Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E90BB888B3CE11F097762D86DAE4EC9C.roa
File: E90BB888B3CE11F097762D86DAE4EC9C.roa (raw, json)
Hash identifier: 7gOTmjPu2CtXvd5usOMnzIZY+VNGjWmI2sRyWtyongg=
Subject key identifier: FE:36:FE:38:1E:80:F9:7B:C4:9F:71:AB:1F:1E:E0:2D:C3:6E:EC:F0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A5C1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E90BB888B3CE11F097762D86DAE4EC9C.roa
Signing time: Tue 28 Oct 2025 07:22:51 +0000
ROA not before: Tue 28 Oct 2025 07:22:46 +0000
ROA not after: Mon 03 Nov 2025 07:22:46 +0000
asID: 61461
IP address blocks: 154.216.192.0/18 maxlen: 24
154.218.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Nov 2025 00:06:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107969 (0x1a5c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 28 07:22:46 2025 GMT
Not After : Nov 3 07:22:46 2025 GMT
Subject: CN=69006f4a-443a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:57:d0:23:88:a4:9c:fa:2c:ad:d2:df:d9:45:
1f:2c:22:21:d4:9a:78:a3:48:b1:02:a9:62:d1:0e:
2e:5e:10:92:02:8c:c0:60:ac:4a:7d:08:3b:51:2b:
6a:25:30:54:fc:d7:59:f4:03:a0:12:4c:80:47:b7:
01:35:5a:f8:20:99:90:01:1c:99:3b:f2:f6:a8:fd:
5f:8a:b6:2b:2d:e6:a6:76:3a:c5:4b:27:d7:bd:2f:
d4:20:a6:84:e0:43:7c:37:09:7f:d2:15:f5:be:90:
11:33:fd:d8:ad:10:b6:f2:2a:09:e9:a7:8b:a3:cc:
6f:1e:53:f4:0b:c8:99:5e:8b:27:70:36:9e:6f:c6:
03:8e:16:44:99:17:01:b7:57:3d:48:47:98:9a:39:
71:46:45:d3:6f:94:8f:b5:d1:cb:5d:db:ec:31:02:
70:0c:0e:2a:9a:51:7a:92:c5:94:2d:56:94:d9:32:
c7:07:d2:26:11:ef:f6:e5:49:e2:dc:3f:71:16:5e:
c2:00:2c:83:c3:05:bb:b6:2a:ee:9f:35:37:fd:64:
fe:92:63:91:82:47:78:09:54:c3:0c:42:8e:6e:fa:
aa:f1:6e:19:94:1d:f1:a0:bf:0e:e0:df:4d:df:73:
a5:ec:df:04:de:49:1b:03:f2:e9:de:e2:fb:3f:97:
2a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:36:FE:38:1E:80:F9:7B:C4:9F:71:AB:1F:1E:E0:2D:C3:6E:EC:F0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E90BB888B3CE11F097762D86DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.192.0/18
154.218.192.0/18
Signature Algorithm: sha256WithRSAEncryption
39:db:5c:72:fd:ab:57:a9:f0:35:01:f6:f3:51:51:92:52:f8:
fc:d7:f2:41:2c:24:ab:9c:55:7a:34:48:cc:4a:7a:a5:f6:e1:
ba:a2:d1:7a:4e:d5:af:5b:2d:a8:45:e6:17:61:7f:d2:23:3e:
bb:fc:e1:fd:e1:8f:bf:24:f3:9c:3b:b1:31:5a:97:44:b9:ce:
2d:16:c2:b5:e2:b3:28:88:ea:91:aa:68:0b:79:1e:c0:49:66:
28:74:c4:e4:e2:67:6c:21:85:88:a6:6e:fb:75:5d:6d:14:f8:
9f:27:b6:44:9e:1d:df:29:bb:11:2f:38:c0:1a:3c:ed:b4:2d:
9e:dd:a4:b6:87:c2:09:4b:47:d6:9e:91:87:25:f3:f5:73:a4:
0a:d1:6b:a0:bb:c0:c1:74:8a:46:ca:34:0f:2e:e2:9c:9b:58:
51:19:09:ab:87:23:74:36:17:ce:c6:9f:4a:63:80:03:e8:98:
8a:96:e3:06:87:39:e6:91:fa:1c:66:98:da:06:56:8d:55:a5:
93:6b:93:a8:3a:53:d6:23:2f:cb:7b:e0:3b:c2:6d:e3:f7:1b:
10:f3:91:e6:23:c9:05:31:11:0a:77:d6:05:cc:32:af:dc:f0:
12:96:a6:2b:8c:92:6d:93:11:22:96:e7:fc:86:99:15:a3:9e:
2b:8c:17:b8
-----BEGIN CERTIFICATE-----
MIIFijCCBHKgAwIBAgIDAaXBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMDI4MDcyMjQ2WhcNMjUxMTAzMDcyMjQ2WjAYMRYw
FAYDVQQDEw02OTAwNmY0YS00NDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8lfQI4iknPosrdLf2UUfLCIh1Jp4o0ixAqli0Q4uXhCSAozAYKxKfQg7
UStqJTBU/NdZ9AOgEkyAR7cBNVr4IJmQARyZO/L2qP1firYrLeamdjrFSyfXvS/U
IKaE4EN8Nwl/0hX1vpARM/3YrRC28ioJ6aeLo8xvHlP0C8iZXosncDaeb8YDjhZE
mRcBt1c9SEeYmjlxRkXTb5SPtdHLXdvsMQJwDA4qmlF6ksWULVaU2TLHB9ImEe/2
5Uni3D9xFl7CACyDwwW7tirunzU3/WT+kmORgkd4CVTDDEKObvqq8W4ZlB3xoL8O
4N9N33Ol7N8E3kkbA/Lp3uL7P5cqawIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFP42
/jgegPl7xJ9xqx8e4C3DbuzwMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FOTBCQjg4OEIzQ0UxMUYwOTc3NjJEODZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQGmtjAAwQGmtrAMA0GCSqG
SIb3DQEBCwUAA4IBAQA521xy/atXqfA1AfbzUVGSUvj81/JBLCSrnFV6NEjMSnql
9uG6otF6TtWvWy2oReYXYX/SIz67/OH94Y+/JPOcO7ExWpdEuc4tFsK14rMoiOqR
qmgLeR7ASWYodMTk4mdsIYWIpm77dV1tFPifJ7ZEnh3fKbsRLzjAGjzttC2e3aS2
h8IJS0fWnpGHJfP1c6QK0Wugu8DBdIpGyjQPLuKcm1hRGQmrhyN0NhfOxp9KY4AD
6JiKluMGhznmkfocZpjaBlaNVaWTa5OoOlPWIy/Le+A7wm3j9xsQ85HmI8kFMREK
d9YFzDKv3PASlqYrjJJtkxEiluf8hpkVo54rjBe4
-----END CERTIFICATE-----
Generated at Sat Nov 1 20:09:59 2025 by rpki-client