Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBFC8B18A51811F0A0A24CBEDAE4EC9C.roa
File: EBFC8B18A51811F0A0A24CBEDAE4EC9C.roa (raw, json)
Hash identifier: jzTU2mATqmb6dCpyBKEaqTOyGzW7OrSwdlqhhu2q/Dw=
Subject key identifier: 19:21:2F:20:D3:79:AC:61:C2:42:08:EA:3D:93:42:BA:FB:AF:5C:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A318
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBFC8B18A51811F0A0A24CBEDAE4EC9C.roa
Signing time: Thu 09 Oct 2025 14:04:51 +0000
ROA not before: Thu 09 Oct 2025 14:04:41 +0000
ROA not after: Sun 16 Nov 2025 14:04:41 +0000
asID: 22773
IP address blocks: 154.90.18.0/24 maxlen: 24
154.90.19.0/24 maxlen: 24
154.90.20.0/24 maxlen: 24
154.90.21.0/24 maxlen: 24
154.90.146.0/24 maxlen: 24
154.90.147.0/24 maxlen: 24
154.90.148.0/24 maxlen: 24
154.90.149.0/24 maxlen: 24
154.90.150.0/24 maxlen: 24
154.90.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 10:47:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107288 (0x1a318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 9 14:04:41 2025 GMT
Not After : Nov 16 14:04:41 2025 GMT
Subject: CN=68e7c103-aa0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fa:2f:86:13:ac:30:3c:d1:6b:ec:5d:69:ba:
b8:e8:42:75:ba:6f:29:3b:8a:24:ab:76:dc:b3:b0:
99:83:e1:2a:1e:83:0d:f6:ea:79:09:4f:c3:2b:b8:
e2:1e:e4:7d:93:dc:b5:76:8c:8f:52:94:d8:a8:67:
46:bb:3c:33:6b:81:30:c0:0a:f7:d3:cd:94:72:fd:
40:26:ec:48:5a:4a:41:50:48:77:bf:19:96:d9:1e:
a4:61:e3:5b:77:16:59:9d:0e:35:f4:4f:6e:88:63:
ad:18:79:85:8d:38:b5:ec:0a:30:7c:99:bd:2b:bc:
79:c0:c0:8d:d0:c6:5f:98:19:cf:8a:19:11:db:62:
19:57:df:cd:49:ca:ce:0f:61:db:67:af:6d:f5:c1:
79:71:16:41:eb:b3:e7:cb:30:56:40:32:1d:43:c8:
c7:de:cf:3f:88:fa:b3:66:82:af:f9:b4:93:e8:75:
95:ce:e1:17:c9:b7:fa:3b:53:fe:4e:c3:e4:57:af:
ee:35:05:65:f0:a7:11:1a:35:47:d0:42:6e:71:54:
d6:79:ec:b7:55:05:f5:a7:6b:c7:2e:e3:bb:9c:00:
04:16:ee:c8:00:b0:9c:17:b4:8f:db:af:04:73:04:
be:03:3e:56:8b:0a:b5:de:61:3f:f3:4c:6c:85:7c:
a7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:21:2F:20:D3:79:AC:61:C2:42:08:EA:3D:93:42:BA:FB:AF:5C:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EBFC8B18A51811F0A0A24CBEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.18.0-154.90.21.255
154.90.146.0-154.90.151.255
Signature Algorithm: sha256WithRSAEncryption
67:77:9e:53:3d:2e:15:99:12:12:dd:29:33:7e:62:91:ad:15:
33:2d:82:3a:bd:ee:f5:f4:f1:93:d4:11:6d:76:69:3a:75:db:
cc:70:a4:44:50:05:37:1a:f6:c8:98:1b:32:b0:6c:94:15:64:
a0:00:a4:c6:e7:4f:52:7c:f1:93:97:06:45:02:79:72:a1:1a:
d4:03:61:28:a8:29:1e:4e:af:b0:f6:f9:9b:ed:65:72:71:b7:
86:26:85:36:66:a7:b7:08:78:a5:2b:5b:0a:cc:1a:d3:64:bc:
e9:82:5f:c8:6c:9d:75:a1:6d:91:9a:cc:01:5c:6c:99:e2:e1:
c6:dd:36:17:e9:29:34:33:a5:9b:5e:6f:f1:2a:4f:67:b3:76:
e7:f8:4b:2c:58:5f:c1:3c:16:d4:1e:6b:be:b6:a4:37:d5:be:
55:98:a3:df:75:b1:46:26:12:60:cb:c0:08:7f:65:ca:dd:51:
c5:ab:a0:57:92:2c:b7:70:3e:d9:68:b5:ef:b9:a6:ab:c3:23:
62:2c:3a:91:ec:44:a9:9f:53:be:db:b0:da:45:a0:2a:3b:63:
d5:33:d5:f6:35:74:9a:05:9b:b9:ac:49:60:74:a1:8b:cc:15:
ba:2f:51:0c:f6:da:fb:8d:51:af:2b:13:45:7b:61:52:97:d4:
3b:9f:4f:3f
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgIDAaMYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMDA5MTQwNDQxWhcNMjUxMTE2MTQwNDQxWjAYMRYw
FAYDVQQDEw02OGU3YzEwMy1hYTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzvovhhOsMDzRa+xdabq46EJ1um8pO4okq3bcs7CZg+EqHoMN9up5CU/D
K7jiHuR9k9y1doyPUpTYqGdGuzwza4EwwAr3082Ucv1AJuxIWkpBUEh3vxmW2R6k
YeNbdxZZnQ419E9uiGOtGHmFjTi17AowfJm9K7x5wMCN0MZfmBnPihkR22IZV9/N
ScrOD2HbZ69t9cF5cRZB67PnyzBWQDIdQ8jH3s8/iPqzZoKv+bST6HWVzuEXybf6
O1P+TsPkV6/uNQVl8KcRGjVH0EJucVTWeey3VQX1p2vHLuO7nAAEFu7IALCcF7SP
268EcwS+Az5Wiwq13mE/80xshXynwQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFBkh
LyDTeaxhwkII6j2TQrr7r1wtMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQkZDOEIxOEE1MTgxMUYwQTBBMjRDQkVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcMAwDBAGaWhIDBAGaWhQwDAME
AZpakgMEA5pakDANBgkqhkiG9w0BAQsFAAOCAQEAZ3eeUz0uFZkSEt0pM35ika0V
My2COr3u9fTxk9QRbXZpOnXbzHCkRFAFNxr2yJgbMrBslBVkoACkxudPUnzxk5cG
RQJ5cqEa1ANhKKgpHk6vsPb5m+1lcnG3hiaFNmantwh4pStbCswa02S86YJfyGyd
daFtkZrMAVxsmeLhxt02F+kpNDOlm15v8SpPZ7N25/hLLFhfwTwW1B5rvrakN9W+
VZij33WxRiYSYMvACH9lyt1RxaugV5Ist3A+2Wi177mmq8MjYiw6kexEqZ9Tvtuw
2kWgKjtj1TPV9jV0mgWbuaxJYHShi8wVui9RDPba+41RrysTRXthUpfUO59PPw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 02:05:01 2025 by rpki-client