Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1374BA88483211F0ABDB00D8DAE4EC9C.roa
File: 1374BA88483211F0ABDB00D8DAE4EC9C.roa (raw, json)
Hash identifier: M8YdEt8jdOPC6ddjhespfJYA4jZSpqYoi487QbSUlxM=
Subject key identifier: EE:BF:E4:0E:AE:36:19:67:CB:79:77:F1:E8:FB:23:D0:A5:F2:27:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018652
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1374BA88483211F0ABDB00D8DAE4EC9C.roa
Signing time: Fri 13 Jun 2025 08:40:36 +0000
ROA not before: Fri 13 Jun 2025 08:40:31 +0000
ROA not after: Sat 20 Dec 2025 08:40:31 +0000
asID: 134687
IP address blocks: 154.197.36.0/24 maxlen: 24
154.197.37.0/24 maxlen: 24
154.197.38.0/24 maxlen: 24
154.197.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99922 (0x18652)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 13 08:40:31 2025 GMT
Not After : Dec 20 08:40:31 2025 GMT
Subject: CN=684be404-aa3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1b:dd:3b:52:39:9d:20:9b:fd:1f:9f:0d:eb:
ae:cc:73:25:b5:a5:ad:a6:54:f7:06:d9:6e:23:87:
33:6d:fb:85:0b:c9:fe:23:e2:18:ae:89:e7:dd:34:
2d:d6:48:5c:dd:d4:b4:25:32:4d:a2:16:81:83:10:
32:bd:8c:23:4c:a9:7b:14:58:92:ce:b3:d9:ed:3a:
8a:3f:c4:00:1e:43:be:de:3d:21:af:01:15:44:a6:
7b:04:11:7b:ba:4d:7e:6a:d4:3f:53:22:69:8b:42:
b2:47:dc:9e:c3:57:99:b1:3c:4b:5b:e6:5f:68:f9:
81:2c:25:77:3d:48:0f:cd:48:54:7d:d2:2e:d3:a4:
cb:e6:3b:99:ba:dc:4a:5d:ed:6a:ba:18:6c:a5:d8:
29:54:05:f3:95:90:e8:86:3b:d8:ec:82:db:eb:9e:
c5:3b:02:7f:3b:09:5c:45:93:1e:20:61:12:08:f5:
6f:e6:2b:1b:11:ea:59:89:32:d6:cc:1e:8a:8e:af:
8c:0d:f6:78:3f:22:ab:76:2b:cf:7c:76:f3:a4:53:
c7:2d:89:2c:dd:b3:13:1a:76:26:dd:fc:67:a2:ab:
96:55:d1:61:f7:9d:58:8c:30:7a:10:e0:a3:da:f3:
f6:aa:3b:18:d4:14:70:21:0c:6c:a0:7a:d8:73:a3:
82:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:BF:E4:0E:AE:36:19:67:CB:79:77:F1:E8:FB:23:D0:A5:F2:27:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1374BA88483211F0ABDB00D8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.36.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:1f:3a:92:99:d3:ef:47:a5:c7:27:b9:85:46:99:30:45:ec:
a8:08:fe:d4:8d:c6:82:43:79:47:13:0f:9a:2b:68:5b:0d:36:
85:67:d2:38:ba:82:ce:8c:73:4d:74:2b:61:9d:b3:a5:e4:27:
57:43:07:dc:e3:82:c1:fb:12:b9:67:5d:f8:ff:28:38:5e:78:
51:bf:51:77:53:c3:eb:1c:d1:9b:ff:e7:f6:cf:94:13:d6:ae:
21:bd:94:5f:8f:f0:18:29:01:e1:ef:66:34:d5:bf:46:d9:a4:
64:99:87:ad:bd:4a:b7:d3:38:81:32:c2:eb:ea:d1:e5:5c:e2:
c3:05:2d:f6:84:0e:ef:77:0a:32:96:19:43:b9:30:d9:8c:3d:
f7:6d:95:98:5e:f5:ed:af:5f:d6:9a:4f:37:37:6d:14:f1:26:
51:e5:9a:40:cd:d9:13:6f:6c:61:62:54:dd:94:a3:ae:3c:d5:
5c:d0:79:15:53:40:13:fd:cb:8f:8c:e9:e0:24:48:a7:e7:12:
f0:11:3e:c4:d0:b1:46:db:b1:19:ae:00:e4:11:0f:c6:04:00:
73:76:72:e2:8f:21:5d:af:da:7e:49:5e:71:f7:4c:99:48:68:
1f:2d:b5:96:67:88:a0:c4:0d:88:be:14:43:62:75:40:6c:01:
da:00:11:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:35:13 2025 by rpki-client