Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94D2B5764E9011F0B7146ED7DAE4EC9C.roa
File: 94D2B5764E9011F0B7146ED7DAE4EC9C.roa (raw, json)
Hash identifier: Iz+LHr3cXN5sOQidosP7NK5BmeyIm0dtzgA1gTN6sO8=
Subject key identifier: FB:77:1A:1A:B4:FC:CE:D4:90:39:7A:9E:07:D8:77:FF:C2:94:86:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0187B6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94D2B5764E9011F0B7146ED7DAE4EC9C.roa
Signing time: Sat 21 Jun 2025 11:12:13 +0000
ROA not before: Sat 21 Jun 2025 11:12:09 +0000
ROA not after: Sun 27 Jul 2025 11:12:09 +0000
asID: 401701
IP address blocks: 154.219.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Jul 2025 10:08:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100278 (0x187b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 21 11:12:09 2025 GMT
Not After : Jul 27 11:12:09 2025 GMT
Subject: CN=6856938d-f9c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:65:65:2f:92:3b:54:be:8a:a8:bd:43:ef:01:
12:17:18:01:dd:70:b4:60:2f:c4:73:75:6c:84:63:
68:fd:ee:d5:48:41:84:38:f6:53:54:c7:13:fb:34:
9c:fe:22:dd:51:88:1d:ab:93:b5:e4:e5:27:57:ee:
c3:54:f1:48:b0:c1:a3:ec:11:62:98:88:0d:7a:f7:
ae:93:22:64:32:6a:a2:08:5d:af:e9:23:7a:f2:7f:
72:54:fe:02:1f:00:37:54:44:65:1a:65:5d:df:3f:
2f:67:04:4e:9a:bb:2c:1c:f2:75:ea:86:c2:a2:2f:
5a:5a:a3:98:d8:91:27:e9:72:6f:a5:01:c6:79:d9:
aa:38:57:90:92:3a:db:e6:e5:68:5f:5a:c3:ea:75:
e2:9e:4b:c4:ad:7a:b5:9b:42:d3:fe:bd:7b:e0:fe:
d2:e9:c1:11:06:31:fe:47:a1:56:25:60:16:2a:53:
a9:af:89:07:eb:21:61:f5:c9:0c:99:0a:a4:04:cf:
d8:2e:46:d3:13:d7:fb:c1:ff:d1:62:3d:f1:89:e3:
63:34:a3:60:65:87:a4:e7:76:51:e8:e8:be:be:93:
67:cb:0f:11:8e:34:50:03:a3:1a:fe:ef:1c:ae:a4:
7b:67:a8:e5:c5:d5:22:a4:6c:eb:29:09:3c:a9:c3:
27:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:77:1A:1A:B4:FC:CE:D4:90:39:7A:9E:07:D8:77:FF:C2:94:86:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94D2B5764E9011F0B7146ED7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.96.0/19
Signature Algorithm: sha256WithRSAEncryption
c9:21:b4:85:a3:b0:a9:37:1e:b9:0f:7b:2e:92:b5:53:db:4a:
8f:44:11:a3:83:05:5e:a4:d7:bc:15:9f:0b:6b:68:6e:91:f9:
d3:89:3d:6b:73:73:fa:50:f9:6f:7e:5e:0e:48:a5:02:cf:f4:
5f:dd:0a:96:cb:89:9d:9c:29:61:c9:eb:6f:88:92:bd:d6:b4:
eb:63:1a:be:b7:39:df:31:2e:05:18:ef:8d:74:39:0e:d1:05:
90:9a:be:4f:6b:b6:3e:b2:c9:b9:71:1b:53:be:1d:38:b0:b8:
01:4a:a9:74:be:f7:d9:14:63:5c:bc:d4:27:1c:11:5e:ea:3a:
b3:6c:d3:1b:8b:cb:51:22:34:26:bc:c8:33:c1:61:65:98:20:
b6:28:7b:e9:ff:e7:91:8a:20:9b:d9:74:50:85:78:0c:16:67:
5d:35:33:8a:b8:a2:f6:ce:f4:61:22:c8:c0:23:4c:28:18:83:
a7:f4:c3:35:aa:ac:ee:2f:42:ad:b9:ae:fd:b5:5e:b4:55:89:
ad:80:68:9d:46:72:fd:df:9e:35:ff:e8:80:c2:76:d4:c0:d3:
32:24:33:96:b7:52:39:bc:0a:d7:2d:f1:19:e7:65:98:9c:5f:
cb:18:d4:7a:3d:c6:88:a4:4e:df:90:fd:a4:96:8a:48:3b:a4:
0c:6a:d8:0c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYe2MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNjIxMTExMjA5WhcNMjUwNzI3MTExMjA5WjAYMRYw
FAYDVQQDEw02ODU2OTM4ZC1mOWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA02VlL5I7VL6KqL1D7wESFxgB3XC0YC/Ec3VshGNo/e7VSEGEOPZTVMcT
+zSc/iLdUYgdq5O15OUnV+7DVPFIsMGj7BFimIgNeveukyJkMmqiCF2v6SN68n9y
VP4CHwA3VERlGmVd3z8vZwROmrssHPJ16obCoi9aWqOY2JEn6XJvpQHGedmqOFeQ
kjrb5uVoX1rD6nXinkvErXq1m0LT/r174P7S6cERBjH+R6FWJWAWKlOpr4kH6yFh
9ckMmQqkBM/YLkbTE9f7wf/RYj3xieNjNKNgZYek53ZR6Oi+vpNnyw8RjjRQA6Ma
/u8crqR7Z6jlxdUipGzrKQk8qcMn4wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPt3
Ghq0/M7UkDl6ngfYd//ClIauMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85NEQyQjU3NjRFOTAxMUYwQjcxNDZFRDdEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmttgMA0GCSqGSIb3DQEB
CwUAA4IBAQDJIbSFo7CpNx65D3sukrVT20qPRBGjgwVepNe8FZ8La2hukfnTiT1r
c3P6UPlvfl4OSKUCz/Rf3QqWy4mdnClhyetviJK91rTrYxq+tznfMS4FGO+NdDkO
0QWQmr5Pa7Y+ssm5cRtTvh04sLgBSql0vvfZFGNcvNQnHBFe6jqzbNMbi8tRIjQm
vMgzwWFlmCC2KHvp/+eRiiCb2XRQhXgMFmddNTOKuKL2zvRhIsjAI0woGIOn9MM1
qqzuL0Ktua79tV60VYmtgGidRnL93541/+iAwnbUwNMyJDOWt1I5vArXLfEZ52WY
nF/LGNR6PcaIpE7fkP2klopIO6QMatgM
-----END CERTIFICATE-----
Generated at Thu Jul 3 16:43:03 2025 by rpki-client