Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/661D082E7C1911F0A34882C0DAE4EC9C.roa
File: 661D082E7C1911F0A34882C0DAE4EC9C.roa (raw, json)
Hash identifier: cp/j4D8xPw/LDxHnXU3Vkg7F9yUa3JukiYY8dLn/HYo=
Subject key identifier: C2:3C:E9:D3:B9:F9:B9:71:98:A1:05:03:52:D1:45:20:0F:E3:6E:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01920B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/661D082E7C1911F0A34882C0DAE4EC9C.roa
Signing time: Mon 18 Aug 2025 09:54:58 +0000
ROA not before: Mon 18 Aug 2025 09:54:53 +0000
ROA not after: Sun 07 Sep 2025 09:54:53 +0000
asID: 140869
IP address blocks: 154.81.32.0/24 maxlen: 24
154.81.33.0/24 maxlen: 24
154.81.34.0/24 maxlen: 24
154.81.35.0/24 maxlen: 24
154.81.36.0/24 maxlen: 24
154.81.37.0/24 maxlen: 24
154.81.38.0/24 maxlen: 24
154.81.39.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102923 (0x1920b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 18 09:54:53 2025 GMT
Not After : Sep 7 09:54:53 2025 GMT
Subject: CN=68a2f872-ea12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bb:ff:f9:8e:fd:60:fc:26:cb:a6:7f:b5:4b:
f6:4c:a7:82:50:b4:ce:02:5e:b2:c1:03:dc:ff:fe:
37:ad:f8:cb:66:33:c8:f2:88:c2:58:f2:16:d3:90:
50:9e:d5:a4:39:06:02:d0:1d:5c:0f:58:32:cb:02:
68:d0:98:93:16:7f:a5:0a:24:fe:39:5e:87:c8:45:
3e:b5:f2:4b:ca:e6:44:04:10:ec:27:f8:23:e9:8b:
da:99:6d:49:04:ee:a8:db:e6:17:6f:76:09:9c:ac:
f4:e6:86:6c:45:92:57:b2:d0:15:4c:43:8f:1d:cd:
d9:51:64:71:35:c4:d9:4e:6d:05:bd:99:32:32:c1:
ac:d7:4c:19:e1:4b:4b:27:00:04:70:fe:5f:b8:3b:
16:59:50:db:9c:26:0b:28:af:2b:d6:a5:1a:f4:a0:
2f:cf:e3:0e:5a:8d:d6:45:2d:3d:a9:49:3c:a9:80:
fa:14:c3:75:f6:1a:70:86:db:55:35:42:c8:96:ec:
a2:15:62:eb:4a:58:d9:46:d1:e1:23:ed:49:6d:b2:
85:b2:fd:92:7a:d5:ec:ed:9b:d5:ae:39:6f:fe:26:
34:52:05:5c:1e:ed:ce:75:96:cc:10:2d:82:0c:14:
00:5c:1b:7a:31:0c:c2:0e:b8:eb:4c:3f:7e:4b:dc:
7c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:3C:E9:D3:B9:F9:B9:71:98:A1:05:03:52:D1:45:20:0F:E3:6E:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/661D082E7C1911F0A34882C0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.32.0/21
Signature Algorithm: sha256WithRSAEncryption
70:d4:51:0d:54:81:af:a9:5b:ec:0f:38:24:d3:32:6b:b5:a2:
0b:63:cd:d4:2a:87:ee:07:8a:9d:ec:78:bc:3f:de:73:a2:4c:
c1:61:7a:2b:c8:22:06:82:8c:b9:92:34:b6:2d:16:1e:4a:20:
a9:c9:b3:c4:9f:cb:87:d6:e4:57:4e:cc:45:bd:9c:12:d7:da:
5b:69:68:13:ae:61:48:bf:cc:81:7b:57:14:7c:a0:8c:d7:33:
74:bf:8c:42:c9:90:17:bc:72:23:85:a2:c5:14:21:17:8b:76:
d7:35:0f:8f:3f:98:6e:ad:ba:18:f8:89:f1:6f:c7:33:0e:76:
45:b9:b6:10:f5:55:c1:b9:0b:4a:7e:47:cb:93:9b:5e:76:08:
51:f4:42:28:91:eb:9d:e9:f8:86:c5:20:41:a9:65:de:2f:0b:
91:2d:01:0a:35:94:d6:d9:dc:fb:9b:e5:4e:4c:04:ff:c2:d2:
5e:97:c1:e0:b7:3b:b9:1d:8a:0c:31:25:32:36:8c:e4:15:12:
2b:ff:18:6a:64:e8:bd:51:72:50:2f:68:e6:a2:20:c2:f2:1e:
c5:9b:5c:9c:e4:16:1b:d6:c9:f1:58:97:39:6a:02:3f:2b:51:
b1:24:33:96:9f:c3:08:61:f4:06:c4:a9:be:df:fc:e6:7e:90:
f5:04:9b:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:28:37 2025 by rpki-client