Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13D5E82A8A8211F090DD4EBFDAE4EC9C.roa
File: 13D5E82A8A8211F090DD4EBFDAE4EC9C.roa (raw, json)
Hash identifier: hqb/wKX+D/ab9eaD4VDXDCkspmgYFluL9hzv//I4aEo=
Subject key identifier: EC:6F:B4:8A:6C:0F:02:E7:6A:3E:20:D8:FE:B6:5A:0F:0B:2F:49:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019E44
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13D5E82A8A8211F090DD4EBFDAE4EC9C.roa
Signing time: Fri 05 Sep 2025 17:59:34 +0000
ROA not before: Fri 05 Sep 2025 17:59:28 +0000
ROA not after: Wed 29 Apr 2026 17:59:28 +0000
asID: 8796
IP address blocks: 154.86.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106052 (0x19e44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 5 17:59:28 2025 GMT
Not After : Apr 29 17:59:28 2026 GMT
Subject: CN=68bb2505-58be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3b:60:e8:bd:e1:f5:a2:3b:2e:cd:30:65:e6:
17:71:0e:fc:d5:b6:6d:54:15:a4:d2:68:59:79:47:
77:80:34:c5:2f:63:fe:c8:1f:2e:c7:38:34:40:00:
62:18:63:fd:dd:8a:59:59:5c:73:bc:f0:6d:c3:aa:
34:84:d3:48:53:7a:71:17:8a:a2:79:d8:c4:d2:2b:
68:7e:d3:47:2d:b8:6d:d9:61:ec:28:61:73:e5:77:
30:3f:3e:db:f9:bf:a7:3d:27:2b:e3:cf:79:2c:16:
f2:08:87:d7:4c:98:5d:a4:b1:2b:76:8d:15:29:28:
a8:b7:97:f5:fa:1e:47:ab:97:35:f4:4d:ec:1e:df:
6f:dc:06:d4:4d:9b:da:0e:09:55:87:56:1c:a9:72:
fe:d4:14:f2:15:ad:c4:bf:20:41:2f:82:c4:26:27:
22:c3:b9:4d:32:5f:bd:86:f3:1a:6c:f0:eb:89:3b:
19:7b:9e:5a:a8:dc:18:dd:10:ed:dd:af:1b:07:50:
d5:f5:29:59:d7:4f:6b:01:85:f4:a7:28:42:06:e1:
af:a4:37:93:40:3e:e5:75:ac:6f:7e:f7:84:15:16:
f3:52:25:ac:c5:86:19:b1:52:f6:98:e8:47:45:00:
c4:f1:6d:6a:71:2b:a9:16:9f:c2:89:aa:e3:3e:fa:
6a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:6F:B4:8A:6C:0F:02:E7:6A:3E:20:D8:FE:B6:5A:0F:0B:2F:49:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13D5E82A8A8211F090DD4EBFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.16.0/24
Signature Algorithm: sha256WithRSAEncryption
98:3e:5d:a4:2d:c5:59:5f:e4:77:fc:ad:80:80:4a:64:4f:38:
3f:8c:63:2d:f6:5d:a1:f5:0b:8e:2c:14:e7:11:79:f2:22:6e:
fc:13:b6:d9:73:c5:fa:84:a2:b0:b4:94:99:ac:6d:88:fa:b9:
3b:00:76:37:9f:4f:c7:cd:10:20:d1:3b:8f:ef:ed:f4:f0:68:
0e:68:bf:1b:4a:c4:89:73:b8:e5:fa:6c:e5:3f:f5:00:00:47:
f8:b7:4e:23:34:d7:10:e9:31:5f:b9:ba:7b:94:87:c8:38:83:
85:9d:5f:8a:a1:88:7a:dd:41:d3:c5:1b:2d:07:14:77:4e:38:
97:0d:ef:19:d4:b5:3c:8b:09:d4:a1:87:4b:03:28:db:52:bf:
92:3c:4d:70:b7:5c:76:be:b4:e8:35:2e:3a:0f:cc:95:57:f2:
10:58:83:fe:cf:4e:1c:a6:28:52:6e:1f:e0:d0:8e:2f:c9:8f:
82:20:b4:a5:e1:fc:8c:68:b5:f2:8c:34:53:60:47:36:bb:a3:
cc:f6:4f:26:28:00:2f:b4:ab:0d:f4:bf:e8:52:12:92:df:95:
f0:86:88:d1:3c:92:d9:ef:ff:a1:1f:4e:9e:ad:fa:5d:25:4f:
29:b5:fd:7d:df:70:b7:dc:8a:f3:37:02:ac:d9:9d:1e:e0:08:
36:86:aa:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:10:33 2025 by rpki-client