Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D64601C8A42311F0AE270D90DAE4EC9C.roa
File: D64601C8A42311F0AE270D90DAE4EC9C.roa (raw, json)
Hash identifier: OmL37aOMhxye0eLwntEK59zfuYHR6ESH5R1/j/wH90s=
Subject key identifier: 80:5F:0F:0F:C7:61:3E:72:3B:E0:2F:81:EF:CC:3B:74:0B:47:7E:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A2B7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D64601C8A42311F0AE270D90DAE4EC9C.roa
Signing time: Wed 08 Oct 2025 08:50:28 +0000
ROA not before: Wed 08 Oct 2025 08:50:21 +0000
ROA not after: Mon 10 Nov 2025 08:50:21 +0000
asID: 203020
IP address blocks: 154.217.82.0/24 maxlen: 24
154.217.83.0/24 maxlen: 24
154.217.84.0/24 maxlen: 24
154.217.85.0/24 maxlen: 24
154.217.86.0/24 maxlen: 24
154.217.88.0/24 maxlen: 24
154.217.89.0/24 maxlen: 24
154.217.90.0/24 maxlen: 24
154.217.92.0/24 maxlen: 24
154.217.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107191 (0x1a2b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 8 08:50:21 2025 GMT
Not After : Nov 10 08:50:21 2025 GMT
Subject: CN=68e625d4-94f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4d:ac:e4:35:42:93:96:28:bc:62:08:c0:30:
89:e8:8b:e2:23:65:ed:d7:45:29:e7:73:23:8f:00:
dd:a5:09:d2:5c:8a:a9:3e:45:44:36:ca:41:44:de:
0e:20:08:4f:8c:9d:01:5a:d8:4c:66:2d:73:b7:a6:
02:20:2e:67:c1:5c:80:f7:16:ac:0d:9a:8f:5b:a0:
1f:2e:9c:16:9d:6e:c1:dc:3d:52:a9:91:90:08:05:
71:65:ac:a6:d0:48:59:29:79:fc:3b:45:de:26:2d:
49:10:b0:09:01:2c:00:8f:6e:a8:5e:41:3e:83:ee:
48:d1:a8:5a:3c:c5:af:36:73:23:7e:81:99:8d:f9:
5e:be:e7:90:db:f7:b5:bc:7a:b7:64:a8:1b:8f:c0:
3e:fa:62:cb:cf:88:60:f0:be:c4:f5:02:67:10:70:
d0:f7:42:7f:e0:5e:6b:f3:b5:9d:7a:96:0b:64:7f:
fb:c6:f6:09:1f:43:eb:6b:23:c0:92:73:b2:49:63:
58:ca:6e:b5:55:f3:08:e4:dd:32:06:a4:dc:4c:83:
d8:19:68:4a:82:68:a6:64:48:34:4d:24:4a:8f:11:
12:83:49:0f:34:22:0f:94:6a:29:49:e5:41:d5:b3:
41:30:39:57:68:ae:3d:19:2a:ce:18:13:f2:bc:9e:
f1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:5F:0F:0F:C7:61:3E:72:3B:E0:2F:81:EF:CC:3B:74:0B:47:7E:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D64601C8A42311F0AE270D90DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.82.0-154.217.86.255
154.217.88.0-154.217.90.255
154.217.92.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:fd:1c:46:7c:1e:91:f8:d5:5d:9b:27:2c:98:a8:66:02:68:
92:6b:e9:fd:e7:66:08:e5:15:48:6e:c9:bd:88:86:e0:7a:25:
00:89:0a:52:61:e8:07:2d:46:1f:e9:8b:4d:05:6f:d1:37:a6:
eb:37:a9:f5:a0:65:0e:e5:df:fd:23:45:e1:86:fb:0d:00:cf:
85:ca:0b:3e:e4:8c:d2:5b:52:e4:98:28:0e:37:a3:19:c7:0f:
cb:0d:6d:4a:14:dd:a3:98:bb:2a:b3:1f:75:52:a0:f0:6c:3c:
88:bb:36:1e:6f:f5:f3:6c:fe:7f:3d:28:d5:81:91:dc:e3:c8:
90:89:c3:e6:9b:74:50:81:97:76:23:da:c6:d9:2c:5c:eb:b5:
28:a3:75:81:08:b3:c7:5e:99:37:fe:0f:36:50:38:02:3d:c6:
1c:03:ee:5a:be:21:24:f4:c9:6a:89:54:b3:9c:8b:d1:45:b8:
83:e1:68:00:01:a8:b7:e5:4c:26:1a:16:a2:51:1d:20:5f:5a:
e9:f3:5a:e7:7d:f8:62:c1:73:7b:3f:87:44:b8:35:f1:1d:5a:
d6:ba:b9:d0:55:d9:62:65:9d:e1:5c:87:d8:18:a4:e6:96:85:
3b:e9:fb:fc:99:22:b3:51:d8:c6:6a:0a:78:f0:d6:c7:66:8b:
9f:99:ab:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:55:13 2025 by rpki-client