Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0D1B5ACAC0B911F09C864ED7DAE4EC9C.roa
File: 0D1B5ACAC0B911F09C864ED7DAE4EC9C.roa (raw, json)
Hash identifier: AgRplIauba5765+tvWRiVscphZl8gv219e5nw0hmLew=
Subject key identifier: 49:24:FF:4A:DE:2D:EE:01:9B:9B:4D:B8:ED:9F:E8:7C:64:1A:EB:EE
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1CAB
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0D1B5ACAC0B911F09C864ED7DAE4EC9C.roa
Signing time: Thu 13 Nov 2025 17:49:07 +0000
ROA not before: Thu 13 Nov 2025 17:48:57 +0000
ROA not after: Sat 13 Nov 2027 17:48:57 +0000
asID: 32132
IP address blocks: 154.16.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 16 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7339 (0x1cab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Nov 13 17:48:57 2025 GMT
Not After : Nov 13 17:48:57 2027 GMT
Subject: CN=69161a13-fe29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:43:05:b5:0e:90:5b:f8:32:65:29:95:ef:40:
b0:a5:17:33:8c:46:34:4a:e7:8e:0d:10:64:68:35:
ab:ce:d6:ff:7d:c2:95:b1:51:8e:20:7e:ee:70:1b:
71:e0:f9:24:4e:b7:4e:b0:8f:0d:33:39:47:1b:21:
9b:77:da:8b:6f:0d:c8:32:ee:1a:da:e3:50:27:4b:
10:73:be:6d:e3:7a:b6:a2:73:c4:03:47:7c:1d:2f:
b9:a6:7a:05:8e:73:06:a9:91:16:97:ff:22:44:6b:
89:53:d7:da:e9:0b:6f:d8:e7:f4:4c:1a:b5:65:0f:
2c:4f:c4:07:84:42:07:2e:cc:fb:94:a3:28:3c:c6:
8f:d7:0f:18:fb:01:47:d4:09:47:06:5c:01:0c:12:
a3:05:23:27:a8:7e:78:aa:6b:6a:1a:48:cb:d9:5a:
6c:5f:c4:e9:fb:a2:5f:78:81:ff:24:c3:ab:d3:32:
49:61:25:68:ac:04:95:6c:61:cd:43:28:8c:bc:b7:
39:11:00:e7:d3:2c:6b:6d:68:16:f8:60:df:e9:0c:
69:80:85:81:42:9b:0b:26:7a:38:d3:a2:a3:ea:d8:
df:a7:5d:59:75:5b:9e:1f:33:28:7a:57:fe:ba:a6:
40:fe:ad:b7:29:f9:c2:ff:e7:c0:04:10:a9:ad:18:
13:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:24:FF:4A:DE:2D:EE:01:9B:9B:4D:B8:ED:9F:E8:7C:64:1A:EB:EE
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0D1B5ACAC0B911F09C864ED7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.92.0/24
Signature Algorithm: sha256WithRSAEncryption
53:6d:7a:7a:6f:36:db:84:40:4a:87:5f:af:48:64:8f:c6:df:
e5:ef:69:94:6f:20:6c:09:12:6a:d2:ca:89:c4:45:f1:c9:c4:
4d:83:3a:ed:6f:5f:63:be:b4:f1:df:94:72:fc:00:6c:e3:91:
1f:47:78:59:15:d7:db:a3:99:15:02:f5:5d:76:12:8d:1a:79:
2d:2d:41:d7:14:94:75:2a:6d:54:d9:80:ae:67:10:35:c2:69:
fa:cb:80:3a:d2:e3:20:60:30:b7:de:63:d9:c8:5c:95:8a:90:
ab:42:71:eb:ee:a8:44:9a:d2:84:3b:d2:23:46:50:7f:bc:00:
df:ed:5e:5d:43:ac:dd:68:13:bf:c1:c3:d1:e3:6c:a7:cd:76:
b4:8f:42:cf:70:c8:7c:f9:6e:a2:5b:e9:4c:8e:1c:a4:a6:b2:
4e:13:30:d5:1f:7e:b8:98:44:43:27:44:0a:e2:2c:87:69:62:
22:d1:7f:61:a9:7c:99:62:ca:75:fc:30:15:e9:52:ec:16:a9:
c3:7a:2d:5b:c5:e9:98:6e:5e:58:43:3e:b9:bf:aa:4e:11:bb:
12:89:50:41:c1:31:85:9a:71:ae:4a:f6:b4:3c:f1:48:93:02:
6e:34:26:7c:4b:6d:d7:8e:4f:a7:14:fa:83:40:45:f9:2a:c2:
06:51:e3:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 14 03:57:41 2025 by rpki-client