Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4ABC6E6490811F0BC020CCCDAE4EC9C.roa
File: F4ABC6E6490811F0BC020CCCDAE4EC9C.roa (raw, json)
Hash identifier: Yqm9yMxNZtrMrmVSNKC2mHdau2wT3IWsxUYpN1WN+A4=
Subject key identifier: 9D:79:26:13:6F:B7:D8:3D:13:8A:76:F0:E1:E9:21:97:C8:16:A3:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01868A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4ABC6E6490811F0BC020CCCDAE4EC9C.roa
Signing time: Sat 14 Jun 2025 10:18:47 +0000
ROA not before: Sat 14 Jun 2025 10:18:42 +0000
ROA not after: Wed 24 Dec 2025 10:18:42 +0000
asID: 4755
IP address blocks: 154.81.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 01 Jul 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99978 (0x1868a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 14 10:18:42 2025 GMT
Not After : Dec 24 10:18:42 2025 GMT
Subject: CN=684d4c86-f1bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1d:73:58:ec:08:a8:9e:46:a4:34:2d:6d:86:
da:37:db:c9:cd:ab:3f:45:6b:80:66:68:28:14:4e:
73:8c:c6:39:36:1b:dc:1f:94:c4:31:28:45:1a:ca:
a1:51:dc:77:7f:ae:c5:a5:53:4a:ba:69:5f:88:bd:
01:7e:9e:d4:37:46:34:82:94:b8:9a:6f:15:99:41:
18:15:10:05:eb:4d:3f:70:99:3d:1f:15:92:cc:67:
af:4d:00:fb:4e:99:2f:c0:c9:7d:7b:97:e9:24:25:
73:01:86:cd:bb:ab:9f:ee:5e:1c:7a:78:dd:3d:25:
2d:b7:2d:d4:c2:b2:00:35:df:4a:97:db:5f:50:84:
59:ce:3e:30:bb:a0:45:41:99:5f:7f:7c:c4:ef:74:
63:56:1d:61:e1:22:80:9e:3f:b8:37:07:78:2b:dc:
f2:2c:00:f8:57:90:92:a7:40:11:b0:b8:7d:76:b4:
36:e5:2f:4e:43:83:f6:55:be:65:f5:dd:d8:56:2d:
0d:53:c7:c8:c7:d7:e0:23:d0:b2:54:9c:e7:0c:04:
95:5f:ce:e0:df:25:2a:14:97:c5:35:a6:85:b9:ed:
d0:5b:63:28:10:21:69:8f:62:10:68:af:c4:fb:e0:
f3:ef:c3:45:40:4e:9f:ca:ff:7a:b1:94:c4:37:8d:
f6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:79:26:13:6F:B7:D8:3D:13:8A:76:F0:E1:E9:21:97:C8:16:A3:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4ABC6E6490811F0BC020CCCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.60.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:2d:8f:63:dc:bc:44:75:71:4e:f7:11:3f:94:fe:00:3e:39:
a5:05:dc:97:c4:2a:ff:49:6e:1a:78:cb:b7:9d:96:fa:cd:ab:
3f:42:02:9f:f6:c4:b0:34:fd:68:c6:e4:bc:fc:b1:10:ad:41:
9f:b7:48:68:84:4d:e1:ed:c9:cc:35:0d:a4:6e:da:66:3d:c7:
5d:7e:02:2c:4e:57:69:5d:b5:e8:d1:0f:21:fd:0f:a9:86:fe:
63:8d:65:a0:02:89:4b:f6:e2:af:83:04:17:f0:9a:a4:7c:48:
5c:5e:ec:a5:2d:aa:fd:51:ae:6d:c0:20:5a:3c:61:34:ff:fe:
f7:71:71:5b:f2:fe:a1:f1:49:79:94:8e:5a:bd:ee:ff:a6:79:
e5:1c:b6:df:40:6d:51:ed:bc:07:1c:37:93:b5:0a:b0:e1:e2:
4a:2b:03:cc:d0:81:8a:86:23:38:05:0f:9f:84:f0:f1:e5:e2:
73:6a:25:33:04:21:b3:56:11:cd:3d:45:e5:49:9d:9a:db:86:
2a:76:fa:4a:5a:05:4b:e9:c1:c4:0e:1c:50:cd:b3:61:3f:d7:
c8:67:62:1f:c9:4b:37:bf:d9:c8:e4:31:a9:91:eb:3d:d3:3c:
9b:7b:c7:13:62:f1:ad:68:2f:3b:85:57:09:be:9e:29:df:9c:
e5:c3:d3:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 15:22:52 2025 by rpki-client