Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47A735BE689A11F085E7FDAFDAE4EC9C.roa
File: 47A735BE689A11F085E7FDAFDAE4EC9C.roa (raw, json)
Hash identifier: cJ6QBAyMDHUZOBrXFvXrdpjnfJ2FF775tBj6LDLrHwk=
Subject key identifier: D9:6D:E3:03:3E:EF:FA:79:C3:D4:98:40:47:71:E5:5D:B3:CD:07:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018F8E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47A735BE689A11F085E7FDAFDAE4EC9C.roa
Signing time: Thu 24 Jul 2025 14:27:09 +0000
ROA not before: Thu 24 Jul 2025 14:27:04 +0000
ROA not after: Fri 05 Sep 2025 14:27:04 +0000
asID: 202656
IP address blocks: 154.218.25.0/24 maxlen: 24
154.218.26.0/24 maxlen: 24
154.218.31.0/24 maxlen: 24
154.219.237.0/24 maxlen: 24
154.219.238.0/24 maxlen: 24
154.219.239.0/24 maxlen: 24
154.219.240.0/24 maxlen: 24
154.219.241.0/24 maxlen: 24
154.219.242.0/24 maxlen: 24
154.219.243.0/24 maxlen: 24
154.219.244.0/24 maxlen: 24
154.219.248.0/24 maxlen: 24
154.221.50.0/24 maxlen: 24
154.221.51.0/24 maxlen: 24
154.222.200.0/24 maxlen: 24
154.222.201.0/24 maxlen: 24
154.222.202.0/24 maxlen: 24
154.222.203.0/24 maxlen: 24
154.222.204.0/24 maxlen: 24
154.222.205.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102286 (0x18f8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 24 14:27:04 2025 GMT
Not After : Sep 5 14:27:04 2025 GMT
Subject: CN=688242bd-f2f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d0:ee:d9:bc:64:9b:9b:c4:f7:9c:01:22:fa:
b2:16:55:24:0a:ff:6f:3e:e8:59:ec:fb:3b:a7:8e:
25:de:ef:34:e1:63:e3:4e:b4:90:12:27:9c:51:85:
2d:cb:b3:9f:db:2e:be:d7:0f:5e:85:d0:83:9f:63:
ef:80:c9:67:a1:a0:fb:ed:91:09:7a:33:53:96:10:
f5:a6:60:44:78:09:2a:c5:dc:4f:e5:c0:78:5b:b2:
a6:2c:dc:74:12:fd:b0:d4:7f:06:53:f2:48:c5:11:
09:4f:12:8f:c8:e7:01:3e:7f:42:9d:29:20:37:96:
be:5e:a8:e1:37:02:dc:2d:1c:c9:01:72:94:ee:ef:
82:b4:2b:01:2e:7a:2b:04:fb:40:c7:50:e8:db:62:
3d:a3:51:f0:8b:85:13:33:04:eb:26:18:36:1e:c9:
82:c9:18:06:f5:77:9f:21:85:72:a0:16:42:d4:23:
00:91:4f:7d:d2:d8:81:ad:af:ec:65:b4:e0:44:4e:
44:0d:d9:68:2b:79:5e:2b:6e:58:a5:d9:7e:dd:dc:
7b:6b:a6:bb:f7:35:84:5a:d0:02:e9:61:0f:19:e4:
37:39:2e:f7:c8:1a:72:10:d4:9e:88:d4:c2:0b:f5:
c1:d2:35:1e:cf:8f:7f:15:51:2e:0d:3b:36:de:1c:
58:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6D:E3:03:3E:EF:FA:79:C3:D4:98:40:47:71:E5:5D:B3:CD:07:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/47A735BE689A11F085E7FDAFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.25.0-154.218.26.255
154.218.31.0/24
154.219.237.0-154.219.244.255
154.219.248.0/24
154.221.50.0/23
154.222.200.0-154.222.205.255
Signature Algorithm: sha256WithRSAEncryption
0e:ef:ac:f4:ac:1f:78:95:c6:3e:6e:fc:c3:da:5b:f3:c7:b8:
da:32:c3:98:66:7e:48:2c:9f:42:ec:c5:3e:49:0c:04:b9:dd:
5d:e1:97:39:50:b1:55:ad:21:79:aa:25:a3:2a:3e:c0:d6:2a:
08:74:b8:2e:09:1e:be:13:dc:14:27:b1:cc:f8:25:93:1e:85:
4f:ef:c1:c6:f4:7c:3d:1f:c7:1f:1e:20:94:d1:2d:9c:7d:33:
2e:e0:4c:ab:6d:fd:ff:9b:53:d7:59:1b:59:67:5d:22:c4:9b:
f8:e2:87:bc:3e:a2:a2:94:97:2b:a1:b5:c2:26:36:73:f0:3c:
6a:e4:37:9f:30:88:7a:ab:07:ab:2e:60:06:f9:e8:0f:ac:e7:
02:97:46:a3:85:33:1f:e4:5c:8c:56:b8:1c:0d:e1:3d:4a:a8:
77:b4:92:ff:00:df:17:e5:ed:ff:ec:0c:15:19:f3:5c:72:e7:
d3:06:76:66:49:41:3a:81:11:6d:57:2c:e2:06:be:9d:a9:b1:
ae:7d:34:97:e6:59:73:86:98:11:18:58:c2:44:a4:72:0a:26:
9e:4b:67:14:a7:af:e6:85:3b:a1:53:92:a6:44:e4:b9:b0:e0:
00:bc:32:07:a9:3c:d9:9d:16:e6:4b:ce:51:27:8f:3c:1d:78:
5f:9d:a5:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 07:43:36 2025 by rpki-client