Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F575C184946311F097B01A84DAE4EC9C.roa
File: F575C184946311F097B01A84DAE4EC9C.roa (raw, json)
Hash identifier: ZbWMYFFHVXK5H6aL7RN6QZr2JR4AFXIqGZNssv3NiEo=
Subject key identifier: 46:A5:90:B3:80:21:96:EC:27:AB:96:AF:11:DC:1C:C7:BE:0C:4D:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019FF9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F575C184946311F097B01A84DAE4EC9C.roa
Signing time: Thu 18 Sep 2025 07:49:09 +0000
ROA not before: Thu 18 Sep 2025 07:49:04 +0000
ROA not after: Fri 24 Oct 2025 07:49:04 +0000
asID: 8796
IP address blocks: 154.89.144.0/20 maxlen: 24
154.89.160.0/19 maxlen: 24
154.89.192.0/20 maxlen: 24
154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106489 (0x19ff9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 18 07:49:04 2025 GMT
Not After : Oct 24 07:49:04 2025 GMT
Subject: CN=68cbb975-1537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a5:f7:5e:e3:de:6a:86:a5:7d:a8:0c:10:42:
a1:d0:38:0f:12:cd:a3:9d:47:0f:44:00:4f:04:e4:
2c:d9:4f:9a:8c:83:d8:f5:b4:3e:b3:b6:3e:61:76:
dd:67:03:39:a5:98:21:2a:d7:b7:0e:c7:df:83:52:
6b:5c:be:d5:26:6a:db:e7:94:30:57:2f:48:ec:42:
50:8f:e6:07:12:6b:c6:28:41:a1:0b:d7:c4:df:77:
8f:53:c0:fa:41:37:1a:57:d3:f3:16:ac:8d:d7:e1:
f4:47:ce:f4:cc:97:b6:1a:0e:8b:72:2d:83:b0:2b:
15:47:87:59:8e:07:94:9b:35:c0:1f:98:6f:ff:d5:
8c:07:61:13:93:e8:51:b8:72:ae:a7:e6:03:4b:d8:
2d:8b:14:df:ab:aa:4f:0f:d5:82:0c:0d:6c:e1:60:
7b:0b:3c:f1:62:09:78:5f:cc:f9:49:04:4c:27:e7:
b3:57:11:b8:c0:1f:38:cd:e7:28:0c:52:e3:86:dd:
c4:24:d3:cf:da:47:f7:45:cb:27:e2:22:37:b6:99:
32:47:7d:62:d7:61:98:f4:dc:f9:21:81:38:1b:68:
b5:72:5d:33:4f:29:36:a2:44:44:df:a7:a3:da:0a:
42:3c:2f:31:89:53:c5:7a:1b:56:85:e7:da:ae:8f:
25:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A5:90:B3:80:21:96:EC:27:AB:96:AF:11:DC:1C:C7:BE:0C:4D:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F575C184946311F097B01A84DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.144.0-154.89.207.255
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
00:c5:4f:3b:d0:10:ca:31:b2:b4:d0:0c:2d:28:24:21:55:05:
1a:e2:79:63:1b:f6:71:9d:f0:63:dc:ec:ad:e5:b4:b4:8f:47:
e9:3e:f8:c0:2e:3a:26:1e:8c:5b:07:53:0a:61:f6:2d:99:c1:
6b:f2:b7:54:eb:a1:54:4b:8b:3a:0a:7e:a4:86:cb:25:b4:17:
4e:66:70:9b:62:0c:49:11:c9:d6:07:16:7e:d1:a8:a3:d4:be:
66:f1:ae:c0:15:68:22:e3:3c:0a:b3:20:22:9d:4a:79:77:3f:
a3:61:78:9e:a4:4c:26:9c:37:44:b4:84:2c:31:f5:b4:9f:88:
b1:6a:a1:34:96:21:b6:19:16:1f:73:7d:7b:01:d7:64:bc:7d:
ee:a4:f0:0c:3c:4c:1f:af:9f:47:a8:cc:1b:05:b3:1c:b7:16:
90:7b:74:f4:61:1f:23:da:fa:ba:45:92:04:65:1c:d0:d3:cb:
c6:cb:03:11:35:89:63:be:82:34:d0:4a:10:74:37:d8:41:2b:
d0:77:ed:50:a6:5a:45:9b:20:9e:9c:5b:63:d8:8f:45:af:bc:
84:56:96:2b:10:75:f2:01:ce:04:42:f1:10:3b:87:2c:3b:59:
cd:3a:d6:26:6d:da:68:c3:0f:f2:29:7b:be:23:f3:5a:a5:c2:
3a:70:f4:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 21:09:45 2025 by rpki-client