Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23D10E9642C811F08F993C92DAE4EC9C.roa
File: 23D10E9642C811F08F993C92DAE4EC9C.roa (raw, json)
Hash identifier: m2XZLvibz2ARAg/1sAoGu6Gav9uABxKZfihT1LRz2qs=
Subject key identifier: 67:12:16:DC:3B:24:28:11:C6:ED:1E:06:49:CC:7A:65:78:C5:0E:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01851C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23D10E9642C811F08F993C92DAE4EC9C.roa
Signing time: Fri 06 Jun 2025 11:19:41 +0000
ROA not before: Fri 06 Jun 2025 11:19:37 +0000
ROA not after: Thu 26 Feb 2026 11:19:37 +0000
asID: 45669
IP address blocks: 154.198.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99612 (0x1851c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 6 11:19:37 2025 GMT
Not After : Feb 26 11:19:37 2026 GMT
Subject: CN=6842cecd-6627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:89:26:73:63:44:da:4c:c9:9a:bd:46:4d:4a:
b3:14:c6:48:40:e4:38:12:9b:4d:6c:f8:37:b8:ae:
2c:2c:69:db:a3:da:91:e0:39:e3:c3:ac:f4:13:af:
4c:4d:88:03:63:99:28:56:07:f1:fc:36:5b:52:02:
4f:a4:f3:d9:4d:44:f1:00:06:30:f9:0c:57:79:92:
e4:f6:f9:a3:e0:69:55:d9:61:b4:d1:a1:73:15:66:
38:b4:60:61:0a:76:7d:50:47:ec:f1:2f:17:3c:68:
7e:b3:03:3e:b4:de:30:c5:bc:e8:db:8f:d3:f7:69:
f3:8c:ce:96:7c:1f:88:c9:47:b0:07:25:30:d1:cf:
e3:fe:c8:78:f5:5a:d1:a7:d1:83:2e:13:08:c6:7b:
80:e3:49:00:47:5f:50:e8:f9:52:27:86:47:60:6d:
06:1f:4f:07:d6:c0:c1:88:be:59:67:db:94:b7:cd:
3d:ba:cc:e9:5d:a3:46:63:51:61:47:fd:34:0d:66:
00:12:11:d7:c5:c8:c4:ec:f4:9e:11:98:23:ab:b7:
4b:53:00:f0:db:b1:87:fe:04:71:e9:6c:e4:7c:f4:
7b:c1:c5:a1:8c:97:b9:09:15:8f:be:71:cc:d2:93:
92:6d:37:53:09:d0:ad:40:69:19:6c:00:4a:2c:32:
1d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:12:16:DC:3B:24:28:11:C6:ED:1E:06:49:CC:7A:65:78:C5:0E:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23D10E9642C811F08F993C92DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.64.0/18
Signature Algorithm: sha256WithRSAEncryption
05:98:91:1c:09:0e:55:7d:c6:8b:36:3c:41:02:da:44:48:51:
26:32:fc:0c:b2:68:d2:f9:29:0c:bd:19:22:56:2d:bc:e5:da:
6d:54:26:c7:de:15:7c:ee:43:95:e3:fd:be:11:ce:95:b3:5e:
69:5c:26:e2:bd:15:48:4c:29:8a:33:a7:f3:24:2f:20:23:c4:
10:a2:0c:82:f7:0d:e0:4e:22:d5:eb:62:96:4e:7d:6d:61:03:
a8:5e:84:e9:eb:32:45:bb:e7:73:60:d4:38:9c:8a:41:5e:4a:
d8:01:e9:46:02:1e:48:ac:41:34:b3:70:eb:23:f8:be:6b:46:
fe:ac:81:57:4b:9c:9e:bc:d1:8e:9e:d8:25:0f:f9:25:40:66:
dc:40:56:e7:52:5f:42:d0:f1:2f:a9:23:26:22:2c:ff:fb:65:
65:98:b7:b5:28:2d:63:03:06:ec:78:1b:ce:19:f8:95:cd:86:
93:41:3c:04:9e:c8:93:9d:62:d4:31:6b:44:cd:c3:fa:e5:87:
07:94:57:e0:95:81:c2:47:61:66:6c:d0:94:9e:01:68:56:ae:
b2:cc:09:1f:77:b4:96:79:80:ec:b4:06:47:51:eb:a4:a2:5f:
64:ce:05:2e:86:e7:17:65:a7:12:5c:aa:ae:9e:92:64:8e:d6:
3c:3b:50:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 04:54:12 2025 by rpki-client