Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90931A9A774F11F0B12B0787DAE4EC9C.roa
File: 90931A9A774F11F0B12B0787DAE4EC9C.roa (raw, json)
Hash identifier: gBXyzy+enoFpjU+u9NG7+y9Y4XKR4NrtKxQv+4thRhI=
Subject key identifier: 2B:F0:BA:B6:3C:C2:E7:DC:C1:EA:12:E5:B4:D3:65:20:7B:FB:D5:83
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019179
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90931A9A774F11F0B12B0787DAE4EC9C.roa
Signing time: Tue 12 Aug 2025 07:40:06 +0000
ROA not before: Tue 12 Aug 2025 07:40:01 +0000
ROA not after: Mon 03 Nov 2025 07:40:01 +0000
asID: 149440
IP address blocks: 154.81.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102777 (0x19179)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 12 07:40:01 2025 GMT
Not After : Nov 3 07:40:01 2025 GMT
Subject: CN=689aefd6-dd70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ac:79:e8:b8:fb:9f:28:57:a2:b0:4e:6d:df:
7c:9f:6f:3a:9c:6c:a5:93:f2:03:b3:a5:b7:b4:3e:
2b:b9:5a:0c:1d:9a:c8:37:12:b1:6f:3e:9c:b1:07:
93:12:bf:29:4a:f4:e2:f4:51:d6:63:85:8b:2a:fb:
ff:cb:9c:9b:60:3f:95:89:42:3d:10:e0:54:86:ed:
b9:5e:a4:28:bb:9b:70:6c:59:3d:b5:f7:61:c7:5f:
85:c3:06:f7:4a:ab:64:aa:2a:f4:e5:04:2b:e0:62:
f1:69:b2:a8:47:7e:fe:8a:6f:17:7c:3b:9c:8e:68:
93:01:c7:93:db:8f:13:82:16:58:f4:8c:c6:8b:02:
38:2a:31:50:c7:b0:22:c1:88:eb:48:dd:67:86:d4:
02:96:cc:e8:a4:28:b1:69:a2:59:05:79:c6:71:28:
7b:e3:c9:42:80:bc:d8:83:7e:51:94:57:09:83:c0:
d2:2e:19:59:9b:16:cd:47:04:f4:94:3e:4c:4e:e6:
00:6d:94:9c:09:16:79:08:6c:7f:e2:0d:e3:f3:b8:
39:7b:13:dd:27:12:f1:25:95:b7:1d:5a:a4:b8:3a:
46:15:31:fb:1a:a3:1a:9f:71:3f:c9:2e:2e:dc:14:
6a:76:47:15:e1:1c:03:3a:b0:bc:2d:8c:4a:26:f2:
60:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F0:BA:B6:3C:C2:E7:DC:C1:EA:12:E5:B4:D3:65:20:7B:FB:D5:83
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/90931A9A774F11F0B12B0787DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.220.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:9b:dd:3c:b8:01:4a:6a:3e:6c:0c:96:1a:48:44:4a:db:87:
d0:6d:cd:c0:28:86:0b:1f:be:20:a1:b6:98:1b:2c:50:28:6d:
0e:15:12:f5:45:e3:5a:4f:91:15:ff:0e:6d:5a:8b:f0:d0:56:
ed:1e:81:bb:a4:7a:18:a6:cd:37:2f:df:89:c6:1a:fb:5c:65:
90:dd:ef:ca:71:06:e0:6a:35:a3:e7:50:50:67:09:27:9f:f5:
4d:7e:d7:ac:e4:9a:be:87:d7:08:00:09:89:5f:d1:da:2e:04:
a7:e6:c8:51:f5:32:44:b6:29:c9:f7:0e:b9:b7:ff:48:7b:75:
6e:33:b0:1c:a1:49:cd:3d:ee:73:f2:07:8f:b2:1a:9a:dc:07:
3b:75:2d:e5:be:1d:c6:bc:22:c2:70:43:79:41:92:f1:4a:0a:
73:74:00:f7:58:9c:c7:b2:70:96:33:b0:a2:ed:47:bc:93:b1:
f2:08:26:e0:5f:37:91:ee:3b:c1:7a:71:c6:e0:70:00:d4:72:
f8:1c:ba:c2:ba:02:f6:c7:a9:15:30:be:bf:d6:ed:18:31:af:
80:a9:b7:3f:d2:a2:57:ae:b5:72:fd:1b:c7:fb:ea:6a:11:b8:
2a:19:e6:98:05:50:54:03:30:95:08:4f:56:1e:d8:5b:59:6e:
04:0c:29:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:21:57 2025 by rpki-client