Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F431DFFC513711F0B3C34A8DDAE4EC9C.roa
File: F431DFFC513711F0B3C34A8DDAE4EC9C.roa (raw, json)
Hash identifier: R0uHKZfVf5iWdoHieHKa3J913QYkVKPFC4BuOfA5LH8=
Subject key identifier: C8:57:38:AF:FA:04:BE:C0:34:29:7F:19:B8:DE:7D:43:4F:6A:4B:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0188B0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F431DFFC513711F0B3C34A8DDAE4EC9C.roa
Signing time: Tue 24 Jun 2025 20:15:21 +0000
ROA not before: Tue 24 Jun 2025 20:15:16 +0000
ROA not after: Wed 03 Sep 2025 20:15:16 +0000
asID: 138915
IP address blocks: 154.93.74.0/24 maxlen: 24
154.93.96.0/24 maxlen: 24
154.93.97.0/24 maxlen: 24
154.95.64.0/24 maxlen: 24
154.95.65.0/24 maxlen: 24
154.95.66.0/23 maxlen: 24
154.95.68.0/24 maxlen: 24
154.95.70.0/23 maxlen: 24
154.95.72.0/22 maxlen: 24
154.95.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 01:13:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100528 (0x188b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 24 20:15:16 2025 GMT
Not After : Sep 3 20:15:16 2025 GMT
Subject: CN=685b0759-3130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a7:43:eb:c8:06:5c:55:a3:05:19:da:2f:01:
b4:27:43:84:6c:aa:e3:34:89:99:ee:f1:37:42:f7:
92:99:15:d2:3e:60:bc:e7:1f:d7:e3:65:fd:7c:6b:
d9:d6:89:13:52:40:ab:7a:c1:fb:35:ba:81:73:63:
01:a1:2e:15:7f:d9:6b:66:a8:cd:48:3d:50:ba:c9:
2c:fd:45:b3:1a:c8:2a:38:1c:8c:09:88:ec:3b:87:
7c:0f:1a:3f:80:61:c1:96:1f:0d:5e:c2:5a:f3:5b:
c9:0e:ec:91:0d:90:da:54:46:bd:93:f9:92:61:b3:
cd:52:13:d9:39:ed:b8:05:c1:1f:ac:92:17:bc:85:
5b:c8:a7:cb:95:38:46:04:57:5d:77:76:54:c0:61:
ec:0f:68:a6:24:78:0a:9b:aa:4a:c0:80:4d:24:e3:
1e:5a:4a:5c:5a:65:69:49:0b:7e:05:03:e3:8f:34:
e8:bc:7b:de:4e:40:81:68:03:47:cc:66:81:96:95:
10:df:aa:19:98:f6:7c:cb:fc:39:e9:d0:90:97:ff:
d0:07:3c:98:b1:07:90:9a:43:f7:c0:50:40:ea:61:
53:bc:1a:1e:49:b9:d9:82:25:a5:12:6c:6a:9b:34:
eb:79:58:da:1c:4d:df:76:34:f1:e1:8b:e9:1d:90:
b7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:57:38:AF:FA:04:BE:C0:34:29:7F:19:B8:DE:7D:43:4F:6A:4B:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F431DFFC513711F0B3C34A8DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.74.0/24
154.93.96.0/23
154.95.64.0-154.95.68.255
154.95.70.0-154.95.75.255
154.95.96.0/19
Signature Algorithm: sha256WithRSAEncryption
d0:7e:db:f4:86:18:5c:a3:db:73:56:ca:c2:07:20:53:c5:14:
b8:01:5a:d6:76:99:e0:53:40:cd:79:5b:0c:9e:b7:64:50:4d:
15:c3:8d:1e:88:5f:2d:e9:fa:c0:2f:13:ee:58:64:4b:43:b6:
b9:a3:85:e8:b5:b8:ac:98:6d:0e:63:95:bc:41:a4:81:a6:58:
69:b1:6a:b0:58:ef:68:85:dc:1a:4a:2e:17:df:9e:6c:2e:94:
61:0a:b2:ff:28:31:1d:22:53:39:81:c0:a0:ac:bd:5f:7b:75:
85:15:2f:91:28:c1:53:de:f7:13:0e:38:08:04:3b:51:96:4c:
cc:72:fa:44:ad:c6:dc:ab:b8:3b:c4:34:25:12:1b:2e:18:6a:
2e:99:ec:f2:8d:27:bc:96:cf:80:d8:95:b8:e5:a1:90:02:fb:
22:c2:06:fa:93:12:6c:a9:55:be:0b:3a:90:ab:e7:c7:f5:e6:
72:8a:af:9c:e7:86:9f:00:86:57:a3:04:27:ac:f2:e6:b6:6d:
f5:29:cc:b7:f2:b5:1f:90:1a:d9:79:07:da:3c:77:48:59:ae:
51:1e:3e:0c:a8:5a:fa:77:14:82:4d:2e:e7:3a:68:b4:b4:91:
eb:e2:ca:a1:6b:96:81:f4:f9:4c:05:82:21:08:24:03:e2:7e:
35:12:ab:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 08:27:50 2025 by rpki-client