Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BC27E286D2711F0828928D8DAE4EC9C.roa
File: 5BC27E286D2711F0828928D8DAE4EC9C.roa (raw, json)
Hash identifier: TxjpuFkW9T0tt2mCc6CcGgXiqS1emxVl+gvwhDwSnNE=
Subject key identifier: 4E:0B:2F:B9:AC:8E:A5:97:7A:AC:B2:56:EB:1F:4B:02:0F:13:81:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019003
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BC27E286D2711F0828928D8DAE4EC9C.roa
Signing time: Wed 30 Jul 2025 09:27:06 +0000
ROA not before: Wed 30 Jul 2025 09:27:01 +0000
ROA not after: Mon 25 Aug 2025 09:27:01 +0000
asID: 54801
IP address blocks: 154.90.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102403 (0x19003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 30 09:27:01 2025 GMT
Not After : Aug 25 09:27:01 2025 GMT
Subject: CN=6889e56a-706f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cc:4c:94:48:45:1d:97:c9:96:40:f0:88:44:
26:8d:62:92:54:26:17:a1:d9:7b:9f:80:de:b8:c0:
62:dd:25:8e:66:42:0b:81:97:33:ad:17:e0:db:67:
75:8d:23:3d:9e:5b:7e:ae:d1:7a:66:a6:39:94:8a:
07:d8:90:1b:8d:95:42:63:27:69:c9:50:07:dd:91:
32:a1:75:79:ed:d5:85:21:45:c6:45:d3:c1:1a:f6:
c5:5d:e5:5f:0e:08:75:45:1d:8f:09:28:97:f6:31:
17:74:d9:55:86:80:87:5b:21:b8:63:91:99:24:0d:
85:f9:a9:5d:2b:94:07:7f:87:22:49:49:b1:5c:84:
32:dc:21:26:45:40:9c:5a:9f:69:56:14:34:cd:7b:
86:1b:9c:80:98:a9:02:36:c2:fc:6e:9c:83:df:1a:
55:d1:08:2e:fc:63:c2:38:7d:3a:38:66:a0:1e:12:
e2:ae:ac:be:e2:65:64:8f:0a:a7:c5:a7:5f:28:41:
10:0e:64:12:4b:1a:c2:23:73:f8:6a:38:a0:36:b9:
eb:45:41:c2:59:14:9d:43:47:a3:fd:9f:27:f7:f8:
77:26:84:c3:b8:25:1d:19:54:47:fd:2b:b5:f0:69:
d3:ad:17:b5:cf:cd:87:c2:f7:2d:38:49:9e:6d:0c:
eb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:0B:2F:B9:AC:8E:A5:97:7A:AC:B2:56:EB:1F:4B:02:0F:13:81:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BC27E286D2711F0828928D8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.28.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:6b:e3:a7:cc:8c:df:40:67:09:74:99:5b:f2:ae:45:50:b5:
b3:7a:6f:0d:af:65:bd:5a:37:16:96:8b:85:05:4b:4b:5f:0d:
04:2e:04:d0:07:77:bf:04:35:f8:34:39:e3:ae:c1:d3:e2:ca:
d9:ff:9c:a7:9f:6b:9a:94:72:4e:af:fa:1a:7f:90:44:a4:34:
d0:08:b6:eb:d4:d6:c0:25:84:82:a5:ff:3c:66:5c:2e:a4:e9:
c8:0d:60:05:a8:15:7d:d1:41:a8:b6:5a:16:c4:5f:d0:51:f0:
fe:52:02:1f:cb:e7:3a:b2:c5:d2:46:f7:f8:3d:a1:4c:b8:c7:
91:cc:bd:20:41:e3:d5:2d:f6:ac:bf:7a:70:a9:6c:08:53:9f:
9a:eb:1f:65:60:b1:dc:8d:fe:d7:44:b0:aa:fc:e5:f0:9e:af:
f3:31:32:51:99:94:71:83:e3:65:3b:aa:20:31:13:32:e4:15:
dc:06:e5:cf:0a:15:53:69:c6:c2:7d:c1:00:f1:12:70:32:19:
0d:43:1b:2b:20:83:ac:24:72:60:6a:b3:45:97:84:9c:c5:09:
dd:57:ec:9e:14:76:d0:7e:7d:36:a1:37:40:0a:1e:ee:dc:9b:
25:fe:58:7f:28:81:40:26:d6:5a:f5:55:27:2f:e7:bc:4e:96:
ab:a3:2a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 08:22:44 2025 by rpki-client