Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/979FF8D2A9CA11F097C17295DAE4EC9C.roa
File: 979FF8D2A9CA11F097C17295DAE4EC9C.roa (raw, json)
Hash identifier: 4bDD1WCWQ1xFnBE8Tvc7Rn0hIzL0SM/PuOyIQp54QyU=
Subject key identifier: E6:37:49:E3:7E:92:E9:C2:B9:D1:5B:00:6E:C3:43:45:57:34:B1:36
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A3AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/979FF8D2A9CA11F097C17295DAE4EC9C.roa
Signing time: Wed 15 Oct 2025 13:26:45 +0000
ROA not before: Wed 15 Oct 2025 13:26:38 +0000
ROA not after: Fri 05 Dec 2025 13:26:38 +0000
asID: 20326
IP address blocks: 154.194.32.0/24 maxlen: 24
154.194.192.0/23 maxlen: 24
154.194.206.0/24 maxlen: 24
154.198.165.0/24 maxlen: 24
154.198.166.0/23 maxlen: 24
154.202.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 10:47:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107435 (0x1a3ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 15 13:26:38 2025 GMT
Not After : Dec 5 13:26:38 2025 GMT
Subject: CN=68efa114-4436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:87:43:7d:ea:4e:a8:5a:5e:1c:0d:ba:3f:cf:
e2:22:cc:9d:4f:6c:30:1d:14:04:0c:70:98:d2:f5:
f9:ba:76:2b:cf:b0:b7:26:a5:78:16:a9:7a:5e:ca:
d7:82:fe:45:e9:33:0d:43:78:09:6c:02:32:bc:8d:
2f:50:b5:57:2c:f9:e3:b7:7b:1b:12:92:cd:f3:47:
bb:c5:aa:4e:14:48:b6:fe:95:a5:5d:be:1b:4b:68:
04:e7:c6:18:bb:bf:0f:4e:07:f9:a2:57:68:03:20:
d7:20:0d:8d:45:f6:ff:9d:07:66:54:31:b5:07:1d:
da:9d:2d:44:65:2d:a1:af:14:2e:2e:f1:23:0d:6f:
c6:35:45:e7:88:f0:06:e0:32:a5:4d:9d:00:a6:55:
51:ee:fd:e6:e7:77:79:23:57:67:fd:d9:ea:12:bf:
93:ad:23:f4:21:29:a8:ba:24:c0:16:32:c2:ef:80:
5c:e8:67:43:de:43:2c:47:91:b9:16:b7:27:26:42:
31:26:ed:be:55:29:1f:2b:6b:92:04:b8:5e:d7:44:
99:3c:1b:1f:59:b3:30:5c:6f:cf:1a:20:4e:32:f5:
56:e5:4e:04:82:55:02:bc:2a:b8:95:fa:9f:5b:94:
4e:bc:e9:d2:01:fa:13:07:e6:3b:45:49:b0:98:ed:
89:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:37:49:E3:7E:92:E9:C2:B9:D1:5B:00:6E:C3:43:45:57:34:B1:36
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/979FF8D2A9CA11F097C17295DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.32.0/24
154.194.192.0/23
154.194.206.0/24
154.198.165.0-154.198.167.255
154.202.75.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:79:20:10:30:bc:aa:40:0e:e3:d2:35:e7:c1:f0:02:66:bd:
71:ec:78:a9:1b:b1:ed:02:2a:e2:90:35:ec:50:4f:40:9c:cb:
23:bf:b3:51:25:5e:bd:57:13:70:e2:2a:61:d7:d5:5d:a3:44:
71:11:49:6f:c2:fc:22:2c:c1:86:36:9e:07:db:4a:90:7e:4c:
18:0b:8f:38:04:79:3e:d2:67:4b:60:b0:05:c2:0d:73:10:eb:
ef:83:55:e2:9b:a4:33:d9:01:c9:db:ee:01:b4:1a:db:6f:6b:
0d:35:75:d4:be:0f:bb:4f:bf:0e:1f:35:65:26:bd:20:67:54:
12:75:45:13:b4:b7:6b:9f:e5:fe:70:c3:22:77:40:85:10:2f:
81:fb:25:c2:9a:d3:a7:83:85:e8:c5:03:e3:fb:3e:39:f6:97:
b1:fa:04:f0:8f:ad:c8:fb:55:3b:92:2e:f2:f9:39:8d:38:04:
a1:4e:62:31:dd:f3:e0:6b:ac:38:1c:da:52:83:08:3e:74:b2:
7d:f4:ad:f3:a7:11:f2:a4:a9:b0:31:e3:f1:39:3e:69:23:8f:
8b:e6:e3:20:ff:2e:ec:91:f6:95:cd:76:41:10:95:b6:12:d0:
c0:ff:86:9d:2c:79:e2:35:d8:5c:52:cd:b8:22:64:ad:d9:13:
c7:8f:48:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:05:01 2025 by rpki-client