Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC245BC8479311F090AEF6BEDAE4EC9C.roa
File: CC245BC8479311F090AEF6BEDAE4EC9C.roa (raw, json)
Hash identifier: FtwhBvAiELl6POCsppzut2VKVhKYBsX2Ms9Y3EH/5qs=
Subject key identifier: 46:81:FA:22:08:D0:54:B5:7B:68:30:96:4B:D7:8B:13:0F:2C:74:B8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018632
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC245BC8479311F090AEF6BEDAE4EC9C.roa
Signing time: Thu 12 Jun 2025 13:47:36 +0000
ROA not before: Thu 12 Jun 2025 13:47:32 +0000
ROA not after: Wed 03 Sep 2025 13:47:32 +0000
asID: 149440
IP address blocks: 154.81.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 17 Jun 2025 00:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99890 (0x18632)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 12 13:47:32 2025 GMT
Not After : Sep 3 13:47:32 2025 GMT
Subject: CN=684ada78-5cb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:16:d5:53:50:88:df:75:4b:49:ca:de:82:0c:
7b:74:4c:8a:2c:97:f0:90:86:50:d6:f1:41:50:21:
64:81:5a:e0:5c:2f:22:0e:8d:9f:8f:b7:5e:90:12:
8f:97:c1:4e:86:bb:c2:52:b6:76:4a:6d:70:68:81:
6a:b5:90:b3:78:ab:2a:b3:4f:eb:f5:73:49:de:4c:
5e:2e:9a:74:92:ba:8d:a7:72:ff:5e:57:42:20:d0:
4a:05:5d:22:1c:0d:43:35:a3:ed:e1:32:43:55:ad:
e8:07:dd:69:23:70:20:e4:93:d9:ea:5a:01:ed:68:
ae:9b:66:10:03:67:2e:d1:5d:02:d5:fa:e5:c9:5a:
63:4b:5c:62:2e:62:8a:68:3f:60:62:8d:c1:29:c4:
32:94:d0:51:a6:87:67:8a:d7:e0:93:9d:94:59:ff:
44:cc:79:42:36:6f:7d:07:4d:b2:54:72:d0:48:50:
0d:03:14:bd:e1:13:ef:56:3b:86:b2:c4:ce:5b:5b:
ad:27:71:83:8a:2d:3c:93:21:9a:72:62:23:6a:1b:
7b:fe:6b:f4:39:cc:4e:a5:6d:42:cd:fd:4e:2f:df:
18:0c:07:a7:71:0d:4a:cf:15:6e:bf:55:86:ca:ce:
c3:95:99:81:ce:0e:c3:7c:5e:3e:35:fc:20:9b:2c:
1d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:81:FA:22:08:D0:54:B5:7B:68:30:96:4B:D7:8B:13:0F:2C:74:B8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CC245BC8479311F090AEF6BEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.220.0/24
Signature Algorithm: sha256WithRSAEncryption
39:bb:b8:f0:8e:10:e1:f1:2c:77:af:52:24:05:f7:b5:4e:e2:
a5:fd:84:21:8c:cf:68:d4:40:d2:c0:46:b2:72:67:04:3a:7c:
8e:ab:f3:53:69:c0:98:85:21:6c:81:31:8b:a2:f6:fb:0d:3f:
1c:1d:60:ec:12:a5:fd:3a:12:d1:2a:3e:56:8e:95:2a:9f:71:
dc:ab:8d:44:b2:67:c1:55:5b:a4:fe:0c:9e:f3:ce:3e:ab:da:
f4:87:88:3f:a1:d8:1b:75:d0:47:6a:84:71:5b:18:c6:c9:84:
b3:6b:08:9e:11:a4:a5:de:5a:16:bb:3c:4f:08:d0:01:9f:3f:
a8:5e:5e:c8:9b:62:f2:d8:b9:e8:8d:26:9f:3d:5b:00:a1:fe:
32:43:5b:c9:2a:50:9c:c1:19:90:e0:fc:1e:61:7f:0b:5b:77:
9c:56:46:fb:7a:2f:f9:88:fa:4b:86:40:4b:6a:22:61:c7:78:
be:d2:bb:53:fa:08:62:fc:5d:57:1b:42:47:b8:a0:12:2a:ab:
9b:d6:ad:36:0a:86:33:15:78:b4:3e:b5:f3:5d:fa:9c:e2:74:
df:f8:1a:ed:37:0a:08:5b:91:12:bc:55:69:a5:98:24:78:7e:
82:67:c8:d4:68:22:0f:18:31:ee:f6:29:29:4a:ec:eb:62:cd:
b8:04:6f:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 20:37:06 2025 by rpki-client