Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5E869B25A7C11F0BB2BD6DDDAE4EC9C.roa
File: A5E869B25A7C11F0BB2BD6DDDAE4EC9C.roa (raw, json)
Hash identifier: ikYMT0RXnd0nPnw63C6Gg/YYBgPgR8/U9+uyL+XcQUQ=
Subject key identifier: D2:96:A3:CE:1B:54:8F:39:2F:3A:4C:EE:35:0C:78:F1:E8:F0:8B:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018B82
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5E869B25A7C11F0BB2BD6DDDAE4EC9C.roa
Signing time: Sun 06 Jul 2025 15:19:46 +0000
ROA not before: Sun 06 Jul 2025 15:19:41 +0000
ROA not after: Wed 03 Sep 2025 15:19:41 +0000
asID: 135377
IP address blocks: 154.83.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:06:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101250 (0x18b82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 6 15:19:41 2025 GMT
Not After : Sep 3 15:19:41 2025 GMT
Subject: CN=686a9412-f78f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b6:e1:98:b1:46:c9:1b:e3:26:53:e3:b4:dd:
e9:84:1f:4f:03:99:89:ab:d2:34:79:1b:47:96:ab:
87:0a:68:bc:39:1c:a7:07:09:10:6b:c8:21:1a:9b:
36:58:cb:1b:dd:0f:68:10:ca:c7:3f:82:48:63:22:
03:66:61:bd:d0:f6:e2:9a:20:c6:5a:03:e0:f9:7e:
ee:ee:aa:db:ac:26:aa:c7:d7:a8:b9:f8:43:d5:84:
0c:82:a3:12:ef:80:ef:c6:12:9a:5e:c3:70:a0:8e:
a2:3b:f5:e5:18:1a:85:74:eb:fc:e3:a1:bf:89:5b:
65:b1:a4:49:00:af:af:09:13:9a:70:83:ec:37:f4:
24:9c:c7:1a:bb:43:ca:3d:2d:3b:1a:a0:04:bf:0e:
fe:c4:78:7e:dd:ba:53:84:b3:96:51:ea:cc:24:70:
62:0b:71:37:f5:fc:26:a3:38:54:a1:f9:03:3e:c5:
41:ed:58:e0:8e:b2:69:5d:6a:59:18:4b:72:19:e6:
92:82:5f:d5:b9:d1:e5:14:36:b3:e6:5b:80:a3:2e:
23:74:e5:89:de:71:8e:bd:7c:a2:28:38:63:41:a8:
b2:fe:f5:d9:44:bb:08:36:54:25:0e:c2:e6:0c:78:
7c:f4:26:07:7a:87:3b:dd:c4:10:6f:94:62:fe:62:
c0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:96:A3:CE:1B:54:8F:39:2F:3A:4C:EE:35:0C:78:F1:E8:F0:8B:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A5E869B25A7C11F0BB2BD6DDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.198.0/24
Signature Algorithm: sha256WithRSAEncryption
62:7c:03:bc:14:da:ff:ac:7d:d2:b8:98:fa:aa:b4:ea:93:3c:
26:ea:ca:9d:b8:7d:a4:0b:14:24:6b:62:cd:be:2b:81:e0:0b:
2b:82:3e:fe:6d:05:dd:ba:01:4d:a1:1d:89:84:16:88:f6:41:
d6:0c:45:1a:d7:03:28:a5:5d:83:02:63:d9:6d:c4:81:16:32:
78:91:d1:2c:77:26:9f:1c:b0:bf:0f:e9:5c:ae:9e:96:f6:b9:
0f:16:d9:61:01:82:04:e6:5a:db:29:53:86:a1:41:77:48:d4:
04:45:2e:ad:99:8d:a7:90:e8:20:7f:cd:7b:61:f4:67:30:ad:
a7:e8:f1:20:8c:1e:d3:79:a7:f2:2d:41:1a:d9:d6:c5:6f:7d:
c5:d4:8e:69:d1:8b:4c:e9:64:73:09:a8:88:c9:5f:49:4f:b6:
16:03:ef:72:fc:3e:49:a8:2c:ab:ab:74:e6:31:ca:71:31:3f:
cd:53:aa:54:77:df:11:47:b1:be:8a:7c:42:80:60:ea:8c:f9:
8b:a5:e5:44:b4:ea:56:6d:73:98:23:93:d4:08:44:67:f0:ac:
a2:b7:2b:4a:8c:9a:60:9a:aa:c8:a2:fd:99:f7:d2:d0:3a:3e:
57:fb:8b:0d:8d:08:56:b1:51:a4:77:3b:8f:6c:f5:b1:62:7f:
4d:9d:c4:e9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAYuCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNzA2MTUxOTQxWhcNMjUwOTAzMTUxOTQxWjAYMRYw
FAYDVQQDEw02ODZhOTQxMi1mNzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAprbhmLFGyRvjJlPjtN3phB9PA5mJq9I0eRtHlquHCmi8ORynBwkQa8gh
Gps2WMsb3Q9oEMrHP4JIYyIDZmG90PbimiDGWgPg+X7u7qrbrCaqx9eoufhD1YQM
gqMS74DvxhKaXsNwoI6iO/XlGBqFdOv846G/iVtlsaRJAK+vCROacIPsN/QknMca
u0PKPS07GqAEvw7+xHh+3bpThLOWUerMJHBiC3E39fwmozhUofkDPsVB7VjgjrJp
XWpZGEtyGeaSgl/VudHlFDaz5luAoy4jdOWJ3nGOvXyiKDhjQaiy/vXZRLsINlQl
DsLmDHh89CYHeoc73cQQb5Ri/mLAYwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNKW
o84bVI85LzpM7jUMePHo8ItrMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BNUU4NjlCMjVBN0MxMUYwQkIyQkQ2REREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlPGMA0GCSqGSIb3DQEB
CwUAA4IBAQBifAO8FNr/rH3SuJj6qrTqkzwm6sqduH2kCxQka2LNviuB4Asrgj7+
bQXdugFNoR2JhBaI9kHWDEUa1wMopV2DAmPZbcSBFjJ4kdEsdyafHLC/D+lcrp6W
9rkPFtlhAYIE5lrbKVOGoUF3SNQERS6tmY2nkOggf817YfRnMK2n6PEgjB7Teafy
LUEa2dbFb33F1I5p0YtM6WRzCaiIyV9JT7YWA+9y/D5JqCyrq3TmMcpxMT/NU6pU
d98RR7G+inxCgGDqjPmLpeVEtOpWbXOYI5PUCERn8KyitytKjJpgmqrIov2Z99LQ
Oj5X+4sNjQhWsVGkdzuPbPWxYn9NncTp
-----END CERTIFICATE-----
Generated at Sun Jul 20 22:35:41 2025 by rpki-client