Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E2F85CAA41F11F0A9D0F5F1DAE4EC9C.roa
File: 8E2F85CAA41F11F0A9D0F5F1DAE4EC9C.roa (raw, json)
Hash identifier: LkdWQGwYofONgF9Tuuh025el4PjUjzhBawjfUtRNLRg=
Subject key identifier: 1C:D4:E9:E7:60:24:DE:65:23:09:35:5F:3B:76:FB:78:91:17:7C:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A2AD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E2F85CAA41F11F0A9D0F5F1DAE4EC9C.roa
Signing time: Wed 08 Oct 2025 08:19:49 +0000
ROA not before: Wed 08 Oct 2025 08:19:43 +0000
ROA not after: Mon 10 Nov 2025 08:19:43 +0000
asID: 203020
IP address blocks: 154.217.30.0/24 maxlen: 24
154.217.31.0/24 maxlen: 24
154.217.32.0/23 maxlen: 24
154.217.34.0/23 maxlen: 24
154.217.36.0/24 maxlen: 24
154.217.37.0/24 maxlen: 24
154.217.38.0/24 maxlen: 24
154.217.39.0/24 maxlen: 24
154.217.40.0/24 maxlen: 24
154.217.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107181 (0x1a2ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 8 08:19:43 2025 GMT
Not After : Nov 10 08:19:43 2025 GMT
Subject: CN=68e61ea5-18a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cd:d4:d1:68:7a:38:43:2a:73:b2:a1:8c:c5:
11:ef:78:9e:2a:26:4b:3a:a3:79:4f:63:e5:16:15:
2c:ac:87:f1:5c:03:33:53:1c:02:88:90:41:8d:e8:
d1:21:ac:5e:e9:05:bd:84:04:1c:12:42:5a:4e:88:
88:7b:15:03:92:7a:8a:07:b9:79:ec:a0:19:52:e8:
98:c5:48:cb:09:a8:7a:1b:b0:e3:b3:53:24:1c:ba:
db:6e:11:c2:63:3a:b0:d8:32:4f:12:94:86:9e:e4:
3b:24:cb:71:be:00:41:e4:4e:ad:00:70:d6:29:48:
9e:23:3e:59:47:bf:03:ec:67:e8:9a:59:15:7d:cf:
7e:e3:54:e8:d8:84:c6:85:1c:25:4a:3d:6b:bd:07:
db:a3:90:c1:fa:14:25:9c:cf:e9:48:e0:c1:4e:a5:
62:3d:a4:f9:a4:92:7b:bf:84:ee:58:d3:42:f8:ee:
11:31:96:dd:f9:45:63:6d:4b:31:c4:6f:71:3b:66:
88:ed:6f:40:5f:0f:18:42:7f:44:74:8f:66:b6:b9:
d2:9d:c9:45:e3:54:5b:ad:1b:98:f8:72:8f:ec:46:
50:d4:fd:72:a0:a7:a2:a1:3b:0b:5b:39:ee:4e:bf:
cc:a6:0c:c0:ab:c3:09:52:1e:30:75:84:80:7a:69:
35:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D4:E9:E7:60:24:DE:65:23:09:35:5F:3B:76:FB:78:91:17:7C:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E2F85CAA41F11F0A9D0F5F1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.30.0-154.217.41.255
Signature Algorithm: sha256WithRSAEncryption
0f:37:67:5a:d3:70:9a:0c:08:c6:85:62:40:06:5c:7e:09:88:
2b:19:5d:3d:d0:9f:c6:e2:bf:50:73:89:3d:9a:b5:2a:bc:52:
bf:6c:47:c3:12:bf:85:56:c9:b2:ce:87:42:28:43:24:19:7c:
74:2b:50:63:be:c0:c1:cc:93:86:a1:bd:76:80:04:a8:f1:28:
43:25:09:c2:6f:46:fc:2a:8a:7b:33:26:b4:55:9d:e5:39:a8:
2b:f5:ff:1d:b6:4e:8f:97:69:bb:b6:e4:aa:00:8b:40:ab:22:
c5:7e:d7:e8:30:11:64:82:8a:1a:32:f1:bc:a8:4c:89:9d:96:
28:0b:37:62:3f:94:93:43:cd:bc:44:21:9c:87:04:e5:bc:2f:
0a:df:8e:a3:9f:fd:ec:52:c0:98:6b:45:52:b6:2e:81:db:aa:
8b:30:fc:87:2d:c6:df:40:71:94:f0:dd:cb:39:fc:6e:b6:61:
c5:44:70:7d:b6:14:9f:1e:e7:66:80:1e:0c:79:0c:b1:b2:62:
9f:06:05:d5:4d:0b:3b:d3:2b:ad:38:62:bb:73:7a:a8:86:98:
d5:54:a2:c4:d8:cc:b1:0b:92:ef:08:f9:62:ab:8d:18:95:e6:
6f:94:0f:4f:ae:93:70:88:f7:4d:3a:fe:8e:86:bb:96:20:f5:
b2:27:d2:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:54:57 2025 by rpki-client