Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5155E8AE6FE711F08CD2ECB3DAE4EC9C.roa
File: 5155E8AE6FE711F08CD2ECB3DAE4EC9C.roa (raw, json)
Hash identifier: RXC6oGIgFolIFyuEj41Fh9kMftYZla341QX9Y+s5Mzk=
Subject key identifier: 84:0A:03:C2:95:FF:99:BE:6E:99:9F:C4:AF:33:DD:09:6A:7B:30:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019080
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5155E8AE6FE711F08CD2ECB3DAE4EC9C.roa
Signing time: Sat 02 Aug 2025 21:26:15 +0000
ROA not before: Sat 02 Aug 2025 21:26:08 +0000
ROA not after: Wed 24 Sep 2025 21:26:08 +0000
asID: 58931
IP address blocks: 154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102528 (0x19080)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 2 21:26:08 2025 GMT
Not After : Sep 24 21:26:08 2025 GMT
Subject: CN=688e8276-48c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:eb:81:19:7b:67:eb:a9:b6:1c:dc:e9:e1:b0:
88:51:da:b0:cf:15:54:08:ee:ea:a3:fb:59:9a:64:
e7:cd:6f:48:aa:e5:0e:53:26:b5:ed:5b:95:5a:9d:
5c:26:4c:ac:84:d5:e2:6b:e1:a7:ff:b5:ee:16:45:
20:00:1e:c6:a1:c7:b0:78:10:f9:07:da:28:7d:1f:
7f:73:1b:bf:47:33:79:b2:30:1c:d5:b9:1f:a9:02:
b8:06:6f:25:da:f0:f0:eb:47:10:81:9e:9b:14:7e:
73:84:df:4e:8d:5b:06:78:0f:07:ca:37:d4:0d:74:
26:3b:10:36:16:d1:43:7f:a6:aa:da:78:92:ff:a9:
b0:d1:a5:62:b2:f5:db:0d:f9:50:8e:03:7d:3e:8c:
34:ea:eb:e2:b6:c8:c6:7a:00:40:34:bd:5a:a3:51:
08:62:4e:7e:b1:d0:b4:e2:88:ae:95:2e:b5:c8:45:
39:18:ff:4f:5a:a8:69:8d:6e:73:dd:c3:c6:a6:0f:
fc:7f:4a:f4:a6:0d:92:ce:25:7a:2f:69:a2:3d:91:
92:7d:0d:ce:d2:5c:19:5c:59:92:36:e0:c8:46:2c:
4c:17:97:9a:0b:0e:87:7a:47:31:a7:e4:63:5a:28:
a1:f6:cf:81:e9:56:08:9c:33:f8:7f:f9:6b:74:10:
d8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:0A:03:C2:95:FF:99:BE:6E:99:9F:C4:AF:33:DD:09:6A:7B:30:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5155E8AE6FE711F08CD2ECB3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:eb:83:25:08:c2:8f:d4:39:e5:a8:ba:0f:9b:d6:c5:8e:36:
9a:47:5d:4e:49:36:2b:6c:76:fb:34:23:32:c0:5d:1d:29:8b:
8d:6d:fb:c7:58:49:40:6c:7d:3d:51:4e:69:b5:33:7c:d6:89:
78:c2:38:9e:77:07:14:10:4f:5c:36:28:68:76:f2:40:53:8c:
98:22:3c:42:2f:24:8a:79:4c:6f:b9:50:65:ad:45:5a:a2:0f:
d3:c6:1f:84:c7:4e:61:c3:ac:08:00:a8:f0:4e:4f:21:c4:d6:
b7:98:e2:cb:74:a6:0d:b3:aa:27:df:f5:90:01:de:fd:bb:4a:
b6:d7:17:4a:c1:70:fc:e0:b3:fb:21:89:ac:4a:1e:b2:07:d7:
78:c8:32:00:8c:b7:9f:ef:c3:d9:8d:60:a7:bd:da:c1:5e:ec:
12:d5:dc:cd:5a:75:de:06:27:5f:89:a3:47:25:6b:5b:de:4f:
84:bb:e2:2f:97:25:c3:53:1c:3e:9d:54:ac:2d:85:3f:ae:e9:
cf:60:ac:cf:57:10:32:e5:23:f7:ef:4c:0f:c0:80:10:b1:14:
45:29:18:9b:ae:c0:fc:5f:2e:6b:08:61:9e:a8:3d:85:7b:ba:
72:74:db:40:b5:5f:c6:66:18:76:91:06:4c:0c:c0:7d:e5:a2:
96:e5:29:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 07:53:24 2025 by rpki-client