Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/066B75FCBEF211F08C04CAA8DAE4EC9C.roa
File: 066B75FCBEF211F08C04CAA8DAE4EC9C.roa (raw, json)
Hash identifier: l8QiCZBK4527IgumrZRADJChcif0kT911wKkjVtC1I8=
Subject key identifier: DD:F5:DB:47:8C:BF:80:BA:C8:C1:04:E6:46:DE:F0:F3:C1:51:6B:8D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1CA0
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/066B75FCBEF211F08C04CAA8DAE4EC9C.roa
Signing time: Tue 11 Nov 2025 11:31:55 +0000
ROA not before: Tue 11 Nov 2025 11:31:49 +0000
ROA not after: Sat 06 Nov 2027 11:31:49 +0000
asID: 7029
IP address blocks: 154.16.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 16 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7328 (0x1ca0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Nov 11 11:31:49 2025 GMT
Not After : Nov 6 11:31:49 2027 GMT
Subject: CN=69131eab-8c51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:87:6c:8e:6c:5e:a2:30:1a:48:51:87:87:cf:
d2:00:d7:27:02:31:5f:98:64:dc:1f:0e:b0:4e:94:
7b:40:5d:d0:b9:17:6e:be:f5:7d:bb:e5:9d:73:a4:
ca:ff:b7:d5:c9:d9:b0:c3:ac:4b:d2:7a:ce:a3:7c:
c3:29:94:b8:b5:bd:da:de:24:22:e5:1d:48:19:48:
fc:6a:8a:d2:4c:11:85:7f:44:5e:7c:0f:f5:50:b3:
f8:f1:8a:5e:4a:61:6a:9d:f4:12:d9:c3:50:71:74:
58:08:57:66:dc:cc:ec:1a:98:c7:e0:a8:2a:45:ca:
6e:60:09:5a:24:11:aa:93:50:25:8c:f0:e1:14:d6:
0b:3c:80:89:8f:1c:2b:1e:e3:23:0a:2b:4e:ae:32:
07:3b:e1:11:56:5c:82:40:c6:21:0d:7c:43:df:80:
f8:48:c2:05:64:99:32:81:8b:29:26:95:ba:8c:8e:
b4:e5:ed:b7:c3:76:ee:4b:1c:51:5a:1f:10:02:7e:
f8:c5:8c:05:03:6c:3c:96:60:bd:dc:92:5e:8f:5e:
78:36:df:15:44:b9:f9:76:12:1e:e1:f5:14:c4:6e:
62:78:79:2a:15:4a:89:eb:7c:20:39:10:d7:c3:e4:
f9:c9:75:23:ae:fb:88:b4:d6:6a:ce:86:58:83:a5:
b0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F5:DB:47:8C:BF:80:BA:C8:C1:04:E6:46:DE:F0:F3:C1:51:6B:8D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/066B75FCBEF211F08C04CAA8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.13.0/24
Signature Algorithm: sha256WithRSAEncryption
92:58:74:7c:d0:a5:1c:2f:c2:49:1d:19:22:84:f0:3a:8c:c9:
ed:3b:65:ef:c4:86:a8:2e:2b:a7:c3:41:9c:7f:b6:ee:fc:26:
1d:93:d9:32:b6:b3:63:cd:01:db:60:ae:fa:87:0e:9b:1b:c9:
d1:63:14:d5:e8:c3:3a:44:ec:87:68:fb:63:90:18:54:35:34:
32:51:8a:49:08:5b:bd:7f:81:5b:e0:ba:50:ff:24:7e:ae:95:
e1:97:c9:0c:db:11:90:7b:81:05:92:66:d7:96:f1:03:bd:60:
f2:76:f7:4f:d5:f8:95:3f:35:07:49:1f:98:ed:72:f7:1e:c4:
b5:66:3a:cd:ff:88:bd:9a:42:c2:c2:9c:2a:88:10:81:69:6b:
04:b7:12:e3:f0:8a:75:ac:97:90:0f:5f:4f:64:b0:69:42:0e:
a6:4b:c6:08:66:1f:1f:2e:cc:13:c4:85:95:8d:59:aa:0d:87:
c9:ff:10:d2:97:7a:9c:71:32:de:c9:9b:8a:90:bb:38:81:f3:
58:46:8e:ff:3c:a3:bf:ca:59:a0:fd:23:ca:f3:c4:12:5f:a4:
d1:f9:f7:17:cb:a7:53:76:16:c4:24:ea:8d:9e:e8:12:00:34:
29:5c:4d:8b:65:56:fa:8d:fb:e4:16:d4:7d:49:ec:9d:bb:e7:
b4:92:35:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 14 03:51:42 2025 by rpki-client