Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAC7627C7E6811F0B94AB2E1DAE4EC9C.roa
File: DAC7627C7E6811F0B94AB2E1DAE4EC9C.roa (raw, json)
Hash identifier: F5weDmk1k6FR/MDwearvMnlXUsnuyzhZTLhtSc0DbAI=
Subject key identifier: 09:69:69:03:A2:7F:C8:C1:7A:A4:B4:EA:CC:2C:7F:5C:F4:B0:3E:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0192EC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAC7627C7E6811F0B94AB2E1DAE4EC9C.roa
Signing time: Thu 21 Aug 2025 08:28:46 +0000
ROA not before: Thu 21 Aug 2025 08:28:41 +0000
ROA not after: Wed 05 Nov 2025 08:28:41 +0000
asID: 150750
IP address blocks: 154.208.32.0/19 maxlen: 24
154.208.32.0/24 maxlen: 24
154.208.33.0/24 maxlen: 24
154.208.34.0/24 maxlen: 24
154.208.35.0/24 maxlen: 24
154.208.36.0/24 maxlen: 24
154.208.37.0/24 maxlen: 24
154.208.38.0/24 maxlen: 24
154.208.39.0/24 maxlen: 24
154.208.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103148 (0x192ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 21 08:28:41 2025 GMT
Not After : Nov 5 08:28:41 2025 GMT
Subject: CN=68a6d8be-7a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f9:6e:d4:fb:1e:99:85:79:ef:39:60:29:36:
15:4e:d9:13:59:dc:12:4e:d7:68:5e:5c:15:85:3f:
7b:01:80:bf:f9:27:34:7d:ee:de:5d:c4:da:53:5f:
54:76:3d:52:62:20:ec:51:8c:56:30:f6:3d:4a:92:
d9:27:69:00:da:34:ff:be:25:43:ac:8d:8e:05:57:
39:01:2f:cf:db:44:13:c7:02:f3:42:70:50:57:74:
dd:5d:f9:7f:c7:b4:99:07:f3:7c:4b:db:47:6c:8d:
11:73:33:dc:d1:f8:06:ff:fc:e5:f1:9b:c6:7c:cb:
c1:02:03:69:f0:38:f0:53:8b:db:d4:e3:8f:28:e8:
7c:d9:87:76:6b:43:fb:24:8b:06:d4:42:07:c0:09:
e7:6b:3a:39:da:15:55:e6:32:25:9c:82:2c:45:73:
e7:5e:d3:a1:4a:d4:45:bd:e7:e7:ee:5f:5b:6f:91:
8e:ec:67:ea:1a:10:34:47:be:7c:63:bb:54:cf:84:
52:88:92:85:e2:42:c0:0d:f2:16:a2:27:83:d8:27:
b3:79:d7:8a:c2:c1:f6:c1:8e:a1:27:ec:ef:1b:42:
af:26:ed:14:72:1c:c6:e4:25:e8:5a:88:1c:42:84:
93:23:26:6b:f6:73:bb:0e:27:cd:33:61:8e:91:32:
a6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:69:69:03:A2:7F:C8:C1:7A:A4:B4:EA:CC:2C:7F:5C:F4:B0:3E:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAC7627C7E6811F0B94AB2E1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.32.0/19
Signature Algorithm: sha256WithRSAEncryption
bc:92:67:ee:61:6b:30:2d:e5:65:84:d5:b2:05:20:a4:63:0f:
75:a0:9c:b3:53:fd:d8:c3:88:1e:aa:8a:f2:de:14:7a:a8:c8:
dc:d4:1a:b8:67:db:c0:6e:32:a3:31:23:69:ab:9a:21:db:c0:
f6:46:f1:d5:1b:23:f8:7a:2a:ee:67:95:e7:39:93:22:d0:28:
54:4a:59:b0:81:5d:45:eb:a7:8c:6e:95:ca:58:1b:12:4d:3a:
db:23:dd:0e:c6:c6:e5:fe:bb:b3:9c:b3:0c:8e:8d:3a:4a:1a:
eb:ae:02:b7:f4:7b:3d:1e:18:22:17:87:54:63:a0:5e:75:c9:
f4:45:f4:e6:5d:09:3f:f3:46:fa:a4:f1:d8:5f:96:81:33:26:
11:f0:4c:5c:81:5a:26:d2:ad:f9:eb:17:dd:a5:bd:d1:70:20:
28:f7:7b:06:ab:71:14:4f:d6:29:b6:68:0b:00:41:ce:eb:22:
ab:c6:ca:5f:fd:f0:56:d6:83:d3:7e:31:be:85:53:b6:8c:b5:
36:c1:4e:03:c6:68:76:cb:ac:17:da:30:9b:4b:d6:7f:50:7e:
11:35:c3:e3:b5:7d:a3:9d:10:0d:cb:fd:a0:e0:c0:a4:35:90:
95:e0:e5:79:7c:66:df:a4:b8:a7:9f:de:1e:c3:53:79:fb:ef:
30:37:05:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:44:05 2025 by rpki-client