Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8A3148C7E6A11F0907305EBDAE4EC9C.roa
File: B8A3148C7E6A11F0907305EBDAE4EC9C.roa (raw, json)
Hash identifier: zYmz3cjxy6HUWSHCpSfpsiKefOJZzlJxSS75lC49xWM=
Subject key identifier: BD:28:73:D4:29:40:B2:B7:31:6C:03:91:EF:1A:21:CD:9C:FC:AF:B0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0192F2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8A3148C7E6A11F0907305EBDAE4EC9C.roa
Signing time: Thu 21 Aug 2025 08:42:08 +0000
ROA not before: Thu 21 Aug 2025 08:42:03 +0000
ROA not after: Wed 05 Nov 2025 08:42:03 +0000
asID: 150750
IP address blocks: 154.208.51.0/24 maxlen: 24
154.208.52.0/24 maxlen: 24
154.208.53.0/24 maxlen: 24
154.208.54.0/24 maxlen: 24
154.208.55.0/24 maxlen: 24
154.208.56.0/24 maxlen: 24
154.208.57.0/24 maxlen: 24
154.208.58.0/24 maxlen: 24
154.208.59.0/24 maxlen: 24
154.208.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103154 (0x192f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 21 08:42:03 2025 GMT
Not After : Nov 5 08:42:03 2025 GMT
Subject: CN=68a6dbe0-8556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:28:ed:49:78:97:a1:dc:c9:8a:f4:6f:70:cc:
bc:e8:b1:83:31:2d:39:be:ee:3a:d0:28:37:50:51:
4f:d1:a4:92:54:6d:75:75:d7:32:01:42:56:01:3c:
ba:b2:d0:b2:81:d6:12:fe:43:22:4c:5f:fb:c3:77:
4c:a7:ee:4e:25:b0:8e:13:ca:ba:60:42:1a:e9:43:
eb:da:be:ad:95:46:76:7e:fd:eb:69:6d:bb:79:ff:
8b:d4:ca:09:8a:10:73:7b:7e:ce:3a:01:a6:c4:0a:
47:bc:8a:45:64:7e:7f:23:75:4a:de:a1:f4:7e:97:
a5:f9:20:9c:d8:96:28:1c:33:c2:9e:f1:7c:3a:a7:
6f:e9:45:51:c6:d8:97:49:ac:19:b6:c8:6f:e7:31:
d5:00:c4:6a:69:fb:85:0e:a0:a3:a0:e2:ff:f8:0c:
d8:6a:4a:8c:32:94:8b:67:3e:59:9f:86:12:b8:24:
a8:96:e6:ea:a1:a9:d9:8e:30:0f:12:04:30:33:b0:
c6:f6:f8:13:e4:a6:5d:39:85:ec:54:46:5d:35:4e:
a4:21:9d:ae:5a:9f:2a:a3:2c:e7:26:fd:28:fe:01:
7b:91:dd:b8:b8:c3:8c:fa:83:5e:cb:07:e8:03:d3:
dc:35:53:6c:13:a9:c1:ec:79:17:53:37:61:f0:d0:
4a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:28:73:D4:29:40:B2:B7:31:6C:03:91:EF:1A:21:CD:9C:FC:AF:B0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B8A3148C7E6A11F0907305EBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.51.0-154.208.60.255
Signature Algorithm: sha256WithRSAEncryption
79:3c:71:98:d8:0a:e6:7b:7d:64:af:e7:84:b1:da:ba:d4:f3:
47:4c:67:fe:74:e3:29:c9:8a:e8:f9:ad:9d:68:d3:20:ba:19:
62:fe:fe:52:42:40:2a:1e:9d:d8:d8:6d:3f:bb:9f:3e:bf:bf:
e0:8f:fe:0d:6c:3d:2e:bf:e4:2b:ce:80:f9:de:66:c1:35:a0:
b6:7a:66:4d:92:ac:a8:00:ce:7b:77:be:fc:49:6d:31:e5:5a:
ae:60:15:ca:06:1e:94:36:0e:35:bf:15:12:70:43:6a:2c:3e:
bb:2d:c4:2f:be:07:50:c1:ce:c3:23:28:bc:74:88:25:89:9d:
fd:ef:9c:6d:70:a6:1f:cd:bf:af:7c:73:2c:bb:91:bf:79:19:
98:b7:62:c9:d2:6c:59:df:27:4d:83:e0:44:57:6b:86:2f:b7:
6c:46:94:8f:1d:fd:cd:c7:d9:d8:ac:59:2e:8c:29:ee:80:6f:
3e:44:14:4f:47:e7:32:c8:69:a2:bc:c9:a7:99:9f:77:c4:e9:
7e:49:1e:5c:d4:4a:3e:f9:b0:c9:0e:55:a1:96:ce:bc:65:6d:
5c:be:44:76:62:98:70:a7:f0:5d:f5:2e:39:04:49:b1:a1:e4:
03:9a:83:05:2a:02:44:68:2a:c0:5e:3d:40:2d:18:ee:fa:3e:
a0:f8:e0:a6
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAZLyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODIxMDg0MjAzWhcNMjUxMTA1MDg0MjAzWjAYMRYw
FAYDVQQDEw02OGE2ZGJlMC04NTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuSjtSXiXodzJivRvcMy86LGDMS05vu460Cg3UFFP0aSSVG11ddcyAUJW
ATy6stCygdYS/kMiTF/7w3dMp+5OJbCOE8q6YEIa6UPr2r6tlUZ2fv3raW27ef+L
1MoJihBze37OOgGmxApHvIpFZH5/I3VK3qH0fpel+SCc2JYoHDPCnvF8Oqdv6UVR
xtiXSawZtshv5zHVAMRqafuFDqCjoOL/+AzYakqMMpSLZz5Zn4YSuCSolubqoanZ
jjAPEgQwM7DG9vgT5KZdOYXsVEZdNU6kIZ2uWp8qoyznJv0o/gF7kd24uMOM+oNe
ywfoA9PcNVNsE6nB7HkXUzdh8NBKmQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFL0o
c9QpQLK3MWwDke8aIc2c/K+wMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9COEEzMTQ4QzdFNkExMUYwOTA3MzA1RUJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACa0DMDBACa0DwwDQYJ
KoZIhvcNAQELBQADggEBAHk8cZjYCuZ7fWSv54Sx2rrU80dMZ/504ynJiuj5rZ1o
0yC6GWL+/lJCQCoendjYbT+7nz6/v+CP/g1sPS6/5CvOgPneZsE1oLZ6Zk2SrKgA
znt3vvxJbTHlWq5gFcoGHpQ2DjW/FRJwQ2osPrstxC++B1DBzsMjKLx0iCWJnf3v
nG1wph/Nv698cyy7kb95GZi3YsnSbFnfJ02D4ERXa4Yvt2xGlI8d/c3H2disWS6M
Ke6Abz5EFE9H5zLIaaK8yaeZn3fE6X5JHlzUSj75sMkOVaGWzrxlbVy+RHZimHCn
8F31LjkESbGh5AOagwUqAkRoKsBePUAtGO76PqD44KY=
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:42:37 2025 by rpki-client