Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8945FE08FAD11F09C60A986DAE4EC9C.roa
File: D8945FE08FAD11F09C60A986DAE4EC9C.roa (raw, json)
Hash identifier: sMqQQM21VtglZLjkXZ53IJsBOXtbjiOcjmSOR+e5Ln4=
Subject key identifier: 6A:F6:E2:43:16:2A:8B:10:0B:43:4B:7A:26:33:B0:BB:69:25:F8:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019F70
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8945FE08FAD11F09C60A986DAE4EC9C.roa
Signing time: Fri 12 Sep 2025 07:55:28 +0000
ROA not before: Fri 12 Sep 2025 07:55:23 +0000
ROA not after: Sun 28 Sep 2025 07:55:23 +0000
asID: 3257
IP address blocks: 154.81.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106352 (0x19f70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 12 07:55:23 2025 GMT
Not After : Sep 28 07:55:23 2025 GMT
Subject: CN=68c3d1f0-9d50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:70:5c:ff:e1:1b:f2:f8:14:69:26:79:05:c3:
c6:09:c6:21:85:18:60:bb:4e:45:89:36:4b:64:59:
33:4d:28:0e:6e:e5:02:f5:e7:5f:cf:e0:da:5c:f2:
a3:6a:2b:c1:a1:60:3b:74:d4:c2:ff:7a:75:b0:d3:
6e:af:1a:3f:02:20:b7:41:a7:ad:cc:4a:ef:f7:79:
ab:bf:0e:c9:42:72:63:df:04:06:f3:e1:20:c0:b9:
79:88:cf:c9:0e:c3:f1:56:66:ed:33:78:ce:bb:70:
63:8f:30:db:3d:e2:3a:0d:36:83:0f:a9:e9:34:53:
f3:6d:d3:60:9e:58:e0:58:28:c0:94:47:b3:25:7f:
3d:77:99:ad:55:e4:e4:9b:d5:94:3c:05:11:29:35:
5f:31:d7:86:a4:3b:38:90:bc:28:27:e7:11:44:08:
89:e6:87:18:f3:ce:dd:e8:74:13:2f:13:10:c4:18:
0b:d8:70:17:2a:ba:7d:c4:49:f2:ef:e4:c3:0c:40:
a0:14:95:39:92:f5:34:7e:12:7c:cb:ea:79:af:57:
cd:86:e3:3f:d6:84:ab:84:fb:3a:e1:fe:ed:5f:11:
0c:93:8c:ec:00:21:29:a5:e4:1c:b3:07:c0:a9:2d:
a7:97:5f:24:69:47:3d:68:e7:d8:b9:87:5c:33:29:
d0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F6:E2:43:16:2A:8B:10:0B:43:4B:7A:26:33:B0:BB:69:25:F8:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D8945FE08FAD11F09C60A986DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.50.0/24
Signature Algorithm: sha256WithRSAEncryption
69:9f:0c:18:17:42:77:b0:ff:b5:df:b3:1a:d4:d7:90:98:2f:
40:fe:e5:28:d5:41:d5:a8:ea:3d:1c:c8:20:64:b2:6a:53:67:
92:40:cd:e9:27:0d:ea:b7:5c:8f:b8:f7:b4:c4:9a:af:9e:16:
8c:05:5e:b9:f5:89:34:93:31:78:1c:26:6e:7c:16:94:a5:4e:
89:c2:ff:3c:95:18:9b:35:80:9a:b2:4a:78:df:e9:b7:b2:73:
59:04:be:8e:8f:46:5c:b9:19:53:55:0a:25:17:1a:eb:9d:e5:
b0:15:8d:fd:cc:22:89:2c:0a:96:69:fa:cf:31:54:f6:ae:9a:
42:7b:ce:9a:65:e8:fa:bb:f2:08:d7:59:8f:7c:d5:41:1e:3a:
d6:fd:26:8b:35:26:fe:29:5b:fa:89:92:29:de:68:67:d4:e6:
37:48:1f:d8:2c:4b:d8:7b:2d:9d:a5:5c:c2:2d:56:ac:4b:68:
2b:a2:aa:5b:69:97:f1:98:69:3d:5e:62:cc:08:1c:92:5a:19:
83:38:2d:53:37:72:68:52:ec:9a:1b:71:2f:cc:6a:8f:60:9d:
2a:07:e6:0e:cc:68:c9:8b:6b:13:00:5f:e1:0d:d2:16:34:2b:
09:1b:ab:2d:f3:2e:c6:bc:d3:90:bd:6f:d0:99:0e:af:4f:79:
12:3a:d8:b1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAZ9wMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwOTEyMDc1NTIzWhcNMjUwOTI4MDc1NTIzWjAYMRYw
FAYDVQQDEw02OGMzZDFmMC05ZDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAz3Bc/+Eb8vgUaSZ5BcPGCcYhhRhgu05FiTZLZFkzTSgObuUC9edfz+Da
XPKjaivBoWA7dNTC/3p1sNNurxo/AiC3QaetzErv93mrvw7JQnJj3wQG8+EgwLl5
iM/JDsPxVmbtM3jOu3BjjzDbPeI6DTaDD6npNFPzbdNgnljgWCjAlEezJX89d5mt
VeTkm9WUPAURKTVfMdeGpDs4kLwoJ+cRRAiJ5ocY887d6HQTLxMQxBgL2HAXKrp9
xEny7+TDDECgFJU5kvU0fhJ8y+p5r1fNhuM/1oSrhPs64f7tXxEMk4zsACEppeQc
swfAqS2nl18kaUc9aOfYuYdcMynQXQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGr2
4kMWKosQC0NLeiYzsLtpJfgwMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EODk0NUZFMDhGQUQxMUYwOUM2MEE5ODZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlEyMA0GCSqGSIb3DQEB
CwUAA4IBAQBpnwwYF0J3sP+137Ma1NeQmC9A/uUo1UHVqOo9HMggZLJqU2eSQM3p
Jw3qt1yPuPe0xJqvnhaMBV659Yk0kzF4HCZufBaUpU6Jwv88lRibNYCaskp43+m3
snNZBL6Oj0ZcuRlTVQolFxrrneWwFY39zCKJLAqWafrPMVT2rppCe86aZej6u/II
11mPfNVBHjrW/SaLNSb+KVv6iZIp3mhn1OY3SB/YLEvYey2dpVzCLVasS2groqpb
aZfxmGk9XmLMCBySWhmDOC1TN3JoUuyaG3EvzGqPYJ0qB+YOzGjJi2sTAF/hDdIW
NCsJG6st8y7GvNOQvW/QmQ6vT3kSOtix
-----END CERTIFICATE-----
Generated at Tue Sep 16 05:14:17 2025 by rpki-client