Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B145F787E6B11F09D7E59EFDAE4EC9C.roa
File: 5B145F787E6B11F09D7E59EFDAE4EC9C.roa (raw, json)
Hash identifier: tNO/Hei5WHRkFiYbT7qcMXx8HcYYIyEJ94RDlWmMtaM=
Subject key identifier: A4:95:51:02:45:1C:60:56:64:84:47:F1:79:4D:C0:1A:B7:79:88:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0192F4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B145F787E6B11F09D7E59EFDAE4EC9C.roa
Signing time: Thu 21 Aug 2025 08:46:41 +0000
ROA not before: Thu 21 Aug 2025 08:46:36 +0000
ROA not after: Thu 18 Sep 2025 08:46:36 +0000
asID: 14315
IP address blocks: 154.82.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103156 (0x192f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 21 08:46:36 2025 GMT
Not After : Sep 18 08:46:36 2025 GMT
Subject: CN=68a6dcf1-1caa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6b:f8:b1:70:9c:f9:f7:ab:e3:2b:3c:53:2b:
4f:10:80:33:f3:84:81:aa:11:11:fa:3e:67:d3:b0:
ce:ee:73:72:43:fb:51:8d:76:2a:39:9b:28:fc:5c:
12:c8:13:83:f4:19:34:9a:4b:75:e1:d2:66:e1:28:
00:49:5c:b6:89:bf:27:5c:66:0c:3f:76:86:2b:b7:
bc:72:48:23:bc:31:6e:2f:66:04:11:33:ef:6a:9e:
8f:aa:a6:89:56:5d:ca:a8:ea:12:02:19:a7:f4:bd:
9c:3f:67:60:c9:59:72:83:78:76:ea:d2:4d:7a:de:
a7:1c:4f:a0:53:75:85:9e:c7:e2:8d:0b:be:36:84:
88:1e:df:c7:d5:e8:f0:81:ab:51:33:58:f5:8e:de:
98:1a:54:69:16:8f:8e:e2:15:5f:01:93:80:54:4e:
0c:8a:1a:17:60:b1:80:d9:8b:14:78:c0:a4:b8:d0:
a8:32:51:f8:3d:a7:d7:2d:6c:ec:90:00:39:8f:41:
ef:f5:cb:a1:0a:8c:aa:9d:58:9a:eb:48:b6:54:59:
47:76:5a:21:e9:da:99:7c:10:34:eb:7c:80:be:d7:
b6:de:da:b7:3a:1e:4b:72:14:a7:28:ae:c4:a1:27:
2e:67:98:67:83:7c:db:30:5d:a1:43:1b:9a:a2:83:
33:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:95:51:02:45:1C:60:56:64:84:47:F1:79:4D:C0:1A:B7:79:88:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B145F787E6B11F09D7E59EFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.19.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:ca:60:44:42:bc:b4:fa:84:02:f7:e0:06:77:86:c7:be:8e:
6e:04:58:a0:c5:00:b5:3f:3f:e3:57:3b:10:fa:31:ae:73:e1:
aa:87:07:b3:8b:74:81:11:31:cd:b7:9c:75:05:34:98:e6:81:
e5:45:09:b1:fe:44:1b:12:de:57:21:6d:02:b8:29:6a:7e:54:
74:f0:8f:8e:92:eb:03:08:6e:06:4e:24:bf:98:07:dd:7f:8a:
78:18:ad:30:b9:aa:cc:d3:12:ee:34:f4:76:28:80:92:f4:23:
d6:79:47:60:55:86:7c:bd:d1:b8:43:c9:a7:b5:2e:d1:c3:f9:
30:44:ca:15:18:04:24:95:fd:65:2d:f7:c6:c0:bd:25:2f:40:
ad:68:77:a6:33:50:94:fb:8e:c4:8d:36:48:18:86:10:1a:93:
81:d2:f4:be:5b:ee:82:93:0f:34:11:b1:44:05:7e:4e:57:2c:
78:1a:58:b1:6f:12:5a:96:e7:22:49:80:26:62:8b:a2:8e:4a:
3d:b1:21:59:c9:46:4a:ae:b2:f0:c3:c5:07:46:bd:c7:5d:b2:
b9:6f:61:43:7b:59:88:9b:b0:9c:cd:b2:fa:25:d5:49:8f:d7:
b0:f8:35:ed:d8:b4:0e:ab:2b:d9:78:54:79:20:91:0e:24:8d:
22:8b:fd:e0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAZL0MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODIxMDg0NjM2WhcNMjUwOTE4MDg0NjM2WjAYMRYw
FAYDVQQDEw02OGE2ZGNmMS0xY2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxmv4sXCc+fer4ys8UytPEIAz84SBqhER+j5n07DO7nNyQ/tRjXYqOZso
/FwSyBOD9Bk0mkt14dJm4SgASVy2ib8nXGYMP3aGK7e8ckgjvDFuL2YEETPvap6P
qqaJVl3KqOoSAhmn9L2cP2dgyVlyg3h26tJNet6nHE+gU3WFnsfijQu+NoSIHt/H
1ejwgatRM1j1jt6YGlRpFo+O4hVfAZOAVE4MihoXYLGA2YsUeMCkuNCoMlH4PafX
LWzskAA5j0Hv9cuhCoyqnVia60i2VFlHdloh6dqZfBA063yAvte23tq3Oh5LchSn
KK7EoScuZ5hng3zbMF2hQxuaooMzNwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKSV
UQJFHGBWZIRH8XlNwBq3eYhNMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81QjE0NUY3ODdFNkIxMUYwOUQ3RTU5RUZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlITMA0GCSqGSIb3DQEB
CwUAA4IBAQBeymBEQry0+oQC9+AGd4bHvo5uBFigxQC1Pz/jVzsQ+jGuc+Gqhwez
i3SBETHNt5x1BTSY5oHlRQmx/kQbEt5XIW0CuClqflR08I+OkusDCG4GTiS/mAfd
f4p4GK0wuarM0xLuNPR2KICS9CPWeUdgVYZ8vdG4Q8mntS7Rw/kwRMoVGAQklf1l
LffGwL0lL0CtaHemM1CU+47EjTZIGIYQGpOB0vS+W+6Ckw80EbFEBX5OVyx4Glix
bxJaluciSYAmYouijko9sSFZyUZKrrLww8UHRr3HXbK5b2FDe1mIm7CczbL6JdVJ
j9ew+DXt2LQOqyvZeFR5IJEOJI0ii/3g
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:53:23 2025 by rpki-client