Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/585E5FF6688E11F0A59367E3DAE4EC9C.roa
File: 585E5FF6688E11F0A59367E3DAE4EC9C.roa (raw, json)
Hash identifier: yTvO6OmkekHUf9EcOyECJIVM67Tihdno2YPi0ftN5Uw=
Subject key identifier: 88:07:35:93:69:9B:FF:2E:FC:59:82:88:6A:CD:BB:50:A5:F3:7E:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018F7C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/585E5FF6688E11F0A59367E3DAE4EC9C.roa
Signing time: Thu 24 Jul 2025 13:01:43 +0000
ROA not before: Thu 24 Jul 2025 13:01:38 +0000
ROA not after: Mon 08 Sep 2025 13:01:38 +0000
asID: 44559
IP address blocks: 154.219.65.0/24 maxlen: 24
154.219.66.0/24 maxlen: 24
154.219.67.0/24 maxlen: 24
154.219.68.0/24 maxlen: 24
154.219.69.0/24 maxlen: 24
154.219.70.0/24 maxlen: 24
154.219.75.0/24 maxlen: 24
154.219.81.0/24 maxlen: 24
154.219.82.0/24 maxlen: 24
154.219.83.0/24 maxlen: 24
154.219.84.0/24 maxlen: 24
154.219.85.0/24 maxlen: 24
154.219.86.0/24 maxlen: 24
154.219.87.0/24 maxlen: 24
154.219.88.0/24 maxlen: 24
154.219.89.0/24 maxlen: 24
154.219.90.0/24 maxlen: 24
154.219.91.0/24 maxlen: 24
154.219.92.0/24 maxlen: 24
154.219.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102268 (0x18f7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 24 13:01:38 2025 GMT
Not After : Sep 8 13:01:38 2025 GMT
Subject: CN=68822eb7-739c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:dc:b9:35:b2:be:c2:92:63:f5:a9:a1:3f:6d:
82:b5:7d:1c:4a:c5:55:3c:c2:23:3b:12:85:3e:7c:
06:e7:28:96:54:b0:6c:7f:21:c3:20:80:28:f2:ff:
68:d7:79:d4:a3:bf:7c:71:7b:54:e0:5a:03:56:37:
be:11:64:93:e2:4f:b5:69:ef:d0:f7:f3:55:b5:14:
b1:e6:68:90:16:d4:fd:0c:c3:61:eb:64:98:a9:75:
9d:33:85:ea:63:88:67:10:be:42:11:3d:98:7e:85:
d8:e3:20:5c:21:c5:95:d9:a8:a3:ff:4f:a9:38:bd:
cd:bd:16:67:63:ed:af:3f:bf:f1:3d:f0:17:b7:d3:
6a:aa:b9:c4:62:e3:36:22:03:7a:57:f2:52:74:f3:
ac:69:e6:53:99:72:25:b7:a0:e5:22:62:1c:8a:74:
44:c4:9d:45:1d:af:d7:4b:c2:28:3c:b2:76:16:5c:
99:34:8e:33:83:13:4c:72:2a:5d:3f:61:94:6c:6c:
f0:40:d3:0e:c1:19:bc:2a:92:ab:38:15:f3:43:da:
07:87:37:ca:7e:ad:eb:2b:b5:fa:5d:3b:8f:72:28:
c8:6b:8a:c5:ac:82:3a:2e:c5:43:78:e7:88:16:26:
25:44:aa:d1:f8:54:53:1c:1a:28:c3:ae:74:47:5e:
99:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:07:35:93:69:9B:FF:2E:FC:59:82:88:6A:CD:BB:50:A5:F3:7E:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/585E5FF6688E11F0A59367E3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.65.0-154.219.70.255
154.219.75.0/24
154.219.81.0-154.219.93.255
Signature Algorithm: sha256WithRSAEncryption
76:a6:85:87:88:7c:1b:fc:77:2a:22:a0:e2:cc:26:a9:45:7c:
a5:ef:8f:bd:9e:fe:32:19:55:a9:41:b3:38:f0:3d:df:56:a8:
d0:bb:fb:34:0a:86:b1:d9:b1:cb:5f:c1:01:46:6d:f1:c5:b5:
7f:c6:07:f3:b5:8e:9d:aa:15:c5:b4:03:68:bf:f9:86:88:73:
fe:56:b9:a2:b9:35:6e:95:0a:da:48:20:ae:14:a5:c3:fa:e9:
bd:7c:28:85:89:f0:93:4a:af:c9:45:89:af:a1:d0:e1:55:e1:
d9:96:46:46:00:c7:56:ea:a6:7a:23:31:7d:b2:9a:fd:a4:b4:
c7:18:4c:4c:52:33:71:4b:2d:a6:d9:21:06:68:86:ce:42:1a:
04:55:45:63:af:43:ca:70:71:66:e5:81:31:6f:f9:1a:3d:52:
74:05:a9:cc:b8:03:06:62:10:ba:5f:83:52:f3:6e:d7:11:98:
8b:61:59:2b:3f:2f:8e:0d:ce:b7:7c:3d:2d:0e:b2:23:55:03:
58:7a:dc:29:e6:13:55:72:1d:b2:d5:7c:fd:8b:2f:32:58:62:
83:e5:1c:0a:ae:93:27:c5:57:fa:fc:bb:4e:bc:4a:30:0b:01:
4f:4d:af:fb:21:a0:03:02:63:96:6b:8f:8e:51:aa:4b:cd:f6:
aa:c7:a6:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 08:31:18 2025 by rpki-client