Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E9B8D5AAB2C11F0A1D6C6E5DAE4EC9C.roa
File: 9E9B8D5AAB2C11F0A1D6C6E5DAE4EC9C.roa (raw, json)
Hash identifier: 5+B7+RrswfIErrsSa9z19k9Eezi6QIg7QiuthUXUgKs=
Subject key identifier: 3C:14:C6:74:AE:DC:9A:A8:0D:8A:4C:B6:1B:06:D5:B8:51:0C:60:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A412
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E9B8D5AAB2C11F0A1D6C6E5DAE4EC9C.roa
Signing time: Fri 17 Oct 2025 07:40:58 +0000
ROA not before: Fri 17 Oct 2025 07:40:53 +0000
ROA not after: Fri 21 Nov 2025 07:40:53 +0000
asID: 209242
IP address blocks: 154.198.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107538 (0x1a412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 17 07:40:53 2025 GMT
Not After : Nov 21 07:40:53 2025 GMT
Subject: CN=68f1f30a-03d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2c:63:5f:be:87:f3:29:62:44:8f:b1:52:b3:
da:23:7b:b4:71:a6:8b:5a:db:07:b2:6d:93:0e:35:
35:d8:e1:1d:97:00:8d:45:f9:95:d0:16:14:a8:f8:
e7:fe:b0:be:34:e0:eb:02:9b:f1:ea:33:25:52:ad:
0c:55:d4:1a:ca:3f:14:7f:6e:1e:1e:18:f6:b5:b3:
06:15:f4:51:3b:37:19:a7:d6:3c:ae:08:46:f7:aa:
4a:51:7a:ac:6e:26:f6:48:35:45:44:68:48:5d:19:
38:12:90:5e:1c:a3:f1:a3:51:8c:11:a3:fe:9f:c1:
c3:0b:85:18:e4:09:00:f9:40:ed:52:5e:5f:89:4b:
f9:0e:71:6c:e4:f7:26:72:bd:77:ad:a1:7a:e4:2c:
11:35:6c:ee:0d:b6:e7:ae:7f:65:ff:34:3c:18:aa:
c9:1c:93:8b:ed:b0:eb:c7:e9:cf:2e:00:5c:83:c1:
97:22:22:dd:93:7a:71:fc:a7:45:9a:44:cd:07:40:
47:64:28:b1:a1:ca:19:37:32:9e:e0:4e:db:11:6a:
99:59:ba:05:e5:7c:d3:65:f4:94:e0:5d:03:e2:ba:
6c:fd:71:7b:bc:03:4b:26:fc:df:27:e8:df:56:e7:
d7:67:79:64:1d:bb:be:3a:2e:a0:dd:48:ec:a3:b1:
f1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:14:C6:74:AE:DC:9A:A8:0D:8A:4C:B6:1B:06:D5:B8:51:0C:60:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9E9B8D5AAB2C11F0A1D6C6E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.173.0/24
Signature Algorithm: sha256WithRSAEncryption
69:85:b2:a5:f5:51:cc:b5:4a:7d:20:36:d6:a2:e3:bf:ce:d2:
04:01:0b:44:ba:97:06:cf:34:5d:ce:6c:c9:50:66:a6:c4:6b:
ad:d1:b4:cb:1c:04:a9:f8:3a:69:19:31:8c:88:c3:d1:bd:10:
2b:de:7b:18:58:38:bd:7d:c2:41:95:56:ca:3e:50:a5:a9:85:
54:73:bd:ac:7e:ac:f0:b6:05:0f:f0:71:26:79:b1:c3:d5:01:
cf:93:fb:51:69:aa:6a:e9:60:a6:49:8b:d4:c7:d9:1f:52:13:
4a:65:a3:c0:2c:bc:c7:69:57:4a:37:d9:c5:57:e0:d2:5e:70:
21:69:3e:8d:d4:d3:e1:01:f9:8b:d5:d5:f0:a4:c3:36:34:b1:
0d:ec:47:51:7b:d6:e8:be:f8:d2:34:67:88:0a:bf:dc:eb:aa:
74:03:89:74:54:51:27:47:f8:e8:c9:ca:1a:79:99:e6:38:c5:
8f:8a:8d:03:aa:f8:d1:8e:f3:4d:e5:33:4b:f3:47:85:f0:02:
0d:a5:b0:84:9a:52:61:15:90:e0:a8:d0:c2:c7:35:e2:94:ff:
0d:6e:6d:fa:06:ec:62:c5:45:83:b4:e1:89:ee:cd:c2:90:6a:
9b:ea:57:45:ef:8b:c6:f0:92:52:a7:c1:88:aa:76:b8:79:f3:
3d:ff:64:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:09:10 2025 by rpki-client