:b2:46:9a:b2:
b7:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:1B:BC:06:79:16:05:F5:FA:F1:6B:5F:FC:79:04:48:8F:C2:54:1E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8DD6EA56543C11F09D4ACFB0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.152.0/22
Signature Algorithm: sha256WithRSAEncryption
29:01:fe:aa:76:55:81:68:d9:83:7d:ec:2c:02:43:8d:7a:11:
e0:82:27:db:53:80:a2:07:dc:a3:23:71:3c:75:ea:4d:48:7f:
17:c0:53:cf:18:2a:c7:c0:e4:30:48:8c:4d:ce:f1:91:75:42:
cb:43:89:9b:73:82:c0:98:16:1d:42:39:5f:4e:0c:60:a1:18:
65:61:d6:5d:ec:e1:ea:07:fd:f7:ff:e3:9d:80:65:1d:39:26:
87:01:35:ed:10:5b:22:43:26:7f:bd:bf:ad:2b:45:67:a3:41:
f3:7e:82:7a:57:f1:d4:9d:ae:f9:84:ea:92:fd:6a:0e:21:23:
62:ca:ef:d5:21:c9:35:a6:fb:2f:34:ae:be:6b:3d:09:2e:a9:
63:ee:10:c1:80:fe:10:70:a5:b6:8d:9d:b8:d6:04:07:b6:13:
0a:54:c5:9b:2c:52:53:78:27:a6:f5:c6:57:6a:26:42:3a:32:
41:a0:71:56:0b:b9:de:d7:45:d9:50:a8:3f:87:d1:d2:11:c9:
67:11:c8:96:cc:fa:1b:6b:06:51:41:97:6d:99:0b:2f:84:22:
f7:66:85:46:3c:8b:07:1b:d4:8f:5c:6b:c0:d5:26:a2:b5:79:
ea:b8:24:94:06:28:1b:fd:80:51:38:46:3d:d7:43:0d:f7:1a:
5b:59:c0:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 17:13:00 2025 by rpki-client