Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B3D4D668C8111F098FF1DBFDAE4EC9C.roa
File: 9B3D4D668C8111F098FF1DBFDAE4EC9C.roa (raw, json)
Hash identifier: u2BH0Tp6eJjRiOB+fOfT2HE0375cIcvsC+ffQ8gLQRU=
Subject key identifier: 94:3A:65:6E:16:8E:67:02:FE:C6:8D:2A:BE:A9:31:A2:E7:F1:1C:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019E95
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B3D4D668C8111F098FF1DBFDAE4EC9C.roa
Signing time: Mon 08 Sep 2025 07:01:14 +0000
ROA not before: Mon 08 Sep 2025 07:01:07 +0000
ROA not after: Thu 09 Oct 2025 07:01:07 +0000
asID: 397423
IP address blocks: 154.93.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 Oct 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106133 (0x19e95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 8 07:01:07 2025 GMT
Not After : Oct 9 07:01:07 2025 GMT
Subject: CN=68be7f39-68a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5f:c3:d3:60:57:90:27:ff:b6:d3:8d:b8:e4:
93:85:81:cc:b7:8c:95:d4:3d:2a:c5:2e:8f:9e:1d:
ea:1d:39:a0:7b:f0:05:68:f7:a2:d3:a6:2c:4b:68:
40:29:77:8e:de:18:cc:19:97:b1:ca:f1:2c:29:f2:
e0:38:8a:fb:85:61:39:bc:70:9b:58:ce:ab:49:15:
f8:29:87:17:47:50:34:76:e2:42:a4:06:46:e8:76:
6b:ec:dd:36:02:fa:15:61:b8:3b:1a:84:ab:99:c6:
ff:aa:ec:27:d4:67:7e:f5:65:d7:78:1b:89:1c:f6:
bf:8b:e4:08:b4:63:dd:17:0d:e3:4f:60:50:cc:74:
f3:91:f1:c4:bb:d1:e1:05:46:dc:3c:e4:84:89:e5:
85:4e:c1:21:e3:3c:80:a2:4f:aa:80:31:d8:e4:12:
b6:70:23:1d:f3:c7:1b:c0:7b:5e:d2:13:56:84:df:
51:e2:07:ee:45:4c:7d:1f:88:4e:89:b0:89:f1:5c:
17:58:46:1a:99:d9:4c:a6:87:6c:07:32:26:39:ea:
5e:3d:0c:b7:30:a8:c2:ba:69:af:db:1a:f6:ff:9a:
33:bb:9a:2b:84:f4:92:ba:23:d1:18:24:08:28:95:
eb:95:75:e9:a3:a2:31:33:ec:41:ce:bd:f3:89:eb:
cf:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:3A:65:6E:16:8E:67:02:FE:C6:8D:2A:BE:A9:31:A2:E7:F1:1C:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B3D4D668C8111F098FF1DBFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.27.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:40:2a:91:74:1e:c8:8c:1a:d5:29:b6:22:bc:ae:d4:cb:31:
59:19:b0:21:61:13:80:2a:1a:9c:27:7f:83:07:15:37:87:84:
a9:e6:59:78:2d:ba:a4:af:9b:ab:e3:7e:38:03:5e:51:dd:83:
83:ee:24:2c:33:8a:79:22:94:9f:d6:22:d7:cd:60:e0:6b:ba:
7b:76:8d:a1:73:fb:35:64:63:b4:cf:cb:ec:fe:b6:d9:5d:86:
61:1e:d5:f2:8a:22:94:96:18:99:1e:99:1d:90:67:67:f2:e4:
fd:5a:4a:d1:7e:4b:d3:fd:6c:83:ce:ca:8f:29:2a:3c:96:3a:
b1:aa:de:4a:a9:89:19:fa:06:18:82:e3:4a:3b:b5:a6:2a:83:
89:fa:8f:86:2b:33:17:ef:e9:fc:01:9b:f6:b2:39:cb:53:82:
ac:53:da:9f:17:60:e4:87:36:60:09:59:48:7a:3f:93:58:c3:
cf:da:9c:6a:28:27:f4:03:8c:ae:41:64:94:56:e1:8d:e1:40:
34:70:0a:23:fa:4e:62:51:d6:fb:4e:2e:4a:e8:5d:0f:32:76:
f4:4d:6b:8b:b0:7c:d5:7f:75:46:34:21:56:bd:8e:40:df:58:
b1:a7:da:33:62:2c:9c:ed:cb:b5:5a:ca:25:a2:f0:a0:4c:d9:
28:77:a2:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 9 06:22:37 2025 by rpki-client