Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1D6AE64438F11F0B8ADD6A4DAE4EC9C.roa
File: F1D6AE64438F11F0B8ADD6A4DAE4EC9C.roa (raw, json)
Hash identifier: dFgVGuSwT5bJBSnqTfHpeHybVBPJeNMDmzazMP1rX/A=
Subject key identifier: 68:66:3A:17:C1:06:C1:40:1A:B8:71:AA:32:1D:7A:3E:56:27:32:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018550
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1D6AE64438F11F0B8ADD6A4DAE4EC9C.roa
Signing time: Sat 07 Jun 2025 11:09:57 +0000
ROA not before: Sat 07 Jun 2025 11:09:52 +0000
ROA not after: Sun 31 Aug 2025 11:09:52 +0000
asID: 399077
IP address blocks: 154.91.107.0/24 maxlen: 24
154.91.108.0/24 maxlen: 24
154.91.109.0/24 maxlen: 24
154.91.110.0/24 maxlen: 24
154.91.111.0/24 maxlen: 24
154.91.112.0/24 maxlen: 24
154.91.113.0/24 maxlen: 24
154.91.114.0/24 maxlen: 24
154.91.115.0/24 maxlen: 24
154.91.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 20 Jun 2025 11:43:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99664 (0x18550)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 7 11:09:52 2025 GMT
Not After : Aug 31 11:09:52 2025 GMT
Subject: CN=68441e05-8cb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d8:e5:bb:10:8c:d3:97:64:8f:7c:83:11:d6:
c2:a3:9f:ed:40:cc:7f:67:7d:f5:21:0f:da:1b:a7:
71:39:aa:ad:59:18:4a:4f:09:96:40:88:83:2b:6d:
95:6b:67:ed:01:df:63:70:1b:57:30:5d:3e:db:ba:
88:7b:dd:d7:95:a2:e8:29:b4:92:81:55:87:41:35:
4c:a9:a1:17:87:f5:6d:42:9d:b4:b7:32:c1:48:12:
09:20:40:bc:b2:ac:59:85:60:68:34:fe:52:7e:d6:
2e:1d:f3:e3:4d:c3:18:0d:65:1f:fa:ea:93:7f:18:
89:1d:e6:8c:c6:23:3f:b8:0f:42:7f:ba:3c:6d:14:
1b:41:84:51:0a:4a:de:e4:ce:d5:bb:03:ce:ec:cd:
3a:63:a9:51:9c:e9:4e:d2:07:a4:89:da:7a:07:8b:
14:1c:5c:7c:26:98:75:2e:ec:48:b7:5b:1d:e8:19:
d7:26:66:e0:82:fa:41:8b:b3:92:f5:a5:44:d8:06:
82:3d:3e:2a:42:71:76:14:cd:d2:b0:62:fe:f7:d4:
0f:fe:39:c6:c6:d3:c6:37:ed:e0:5f:75:65:06:56:
cc:74:36:ca:77:33:95:63:55:51:6b:02:b6:de:2c:
3b:6b:d9:33:43:0f:5a:80:33:38:43:4c:84:cb:de:
f2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:66:3A:17:C1:06:C1:40:1A:B8:71:AA:32:1D:7A:3E:56:27:32:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F1D6AE64438F11F0B8ADD6A4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.107.0-154.91.116.255
Signature Algorithm: sha256WithRSAEncryption
6e:7c:20:ce:c6:94:df:63:77:d9:a8:52:a4:83:6c:3d:82:c7:
64:73:4f:92:98:d7:38:64:cf:26:8b:ae:fb:62:2a:5f:e8:71:
a9:bb:42:a7:32:8a:9c:9a:99:7c:7c:4e:c7:e7:e3:52:e4:2a:
0d:bf:e9:e9:b9:3a:37:da:a2:be:b6:50:90:26:87:0b:03:b0:
69:94:0e:4e:b3:eb:a1:7c:01:e5:ec:ce:89:d0:88:df:e6:51:
d2:df:e5:45:e9:8c:84:99:65:b6:cf:c8:2e:c1:d6:96:47:7f:
f7:fb:c5:8b:df:0a:b1:ce:ea:43:d0:06:44:b3:a8:d6:07:b3:
5a:2d:77:24:f6:35:79:96:8e:59:92:24:db:be:09:66:1c:74:
a0:72:8b:32:36:e6:17:41:1e:b3:dc:f7:7f:7a:cb:17:f6:3d:
40:f6:c0:5f:02:90:69:e2:b0:50:54:ab:c7:35:b3:11:10:ae:
89:30:4b:6e:56:89:f3:e3:9b:96:fe:82:aa:ce:58:c3:ff:a9:
23:3e:c5:4a:d6:64:19:32:a8:35:84:61:9a:a5:08:1e:75:03:
65:a6:d8:b6:8f:7b:93:cd:95:f0:4c:d1:53:67:e1:a5:79:fc:
3d:c4:28:19:c3:35:b8:8d:e6:89:2a:e8:83:a1:a2:a3:98:b8:
a7:ef:15:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 18:14:28 2025 by rpki-client