Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D926E0078FE11F0BCCB717CDAE4EC9C.roa
File: 1D926E0078FE11F0BCCB717CDAE4EC9C.roa (raw, json)
Hash identifier: qsT4U2qDXdLPpuX1dha5yJFfOBDJ2AaUhsQXMT9vZm0=
Subject key identifier: EC:E9:08:EC:DE:E2:66:31:F8:07:21:1B:87:FC:9C:90:A0:08:8A:23
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0191A4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D926E0078FE11F0BCCB717CDAE4EC9C.roa
Signing time: Thu 14 Aug 2025 11:02:06 +0000
ROA not before: Thu 14 Aug 2025 11:02:02 +0000
ROA not after: Sun 07 Sep 2025 11:02:02 +0000
asID: 397630
IP address blocks: 154.83.44.0/22 maxlen: 24
154.84.132.0/24 maxlen: 24
154.84.134.0/24 maxlen: 24
154.201.32.0/24 maxlen: 24
154.201.35.0/24 maxlen: 24
154.202.64.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102820 (0x191a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 14 11:02:02 2025 GMT
Not After : Sep 7 11:02:02 2025 GMT
Subject: CN=689dc22e-e296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:f4:7e:67:c9:08:f6:fe:74:3e:38:77:2f:43:
12:a0:b5:f5:de:70:35:96:13:45:b5:a9:77:bd:7c:
fd:04:aa:48:4b:d8:b8:fe:8b:f5:98:ee:40:b9:3a:
a9:8c:f7:f1:49:83:4e:b5:55:46:b0:9a:d4:3a:e2:
3f:76:bc:0e:5a:e0:6b:ad:68:4e:6d:96:7d:7d:a2:
93:df:2e:f3:33:1b:b4:80:87:fb:d6:ed:e2:19:e9:
ca:ed:20:e8:34:6a:e3:a9:0f:54:34:9c:68:08:a0:
94:49:df:b5:88:44:36:37:1d:59:59:c1:75:e7:dd:
e2:97:8d:23:ae:01:a1:f3:dc:9b:ff:6c:5e:0e:32:
08:88:a3:12:42:31:d6:a4:3b:aa:09:14:75:84:79:
d6:bf:7d:d9:87:f6:be:78:07:6e:ab:60:1b:27:11:
c1:31:46:b5:cb:53:6f:94:cb:0e:4a:e0:95:6b:92:
c0:05:be:f2:c2:93:d6:16:03:c7:2b:0b:3f:b0:8d:
92:1e:df:a5:3e:e1:9d:2d:a0:d8:80:87:6a:4f:b5:
96:3e:24:26:54:1f:41:69:37:94:8a:1a:ca:6e:3d:
d3:21:c9:a0:5b:82:f5:4b:7f:86:8f:a7:9f:22:d7:
ef:77:af:c3:77:bc:ae:ce:1d:fb:51:13:4b:21:e9:
37:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E9:08:EC:DE:E2:66:31:F8:07:21:1B:87:FC:9C:90:A0:08:8A:23
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D926E0078FE11F0BCCB717CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.44.0/22
154.84.132.0/24
154.84.134.0/24
154.201.32.0/24
154.201.35.0/24
154.202.64.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:80:23:cb:00:54:c0:96:a1:77:4b:2d:61:bf:aa:78:44:9a:
6a:3f:16:87:72:a7:49:15:9e:6f:27:dd:6f:73:c2:8b:3d:a8:
5f:02:39:a0:e1:68:81:31:a3:0a:8d:ef:74:1c:6d:7b:42:3b:
fa:91:0a:4d:89:ba:b6:bd:dd:04:75:be:b3:b6:3f:86:18:6e:
d0:82:0a:28:d1:82:5e:fe:69:14:10:4b:da:17:c2:77:1f:b4:
9d:e5:72:14:32:d5:62:a8:b9:80:64:2e:0a:fa:a6:5e:a7:34:
9c:a6:86:a7:1e:f0:d2:38:92:55:92:26:a6:b5:00:54:25:b2:
4e:e7:11:62:98:63:61:be:a1:e8:11:67:d3:97:2f:90:be:df:
ee:f8:83:12:81:ca:e2:cd:ac:97:d9:0a:1a:fa:1d:24:5c:2b:
13:0d:e5:53:89:ca:6f:2d:79:f2:a3:0e:47:02:e8:e8:72:c4:
52:f1:24:37:3a:84:15:79:fb:5c:56:e0:2d:6f:83:12:5a:da:
24:29:93:ca:fe:cd:e7:46:db:f5:cb:0a:83:d6:8d:51:9a:2b:
ea:61:be:79:62:fa:cd:db:e7:e6:d8:98:71:3c:6d:8d:aa:d4:
39:8b:01:72:85:f6:f8:1c:bf:96:86:9e:6c:8c:98:63:90:e9:
80:50:b1:ba
-----BEGIN CERTIFICATE-----
MIIFojCCBIqgAwIBAgIDAZGkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODE0MTEwMjAyWhcNMjUwOTA3MTEwMjAyWjAYMRYw
FAYDVQQDEw02ODlkYzIyZS1lMjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7vR+Z8kI9v50Pjh3L0MSoLX13nA1lhNFtal3vXz9BKpIS9i4/ov1mO5A
uTqpjPfxSYNOtVVGsJrUOuI/drwOWuBrrWhObZZ9faKT3y7zMxu0gIf71u3iGenK
7SDoNGrjqQ9UNJxoCKCUSd+1iEQ2Nx1ZWcF1593il40jrgGh89yb/2xeDjIIiKMS
QjHWpDuqCRR1hHnWv33Zh/a+eAduq2AbJxHBMUa1y1NvlMsOSuCVa5LABb7ywpPW
FgPHKws/sI2SHt+lPuGdLaDYgIdqT7WWPiQmVB9BaTeUihrKbj3TIcmgW4L1S3+G
j6efItfvd6/Dd7yuzh37URNLIek3BQIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFOzp
COze4mYx+AchG4f8nJCgCIojMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRDkyNkUwMDc4RkUxMUYwQkNDQjcxN0NEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQCmlMsAwQAmlSEAwQAmlSG
AwQAmskgAwQAmskjAwQAmspAMA0GCSqGSIb3DQEBCwUAA4IBAQCLgCPLAFTAlqF3
Sy1hv6p4RJpqPxaHcqdJFZ5vJ91vc8KLPahfAjmg4WiBMaMKje90HG17Qjv6kQpN
ibq2vd0Edb6ztj+GGG7Qggoo0YJe/mkUEEvaF8J3H7Sd5XIUMtViqLmAZC4K+qZe
pzScpoanHvDSOJJVkiamtQBUJbJO5xFimGNhvqHoEWfTly+Qvt/u+IMSgcrizayX
2Qoa+h0kXCsTDeVTicpvLXnyow5HAujocsRS8SQ3OoQVeftcVuAtb4MSWtokKZPK
/s3nRtv1ywqD1o1RmivqYb55YvrN2+fm2JhxPG2NqtQ5iwFyhfb4HL+Whp5sjJhj
kOmAULG6
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:42:33 2025 by rpki-client