Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/843C139098AC11F0BE71A7ABDAE4EC9C.roa
File: 843C139098AC11F0BE71A7ABDAE4EC9C.roa (raw, json)
Hash identifier: jotrlBgk8kkyhNXPqCTQamYgtZd+rP4yUYCwrh1o1c8=
Subject key identifier: 12:17:25:DD:13:7C:2D:45:F6:0F:3A:78:A4:05:25:DE:5A:24:82:7B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1C20
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/843C139098AC11F0BE71A7ABDAE4EC9C.roa
Signing time: Tue 23 Sep 2025 18:38:37 +0000
ROA not before: Tue 23 Sep 2025 18:38:32 +0000
ROA not after: Thu 23 Sep 2027 18:38:32 +0000
asID: 29802
IP address blocks: 154.16.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7200 (0x1c20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 23 18:38:32 2025 GMT
Not After : Sep 23 18:38:32 2027 GMT
Subject: CN=68d2e92d-5abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f4:68:79:8e:ac:b4:bd:22:e4:32:48:01:5e:
a4:fe:13:48:47:2d:13:3a:72:70:77:55:bd:3f:25:
70:ac:0d:cd:92:76:b1:81:21:43:a3:e2:7e:6b:42:
11:1c:db:83:77:49:10:23:77:23:c6:c2:4b:6f:54:
06:28:8b:fe:79:c6:67:18:92:24:db:b0:64:8d:bb:
fb:ef:74:36:63:f1:d5:01:7f:e8:33:be:10:fb:a8:
83:0e:90:fc:13:35:95:c5:b7:9e:e6:32:77:fa:41:
3f:5a:8e:9f:95:a3:d2:57:fb:bc:09:da:f7:73:59:
96:91:34:1b:34:51:2d:0b:ec:c3:8a:e0:91:d2:4f:
bf:d0:85:ee:8a:7c:eb:bb:79:41:61:01:73:4e:8c:
54:7f:0b:aa:bd:c1:cb:c9:7d:65:02:58:3e:08:b7:
85:5b:56:a1:44:85:32:e0:50:cf:2f:0e:a7:6c:ce:
91:f9:0c:a0:34:e8:1e:77:21:bc:ea:80:91:64:b2:
78:32:e6:28:b5:6d:3c:32:80:69:e4:33:3d:0f:e3:
64:27:ca:3a:c8:20:84:f3:8c:32:1b:29:2e:51:1c:
da:22:07:ec:d4:f1:e9:30:d1:62:4f:9d:bf:c9:4f:
52:9e:21:b3:59:3b:21:0e:b0:34:63:f7:85:37:a4:
de:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:17:25:DD:13:7C:2D:45:F6:0F:3A:78:A4:05:25:DE:5A:24:82:7B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/843C139098AC11F0BE71A7ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.161.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:9b:2f:78:19:a1:35:26:6d:3b:40:cb:3b:f4:f9:cc:25:0f:
4c:a7:5b:3f:c8:56:15:fb:ef:57:60:3a:01:bc:f1:4f:cd:bb:
ce:0b:17:a7:29:07:ed:86:4c:fe:f8:95:07:0e:7c:3e:84:27:
f0:09:97:16:03:bc:61:8e:ca:77:f6:4e:14:b3:e9:29:0a:7a:
ad:d1:b3:98:a3:82:cf:c0:6f:b5:a1:a6:61:d1:ff:39:87:2c:
69:51:53:d2:19:4a:5d:a7:c4:2e:96:86:bb:c1:f3:00:f5:66:
0a:20:f2:bb:d0:b3:85:9a:2f:34:08:54:98:97:08:45:da:72:
20:cc:3f:ca:4b:22:15:ed:5a:8a:b7:2c:ca:e1:44:57:ce:bb:
67:0b:4e:2c:68:7c:6b:63:bb:56:4d:69:96:f8:78:8c:81:42:
ad:cb:e6:35:ad:37:cd:e3:2c:53:95:6e:34:4e:15:5e:63:18:
0a:52:4f:d1:b9:39:eb:86:71:af:75:f7:b5:52:cf:97:99:f2:
8c:bb:e0:26:49:02:7b:38:8f:d8:de:e1:1c:a2:44:9e:fa:31:
99:0a:54:ce:3c:f2:62:0b:94:c2:a4:8a:45:2b:03:e8:59:37:
1c:18:e2:f0:f9:c5:56:9a:25:36:bd:0d:82:f2:d8:2e:2a:78:
ee:04:05:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:06:06 2025 by rpki-client