Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F700F7F4736A11F0A29C3BA8DAE4EC9C.roa
File: F700F7F4736A11F0A29C3BA8DAE4EC9C.roa (raw, json)
Hash identifier: jp+vUWhDAtGsKJBxr7vZebp/8zPCiUZoqwAcKk63Xls=
Subject key identifier: 63:90:72:23:D3:55:7F:6E:02:54:2E:AA:9D:43:09:44:3B:F4:C0:59
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0190E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F700F7F4736A11F0A29C3BA8DAE4EC9C.roa
Signing time: Thu 07 Aug 2025 08:46:10 +0000
ROA not before: Thu 07 Aug 2025 08:46:05 +0000
ROA not after: Thu 11 Sep 2025 08:46:05 +0000
asID: 203020
IP address blocks: 154.217.36.0/24 maxlen: 24
154.217.37.0/24 maxlen: 24
154.217.38.0/24 maxlen: 24
154.217.79.0/24 maxlen: 24
154.217.83.0/24 maxlen: 24
154.217.85.0/24 maxlen: 24
154.217.179.0/24 maxlen: 24
154.217.224.0/22 maxlen: 24
154.217.228.0/22 maxlen: 24
154.217.232.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102630 (0x190e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 7 08:46:05 2025 GMT
Not After : Sep 11 08:46:05 2025 GMT
Subject: CN=689467d2-59da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d6:a4:03:37:9c:88:93:27:2e:56:2a:5b:bf:
33:88:cd:33:02:6a:45:09:b2:1f:0f:64:a7:b1:2d:
92:ae:7e:57:23:53:ec:9c:f3:e0:e3:90:1f:94:ec:
bc:e4:fc:45:20:1e:ab:ba:6b:69:86:02:82:b3:06:
aa:43:30:70:b0:86:b0:dc:b7:fc:e1:c0:d5:55:99:
1e:61:fa:de:a3:05:4e:44:69:ce:ca:89:69:85:57:
f0:e8:66:39:db:f0:78:37:5f:0b:56:18:6b:77:e0:
c7:2b:97:fa:56:7b:7b:48:4c:fc:9d:85:a6:28:9a:
fd:45:d9:2a:95:56:51:b4:d8:62:0f:e6:fa:dc:ba:
bc:da:03:ae:16:7d:c0:37:57:96:5d:c4:6a:72:39:
14:1f:1a:0d:7f:00:3b:93:42:93:74:f3:dc:cb:ef:
44:3c:f2:72:29:cb:23:00:01:0a:12:fd:56:8b:99:
82:bd:be:29:e1:f3:be:0b:c6:0e:78:51:bc:fb:2f:
20:ca:a7:b7:94:7b:48:c4:99:d4:4e:87:7c:dc:b5:
35:c1:92:90:7f:df:6f:de:3d:6c:c8:d9:ae:dc:f8:
9f:41:40:c4:ac:bd:92:9a:af:69:db:95:3f:db:33:
2a:60:6d:0e:7e:6b:64:4c:8c:3d:64:30:73:a7:5f:
31:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:90:72:23:D3:55:7F:6E:02:54:2E:AA:9D:43:09:44:3B:F4:C0:59
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F700F7F4736A11F0A29C3BA8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.36.0-154.217.38.255
154.217.79.0/24
154.217.83.0/24
154.217.85.0/24
154.217.179.0/24
154.217.224.0-154.217.233.255
Signature Algorithm: sha256WithRSAEncryption
9b:f4:17:82:7a:d3:d6:73:f5:fc:cb:f6:e9:cf:1c:5e:3e:ac:
9b:41:ed:dc:64:89:71:4a:d6:7e:69:ef:57:f1:b0:06:b9:7a:
d8:d0:4f:eb:56:a4:c7:e4:ad:42:8c:c8:c5:a4:3b:69:a0:58:
c2:52:a7:d2:7f:53:d5:46:e9:d4:18:2e:64:2d:34:be:91:98:
47:f0:30:82:ac:40:d2:31:b0:d4:12:a1:76:9b:39:c7:ab:fe:
d7:f2:70:73:69:b3:10:6d:b9:3e:b5:aa:7b:c0:4c:fd:5e:0d:
ac:75:b4:eb:8f:20:e2:68:f3:0c:26:0d:af:1d:be:57:13:b5:
4f:07:60:30:a3:bb:39:e6:f2:47:43:b3:4b:ca:f5:71:8a:e5:
05:96:4b:56:3e:29:e0:63:03:d8:57:7d:2f:0c:93:30:f3:b0:
75:7a:08:db:f0:c1:f0:a6:3b:5d:cd:aa:a2:83:81:a1:f0:8f:
aa:77:bf:7b:c4:85:0c:5c:54:04:80:0a:71:d3:a5:cf:a8:a5:
92:fe:d1:58:61:d6:6d:94:89:db:ce:9a:b2:70:36:66:43:2e:
47:d7:02:c8:99:00:3b:00:c8:eb:e7:1c:db:c8:2b:77:c6:57:
40:18:1b:e2:da:f1:9d:de:0d:a4:6c:26:ea:f8:fb:0e:77:09:
19:9b:47:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:52:31 2025 by rpki-client