Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/182B6E20B31011F08AE5E0B6DAE4EC9C.roa
File: 182B6E20B31011F08AE5E0B6DAE4EC9C.roa (raw, json)
Hash identifier: 4ry85TTLKbF5SDf9QlwdtCSCCWhHJHxj7ILEYrN9AbI=
Subject key identifier: 1D:7B:A5:3D:17:EE:9C:7E:F8:DB:25:41:56:96:6D:D3:FA:C9:A8:47
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A506
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/182B6E20B31011F08AE5E0B6DAE4EC9C.roa
Signing time: Mon 27 Oct 2025 08:36:56 +0000
ROA not before: Mon 27 Oct 2025 08:36:51 +0000
ROA not after: Sun 30 Nov 2025 08:36:51 +0000
asID: 9304
IP address blocks: 154.193.2.0/24 maxlen: 24
154.200.51.0/24 maxlen: 24
154.200.131.0/24 maxlen: 24
154.200.156.0/24 maxlen: 24
154.200.157.0/24 maxlen: 24
154.200.158.0/24 maxlen: 24
154.200.159.0/24 maxlen: 24
154.200.160.0/24 maxlen: 24
154.200.161.0/24 maxlen: 24
154.200.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107782 (0x1a506)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 27 08:36:51 2025 GMT
Not After : Nov 30 08:36:51 2025 GMT
Subject: CN=68ff2f28-139a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:40:0b:33:de:12:1d:15:00:0c:db:b1:80:db:
29:03:55:66:e7:17:05:ec:ff:3c:d9:d5:71:0a:15:
4a:62:c5:9d:5a:b0:a2:fc:b4:41:4b:6c:7d:b5:18:
cc:65:41:02:16:9d:e6:3c:ea:76:e2:65:2a:4f:9d:
8f:36:03:6e:7b:72:ca:33:26:19:61:5b:5f:ef:93:
9c:40:34:df:f5:7d:f3:3e:97:6b:d7:6c:9b:7c:74:
2b:83:95:58:9f:21:a4:36:e2:39:59:9a:cb:24:58:
9c:cc:fc:44:18:45:c2:d8:32:4f:be:cb:38:95:2a:
40:59:e2:d5:87:37:7d:d5:0e:62:f3:b6:af:96:18:
63:17:0b:86:b3:ac:b9:8c:de:ec:f2:70:9c:5b:60:
7d:7e:f2:87:08:73:21:78:c5:ba:a9:d9:1c:33:c1:
6b:03:07:27:cd:11:09:08:d4:72:09:01:44:bd:b6:
bf:2e:01:35:84:98:92:0c:2d:a0:c1:e4:6c:29:f8:
3f:f6:3d:ad:e7:89:a1:ef:4b:53:61:c9:f4:1c:49:
3f:fe:fa:54:de:0a:46:f5:ce:04:bb:a9:87:21:c5:
ed:88:17:83:80:b6:3d:94:61:0b:86:fa:9c:e1:d5:
89:74:6a:12:cd:b6:5d:d2:74:63:39:c0:82:f5:b1:
b5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:7B:A5:3D:17:EE:9C:7E:F8:DB:25:41:56:96:6D:D3:FA:C9:A8:47
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/182B6E20B31011F08AE5E0B6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.2.0/24
154.200.51.0/24
154.200.131.0/24
154.200.156.0-154.200.162.255
Signature Algorithm: sha256WithRSAEncryption
0b:e7:01:31:a1:f6:b0:52:ac:73:ad:b0:e9:cd:ae:41:0a:fd:
c4:ea:23:6e:82:63:7d:e9:34:01:48:eb:30:81:2e:18:d7:be:
06:31:22:4e:ca:3f:27:55:fe:fe:84:b6:52:1e:9b:55:c8:71:
83:d9:91:28:70:d5:aa:1b:bd:32:0c:95:1f:b2:7f:3b:9c:a8:
89:c0:c2:1e:95:c4:a3:5e:c6:8f:14:3b:3b:2a:74:f9:85:fa:
cd:5c:56:45:cd:92:08:76:0c:92:68:ce:42:d1:e4:b7:9f:a9:
87:33:50:8f:10:f0:f6:9c:a1:e3:38:08:08:45:e7:d4:ac:0b:
ee:50:76:e3:fb:34:b9:5c:06:3a:8d:d1:76:38:71:86:88:2e:
bc:af:5d:d4:7c:88:20:0e:23:ba:0e:18:15:4a:ac:45:7c:45:
23:e7:a7:04:90:65:a0:47:6b:74:30:c4:91:d1:50:fb:a9:9b:
76:e6:56:b2:c6:b6:8c:cc:12:8f:04:01:ee:72:bf:89:a4:d6:
2d:50:e4:e4:72:91:bf:19:d2:06:59:9f:52:35:21:5e:cf:cc:
10:be:4f:98:73:89:38:9d:3c:1a:80:d9:07:fb:79:2d:cf:94:
5c:c8:d2:c2:bf:ff:35:7f:29:0d:4a:6f:89:86:bf:5e:6c:1a:
1f:ad:da:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 21:03:09 2025 by rpki-client