Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44C111926FB311F0960D66E7DAE4EC9C.roa
File: 44C111926FB311F0960D66E7DAE4EC9C.roa (raw, json)
Hash identifier: 9O9NtNhgCEjk1bhM28b9YOA1Dnew40OG3Yu88mnjXc0=
Subject key identifier: 25:58:DE:6A:A4:56:38:33:08:77:AC:9C:20:9A:F1:5F:F2:3F:F1:33
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01904A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44C111926FB311F0960D66E7DAE4EC9C.roa
Signing time: Sat 02 Aug 2025 15:13:40 +0000
ROA not before: Sat 02 Aug 2025 15:13:34 +0000
ROA not after: Tue 21 Oct 2025 15:13:34 +0000
asID: 135377
IP address blocks: 154.82.22.0/24 maxlen: 24
154.82.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102474 (0x1904a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 2 15:13:34 2025 GMT
Not After : Oct 21 15:13:34 2025 GMT
Subject: CN=688e2b23-0de3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b7:2c:a1:d7:ba:a9:70:ab:68:de:6b:cf:92:
83:a5:a4:31:7a:94:96:30:b6:ac:73:69:e7:78:d4:
fe:6d:95:10:fe:5e:a2:b2:43:22:0b:01:c6:f9:c1:
10:2e:07:61:0c:a6:9d:dc:5b:34:e9:63:72:84:39:
9b:97:7a:ed:5c:8a:50:0a:83:f2:c7:b4:4f:2a:01:
e4:0a:f4:34:ea:d5:97:6b:fe:f8:af:c0:df:38:ac:
59:b4:4e:8f:c9:d2:b2:c6:b4:fc:34:95:2e:1b:3d:
33:2f:51:ac:b7:1d:55:cf:96:6e:13:79:1c:f1:63:
4c:a9:61:f3:04:87:d5:29:f5:98:a1:dd:54:9c:50:
4b:9f:fd:4d:3e:9a:90:67:30:73:ba:ff:8c:9f:16:
a8:ef:95:ed:0f:54:65:16:f4:50:9e:3a:f0:c3:28:
b9:ee:4b:c2:f2:74:70:53:e6:b0:dc:65:e5:f4:1e:
69:41:28:77:ee:c7:c1:d8:8d:95:62:c2:9e:30:be:
88:78:40:92:d6:54:7b:d0:02:20:ba:45:75:0b:7f:
8d:df:5f:3a:00:40:30:55:b4:2c:56:a5:1f:82:98:
52:38:87:de:40:a0:65:bc:c8:47:ef:ac:4e:b6:e1:
11:24:12:2d:34:f4:cc:67:a8:ce:9f:96:0d:92:e5:
b8:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:58:DE:6A:A4:56:38:33:08:77:AC:9C:20:9A:F1:5F:F2:3F:F1:33
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/44C111926FB311F0960D66E7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.22.0/23
Signature Algorithm: sha256WithRSAEncryption
04:fb:2d:23:13:fc:0c:71:e4:d6:e1:3d:8f:10:2d:60:aa:26:
18:17:5a:cc:19:1f:67:a9:b6:df:26:ca:73:aa:84:a3:c8:20:
15:2b:fc:47:28:40:d5:72:3b:ff:98:ad:35:e4:e0:a6:08:3a:
0d:8f:9c:45:64:ee:ee:40:e8:11:74:76:d4:74:bb:48:9b:6b:
79:58:9e:2a:34:fe:32:93:b4:68:79:2c:1e:88:22:c7:9f:dd:
62:99:e9:df:b6:fb:91:02:8b:f8:19:1a:cf:8b:3d:c6:88:d7:
03:3f:01:2e:95:47:da:c7:a4:a6:6e:d2:62:f6:13:aa:9b:c8:
41:ce:a4:6e:72:5f:f6:6e:f4:7d:d6:93:6c:a4:94:2c:48:f0:
9c:e0:d7:36:fb:d4:d9:56:1b:6e:97:70:bc:65:90:6a:e1:09:
de:45:d8:39:c7:43:6a:72:8d:48:31:84:8c:51:5d:99:dd:2f:
5e:90:fe:a9:e5:92:07:74:81:c4:14:45:d0:77:db:d5:74:d7:
49:b8:bb:86:d6:3f:ce:08:22:21:61:0f:67:1e:ae:2e:0d:31:
fb:fd:70:f2:1a:b7:38:dd:0e:f4:18:8f:69:bc:05:ce:2a:0b:
6e:ca:d9:e8:51:e2:f2:f4:fc:3a:a5:75:90:84:63:16:86:2f:
b5:89:41:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:15:22 2025 by rpki-client