Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B5FCDB8AA50411F0B48EF5BDDAE4EC9C.roa
File: B5FCDB8AA50411F0B48EF5BDDAE4EC9C.roa (raw, json)
Hash identifier: ZMid+ARsIinzviFu97DdaJn9MmvM2m9uoowZgDLGXYY=
Subject key identifier: 56:C0:C2:BD:58:24:EF:E5:E8:EB:E5:7B:6A:BD:FC:E9:33:63:34:83
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1C43
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B5FCDB8AA50411F0B48EF5BDDAE4EC9C.roa
Signing time: Thu 09 Oct 2025 11:40:10 +0000
ROA not before: Thu 09 Oct 2025 11:40:05 +0000
ROA not after: Sat 09 Oct 2027 11:40:05 +0000
asID: 25198
IP address blocks: 154.16.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7235 (0x1c43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 9 11:40:05 2025 GMT
Not After : Oct 9 11:40:05 2027 GMT
Subject: CN=68e79f1a-e8ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:40:43:ae:da:b8:6f:4f:fe:f8:ce:c8:b7:21:
e2:55:73:fa:54:5e:f1:63:a4:73:c3:65:11:18:8f:
77:18:31:25:6b:fa:68:d8:7b:2c:81:7f:ac:69:2d:
8e:fc:a9:70:d7:56:35:b8:3f:e7:b4:77:73:a9:4d:
3a:e7:ae:3b:d0:68:c8:ae:f0:ce:76:39:90:0c:da:
2e:77:6d:89:38:c1:2f:eb:22:15:18:ac:15:06:b7:
e1:bb:1f:67:67:83:40:0d:a1:12:fd:2f:d5:6f:4f:
22:31:d3:cd:ac:a4:f8:64:10:eb:3e:ac:cf:4f:31:
2f:c4:f4:89:3a:b4:73:15:ef:fd:fb:e6:08:f3:9e:
46:8e:b3:21:94:82:9e:fe:39:e7:53:20:df:35:58:
50:ea:e7:fa:c3:2a:d4:a9:64:00:16:73:91:88:f8:
af:6b:de:08:6f:b1:d0:ad:3b:69:13:aa:fc:2f:7d:
6a:75:0f:1c:69:39:e9:28:35:04:88:ad:d4:7c:cc:
70:23:28:1c:a7:e6:fc:e8:ae:11:5d:d8:28:19:b9:
0c:b2:4d:64:35:77:41:62:04:84:a8:fe:3b:b1:0f:
3c:4b:d8:2c:70:fd:6c:9d:be:c6:51:11:77:0d:d2:
42:c3:73:39:cb:aa:71:64:f8:ce:8d:a6:1b:2a:e7:
fc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:C0:C2:BD:58:24:EF:E5:E8:EB:E5:7B:6A:BD:FC:E9:33:63:34:83
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B5FCDB8AA50411F0B48EF5BDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.186.0/24
Signature Algorithm: sha256WithRSAEncryption
92:09:71:d2:b6:8c:24:3a:d3:b9:ac:49:ac:52:e3:35:f6:dc:
15:9a:aa:74:44:e8:bc:e4:00:74:cf:72:78:5b:23:ab:ea:14:
ac:20:14:53:4d:a7:1a:30:f4:c1:56:9b:84:43:d1:91:59:ea:
b7:a7:0c:c9:c7:00:0e:e6:d5:5c:9b:9f:c3:9c:50:d2:07:2f:
ea:af:66:04:26:29:eb:3f:ae:ca:2c:b2:c6:44:42:7e:02:98:
0d:c5:d6:cd:53:be:e2:7e:89:6c:2e:2b:c1:d5:e1:7f:32:07:
2b:1a:ef:34:5a:44:01:42:db:2a:2f:c7:5e:bd:02:14:16:80:
1b:58:7f:21:52:e7:18:dd:c6:af:4c:98:84:16:bb:10:9d:9f:
63:20:0a:8a:b6:35:41:1b:4f:65:1e:63:7f:4d:3b:7e:46:3b:
1e:f9:1b:34:e4:06:4d:c5:63:78:37:49:b3:46:1e:f8:fb:ef:
37:c2:34:d5:59:72:9c:11:43:5c:8d:e8:0f:71:0f:ec:43:07:
5e:69:e5:b3:30:81:ef:ff:bb:58:81:fe:b9:d7:f0:7e:4d:0f:
da:90:42:e5:1b:d5:b7:30:48:01:7d:b8:92:f2:9d:cf:77:a6:
a1:9b:1a:77:6e:71:fa:a0:4c:c5:fb:dd:f3:27:cd:40:66:1f:
78:db:ca:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:07:05 2025 by rpki-client