Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B1C7518E888B11F09BFB6681DAE4EC9C.roa
File: B1C7518E888B11F09BFB6681DAE4EC9C.roa (raw, json)
Hash identifier: KW0OuoY02XDkg0VSPCzA+6fyFmr960C3nXfsz1PuOFc=
Subject key identifier: AD:24:2F:84:59:14:C2:47:A2:25:7B:B3:A4:EB:D7:18:75:6E:1F:C2
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1BF0
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B1C7518E888B11F09BFB6681DAE4EC9C.roa
Signing time: Wed 03 Sep 2025 06:03:23 +0000
ROA not before: Wed 03 Sep 2025 06:03:16 +0000
ROA not after: Fri 03 Sep 2027 06:03:16 +0000
asID: 16509
IP address blocks: 154.16.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7152 (0x1bf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 3 06:03:16 2025 GMT
Not After : Sep 3 06:03:16 2027 GMT
Subject: CN=68b7da2b-a753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:31:0b:00:57:b4:e2:a2:4e:da:48:c2:3f:2c:
fd:f4:79:07:5f:9e:15:fc:c7:88:f8:0a:04:81:b1:
30:9b:e7:63:8c:83:1d:d9:01:e2:90:d4:1c:0e:eb:
b7:50:64:1b:41:01:5e:f4:aa:33:e0:17:22:57:c3:
fd:81:79:ae:dd:f1:d4:89:c2:81:f2:26:73:8e:23:
f0:35:25:38:1a:5e:a0:22:67:70:8e:d6:ad:c7:97:
93:4e:b9:73:44:fc:10:6b:b5:3d:26:25:ed:34:7e:
36:4f:20:00:02:94:96:a5:5a:61:04:6b:57:d2:fd:
28:63:a2:e4:b3:07:2b:45:49:37:40:3e:53:36:45:
bd:86:fc:fe:78:8f:d3:57:fd:65:c7:49:63:af:d8:
21:03:25:ca:24:31:bf:cb:16:67:23:30:d4:36:54:
40:44:98:f0:9f:0a:f8:30:fe:9e:8b:ae:27:dc:62:
a3:11:3d:d9:26:6e:60:c4:2f:69:62:c4:f7:c0:17:
ed:f1:9a:db:74:e3:c0:8a:23:10:87:37:97:4c:7a:
f3:cf:5d:3f:7f:df:2a:05:7d:3a:72:e7:f1:80:40:
a1:89:bf:01:a3:a6:9b:b4:28:c8:04:fc:bf:fd:c8:
36:67:42:e7:0d:ad:e4:7f:0c:3a:72:0e:17:67:1d:
1a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:24:2F:84:59:14:C2:47:A2:25:7B:B3:A4:EB:D7:18:75:6E:1F:C2
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B1C7518E888B11F09BFB6681DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.56.0/24
Signature Algorithm: sha256WithRSAEncryption
80:0e:da:55:6d:16:ee:40:90:a2:c5:ec:b4:dd:8a:25:1a:55:
ce:fe:d8:ae:d9:3f:17:4c:8c:5f:0e:11:0e:7e:d0:39:b7:b9:
20:7c:2d:d8:ea:15:8d:8e:2e:0b:db:29:5c:d5:16:18:0d:27:
7a:10:16:1e:c5:ed:85:9b:fb:cf:37:75:30:19:fc:96:35:ac:
4c:74:a9:bf:c9:11:d8:1d:b7:df:28:69:e9:a4:cf:4d:aa:11:
39:a6:30:5a:1e:41:2c:0a:85:b0:62:f1:31:14:c2:7e:26:52:
93:ad:5c:fc:76:bb:9f:7e:ba:af:15:56:c9:58:fe:9f:82:15:
d1:b6:b9:6d:d6:b7:07:07:bf:87:77:ca:7e:53:5d:be:4d:6d:
b7:08:ad:21:48:0e:f7:01:87:17:73:b5:b8:5b:bd:06:e8:01:
64:7d:7c:71:62:d3:5a:a7:59:0a:01:1a:f7:fb:d3:28:7e:da:
de:66:ff:77:7d:ff:88:e8:c3:63:9a:c6:18:c8:00:e7:cc:a4:
f8:a9:18:61:60:9b:e0:2b:c3:af:09:55:ee:a0:4e:ab:e5:69:
c5:5a:b4:9d:20:67:c8:b7:b6:90:d0:df:7b:9d:58:d4:46:03:
f2:0c:1d:29:16:39:d3:92:48:72:14:99:bd:ac:a5:c3:b0:a4:
c5:ab:c1:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:05:41 2025 by rpki-client