Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A63538AE8ACF11F0B3CF79B7DAE4EC9C.roa
File: A63538AE8ACF11F0B3CF79B7DAE4EC9C.roa (raw, json)
Hash identifier: U2c5Ti9jRGdgJ12jJHifko+w7KDFS0bGbqufBsDt8tM=
Subject key identifier: 05:12:30:2D:7B:9F:5C:A0:C9:84:E3:BB:56:AA:53:1B:99:4E:72:D5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019E4B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A63538AE8ACF11F0B3CF79B7DAE4EC9C.roa
Signing time: Sat 06 Sep 2025 03:14:50 +0000
ROA not before: Sat 06 Sep 2025 03:14:45 +0000
ROA not after: Wed 06 May 2026 03:14:45 +0000
asID: 8796
IP address blocks: 154.86.17.0/24 maxlen: 24
154.86.18.0/24 maxlen: 24
154.86.20.0/24 maxlen: 24
154.86.21.0/24 maxlen: 24
154.86.23.0/24 maxlen: 24
154.86.24.0/24 maxlen: 24
154.86.26.0/24 maxlen: 24
154.86.27.0/24 maxlen: 24
154.86.29.0/24 maxlen: 24
154.86.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106059 (0x19e4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 6 03:14:45 2025 GMT
Not After : May 6 03:14:45 2026 GMT
Subject: CN=68bba72a-b670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ac:27:21:46:fb:2b:1e:05:29:ff:06:8d:fb:
b6:d7:dc:40:bb:03:10:50:38:46:06:67:d4:7b:09:
91:9f:2c:6d:f0:3a:cf:93:ca:58:a1:83:68:e8:65:
f6:e7:68:2e:74:0f:7e:3c:3d:32:ea:f3:fe:a2:03:
19:a9:57:9f:8c:68:96:97:56:69:3b:72:94:85:6c:
33:27:f6:93:9e:41:3c:f9:40:88:0a:1f:36:ce:81:
08:ff:c6:a2:29:c9:10:95:8c:33:9f:e9:8d:10:19:
e6:d1:04:f5:5c:48:dd:ea:07:4e:7c:92:be:e3:72:
11:64:32:f4:06:86:a7:f9:91:8a:7e:f6:ad:8f:f9:
9e:0c:34:88:9f:17:f8:ba:dd:59:e9:cd:75:dc:46:
62:4c:d0:3b:99:f3:52:11:22:92:11:da:0e:c6:7c:
cc:11:09:ff:ae:ba:0c:4c:d2:20:a7:e0:74:39:23:
09:0d:49:b1:0e:21:37:cc:bb:c3:15:24:d3:3d:f8:
4b:5e:61:76:0e:8f:9a:8b:64:28:ba:24:22:9d:1b:
4c:e0:03:5a:84:1e:30:d8:b5:29:7f:df:ef:cd:f3:
62:66:70:bb:4b:7f:15:c3:75:11:c3:18:94:ed:37:
f9:fe:d9:e9:3d:04:39:22:c0:8d:61:56:79:f3:60:
99:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:12:30:2D:7B:9F:5C:A0:C9:84:E3:BB:56:AA:53:1B:99:4E:72:D5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A63538AE8ACF11F0B3CF79B7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.17.0-154.86.18.255
154.86.20.0/23
154.86.23.0-154.86.24.255
154.86.26.0/23
154.86.29.0-154.86.30.255
Signature Algorithm: sha256WithRSAEncryption
5a:75:b0:b5:b4:82:60:c9:b6:f6:99:15:c1:a8:90:10:5d:c7:
ae:5a:81:72:f9:16:4a:b4:b1:a0:b8:65:e1:20:f5:19:4e:cd:
ac:2b:58:e1:38:02:87:77:95:8b:a0:8f:df:3a:75:ae:7c:30:
5f:cd:56:33:3f:79:fb:1e:74:35:34:6b:93:17:99:4e:ce:ff:
32:43:19:da:a5:23:a9:a1:ca:e3:8b:e4:01:c2:b3:83:a4:cf:
90:93:de:72:e5:50:28:c0:97:7a:18:c0:e4:60:ad:89:0b:f1:
14:2b:26:3c:b2:ec:8b:51:c0:d0:7c:14:fc:57:f9:08:92:de:
83:b5:f7:6c:ba:20:5d:72:e3:c9:dd:2b:01:8a:5d:f1:05:b3:
ee:9e:1a:89:c6:88:7e:3a:bd:c4:ae:6d:5a:77:c6:77:eb:63:
d0:0d:23:bd:fc:04:2b:22:f0:3b:47:ad:78:b7:13:32:8e:ad:
50:97:6d:e5:e3:a3:9c:6d:6e:0e:94:57:a2:b7:e7:f0:5e:41:
30:b1:c4:c3:28:d7:f4:1b:df:2a:69:fb:63:09:c5:1d:04:f9:
a9:89:f5:64:bc:71:21:77:fe:67:5c:c4:12:c2:3f:6f:91:d7:
24:e7:58:fa:14:98:16:bc:9f:1f:d2:d3:ef:29:1f:99:ef:ce:
a4:e3:c0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:09:45 2025 by rpki-client