Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F05EDA78512911F09C6CD5B2DAE4EC9C.roa
File: F05EDA78512911F09C6CD5B2DAE4EC9C.roa (raw, json)
Hash identifier: QCLq2CWIzNlYg3ln5+bFadeWxkj74R+bXHQZle9uHSs=
Subject key identifier: B4:E5:2B:FB:9A:AB:E1:19:6E:E0:3D:97:96:36:16:63:5D:1A:6A:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018892
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F05EDA78512911F09C6CD5B2DAE4EC9C.roa
Signing time: Tue 24 Jun 2025 18:35:02 +0000
ROA not before: Tue 24 Jun 2025 18:34:57 +0000
ROA not after: Sun 17 Aug 2025 18:34:57 +0000
asID: 138915
IP address blocks: 154.203.144.0/23 maxlen: 24
154.206.80.0/23 maxlen: 24
154.206.82.0/23 maxlen: 24
154.206.84.0/23 maxlen: 24
154.206.86.0/23 maxlen: 24
154.206.88.0/23 maxlen: 24
154.206.112.0/23 maxlen: 24
154.206.114.0/23 maxlen: 24
154.206.116.0/23 maxlen: 24
154.206.118.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 11:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100498 (0x18892)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 18:34:57 2025 GMT
Not After : Aug 17 18:34:57 2025 GMT
Subject: CN=685aefd6-41fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:fb:28:b7:5a:f3:45:c1:14:78:e3:ee:2e:68:
fe:44:5b:ab:2d:58:c9:dd:b7:9a:49:ef:b2:11:2b:
2f:e9:cc:8e:3b:c6:88:89:ee:35:37:d4:fe:ee:54:
8b:54:1f:4f:f0:31:50:49:b1:bd:1f:b8:f4:a4:47:
d7:cd:a0:26:f7:cf:ac:a8:3b:14:b6:c6:9b:1b:13:
54:a8:3d:bc:bf:49:77:24:de:35:1b:b9:f2:b5:6a:
0b:a4:a7:90:93:3b:7b:d1:78:3d:44:1b:51:f1:8b:
d5:9b:65:fc:9a:69:f2:ea:8b:5d:a5:13:f1:f7:8c:
d3:d2:37:b0:16:73:17:17:13:c4:6f:f0:5e:ce:3d:
9b:fb:ab:d2:ef:3d:83:d4:df:59:9d:8b:91:d7:f7:
0a:c5:d8:f2:99:3a:53:82:0a:49:0e:85:ad:6b:b1:
8c:73:5e:27:5d:ac:0e:05:83:50:86:3d:e0:71:3c:
85:76:e0:11:b3:49:10:c9:0b:6c:b7:ba:c9:07:b3:
5a:ac:f5:be:b8:aa:9c:cc:d1:9d:f5:cf:4b:7a:5b:
3f:dc:70:66:31:57:1c:da:9d:2d:bc:c7:52:f8:b6:
ad:01:65:6a:c8:90:29:8f:06:29:b5:bb:17:db:59:
c1:3b:ad:9b:7f:4b:f6:af:cd:b8:3b:47:6a:0c:ca:
ff:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E5:2B:FB:9A:AB:E1:19:6E:E0:3D:97:96:36:16:63:5D:1A:6A:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F05EDA78512911F09C6CD5B2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.144.0/23
154.206.80.0-154.206.89.255
154.206.112.0/21
Signature Algorithm: sha256WithRSAEncryption
be:27:71:d8:d6:aa:d0:c8:3e:42:78:19:cd:a3:ce:ad:d5:8f:
53:e6:45:e7:a1:bc:80:41:31:ec:34:86:6e:07:7b:4a:f7:af:
f5:72:38:57:fe:4b:9f:5d:0e:02:73:94:db:bd:02:62:d4:71:
28:74:a9:f8:7d:98:b7:c7:36:d9:ca:db:a7:d5:0b:25:fd:b8:
b2:2d:c8:46:21:a8:f2:f2:b8:7d:3d:b4:45:53:5f:a7:f0:75:
50:66:4a:0f:af:5e:17:cf:16:45:51:06:ef:53:ee:fb:40:d8:
cf:b9:9d:ff:60:af:9e:29:cf:9c:3c:63:1f:de:96:bc:f5:2a:
56:83:fe:38:9d:ae:12:0f:3b:e4:23:43:e4:ca:da:76:0b:f5:
7c:6e:bc:af:0e:9c:f0:1a:d9:bd:b9:9b:0f:00:1b:18:36:b9:
fb:16:e6:26:0e:20:71:65:fb:59:ec:cb:be:45:e2:15:01:1c:
ed:a8:f0:38:aa:d7:6c:17:15:54:ee:5e:17:b5:ee:f9:4a:a2:
ec:a9:64:f5:46:e4:ab:23:6a:0c:09:94:9d:73:ce:3e:ea:47:
24:7b:cc:4b:5a:73:64:15:16:15:e0:05:58:68:02:9a:dd:54:
62:8f:0b:65:e0:f6:47:17:e5:c4:7e:df:28:ba:fc:95:5e:9f:
b8:e7:05:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 15:45:33 2025 by rpki-client