Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4D74DC057FF11F09D0ECCAFDAE4EC9C.roa
File: E4D74DC057FF11F09D0ECCAFDAE4EC9C.roa (raw, json)
Hash identifier: +d1TwsD3jMBWeCKaw1vLja79MlLfz3Pn296TsKQMjGA=
Subject key identifier: C3:31:C9:BD:39:56:2E:C0:9D:05:9E:2F:6F:FC:59:92:8A:00:F9:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018A07
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4D74DC057FF11F09D0ECCAFDAE4EC9C.roa
Signing time: Thu 03 Jul 2025 11:21:42 +0000
ROA not before: Thu 03 Jul 2025 11:21:36 +0000
ROA not after: Sat 09 Aug 2025 11:21:36 +0000
asID: 200373
IP address blocks: 154.193.152.0/22 maxlen: 24
154.193.158.0/23 maxlen: 24
154.199.14.0/23 maxlen: 24
154.199.68.0/23 maxlen: 24
154.213.160.0/21 maxlen: 24
154.213.193.0/24 maxlen: 24
154.213.194.0/24 maxlen: 24
154.213.195.0/24 maxlen: 24
154.213.196.0/24 maxlen: 24
154.213.197.0/24 maxlen: 24
154.213.198.0/24 maxlen: 24
154.213.199.0/24 maxlen: 24
154.213.202.0/24 maxlen: 24
154.213.203.0/24 maxlen: 24
154.213.204.0/24 maxlen: 24
154.214.1.0/24 maxlen: 24
154.222.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100871 (0x18a07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 3 11:21:36 2025 GMT
Not After : Aug 9 11:21:36 2025 GMT
Subject: CN=686667c6-1a4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d9:2a:0b:95:33:04:6e:fe:bc:ee:5a:a4:9e:
fd:77:88:df:04:7a:13:96:3c:d1:ea:9c:9b:4e:03:
5e:13:b4:fc:be:fa:60:98:a4:6b:8a:e6:a0:2e:30:
1a:51:9a:53:15:96:ee:c1:83:38:ed:29:d9:12:8a:
17:ae:35:b4:74:a2:5a:a7:f9:4c:c6:34:8d:ea:20:
db:42:19:84:48:6b:10:80:05:07:3e:a1:10:39:e9:
bb:f1:e1:26:4c:5e:e3:44:b5:b8:29:3a:11:bd:75:
ac:78:54:21:0f:57:8c:c2:24:1f:e4:f3:2e:06:66:
1d:63:7a:4b:16:36:e3:4f:00:49:05:8b:d9:06:10:
40:10:24:d6:46:de:15:41:1f:04:f3:e1:09:ff:68:
12:a2:bc:55:e7:da:1b:5b:b9:e9:9c:86:15:fb:fd:
bc:31:2d:a9:d4:bc:34:b7:57:8c:bd:1d:1d:e1:3b:
cf:04:4a:8e:b5:b5:c3:b6:e0:46:cc:e5:79:b4:96:
b0:81:b0:1d:61:d9:e5:9c:19:7a:a6:85:72:d9:05:
24:d7:a2:cd:8a:0e:33:24:95:aa:95:4b:00:71:53:
70:c4:3e:15:b5:8a:6b:36:62:15:fe:d4:f4:57:cf:
50:d9:45:74:1a:a4:95:c9:48:c0:f2:36:89:ae:21:
9b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:31:C9:BD:39:56:2E:C0:9D:05:9E:2F:6F:FC:59:92:8A:00:F9:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E4D74DC057FF11F09D0ECCAFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.152.0/22
154.193.158.0/23
154.199.14.0/23
154.199.68.0/23
154.213.160.0/21
154.213.193.0-154.213.199.255
154.213.202.0-154.213.204.255
154.214.1.0/24
154.222.132.0/24
Signature Algorithm: sha256WithRSAEncryption
43:4d:1c:7f:7b:d8:84:7d:60:2b:80:9e:d0:49:26:3b:a3:ac:
80:42:92:3a:fa:57:5a:4e:f2:91:89:69:3b:a5:d7:27:46:26:
a0:bf:7e:e9:da:78:19:5b:27:a9:b2:b1:72:49:df:e3:fe:3d:
5d:f8:57:f4:03:e2:44:a1:b9:b6:f4:c4:96:b3:c4:f8:7b:8e:
b8:b2:18:ac:1b:2b:c1:49:23:f3:70:97:47:f0:c0:2e:3a:f2:
08:88:72:d8:38:6d:e0:b8:9c:74:2e:5b:7d:f2:e3:9d:ba:5c:
18:b2:a9:76:99:14:91:ac:0f:97:17:55:21:b2:de:16:13:e5:
7d:6e:4c:6e:b3:f3:9e:01:77:ef:99:d0:70:55:3a:a2:da:1d:
eb:15:af:a5:a6:23:79:dc:29:57:63:2e:99:e0:28:81:d5:f0:
62:5d:1b:ce:9c:78:87:d2:f7:45:b8:c2:1e:e4:a5:3e:c1:6e:
ba:08:d2:9d:69:ed:d7:99:46:16:9a:5e:01:47:e5:c1:e8:05:
e9:f1:ce:03:04:a6:f2:0c:52:e6:5d:a2:be:ec:cc:3f:7e:07:
1c:ce:40:da:04:29:6e:14:18:f3:e2:37:73:24:30:94:32:74:
c8:69:c2:04:a5:b2:86:9f:b1:e9:2b:77:5b:a9:c4:54:a3:bc:
6e:a5:fb:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:00:21 2025 by rpki-client