Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7BCBECAAA52511F08C9B028EDAE4EC9C.roa
File: 7BCBECAAA52511F08C9B028EDAE4EC9C.roa (raw, json)
Hash identifier: Pi7M9NYbLGyiLJPD8a3dqtTXOIsFNRa7n2Eq4WERx+8=
Subject key identifier: 15:57:CF:E3:73:05:8C:E7:D2:66:BA:8A:45:44:02:62:6B:79:5B:9F
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1C48
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7BCBECAAA52511F08C9B028EDAE4EC9C.roa
Signing time: Thu 09 Oct 2025 15:34:46 +0000
ROA not before: Thu 09 Oct 2025 15:34:40 +0000
ROA not after: Sat 09 Oct 2027 15:34:40 +0000
asID: 401443
IP address blocks: 154.16.183.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 17 Oct 2025 11:04:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7240 (0x1c48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Oct 9 15:34:40 2025 GMT
Not After : Oct 9 15:34:40 2027 GMT
Subject: CN=68e7d616-8958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:98:83:6b:62:fd:bc:b3:d4:71:03:e9:de:be:
a1:ef:aa:f7:91:a1:48:ca:1e:0e:34:16:17:76:de:
11:2e:21:b2:4f:4d:01:1e:01:a7:36:23:20:bb:06:
0e:bc:dd:80:99:cf:d2:20:67:2a:ed:75:d0:27:91:
b1:2e:d5:82:4c:64:00:72:8f:25:e1:4d:11:06:ea:
d7:07:c7:f5:9a:59:0d:63:22:e4:18:a0:2a:a2:d6:
3d:71:d9:ee:fb:92:1f:9e:6a:a7:f8:88:3b:e2:4f:
14:04:bf:de:7f:7d:ae:c1:a0:52:b9:17:7d:57:87:
68:eb:ac:5f:05:1c:aa:27:03:ae:ab:62:4f:04:e1:
9d:32:93:9f:98:4e:f8:e7:55:ff:b9:12:b6:45:c2:
bf:8d:1a:6a:5b:98:c0:29:d0:c2:05:94:48:97:f6:
13:c3:41:1d:b0:70:18:fa:7e:46:f8:b5:4b:03:32:
a1:7b:aa:cc:42:24:57:a3:3b:50:d2:ef:ec:f8:b6:
ef:d0:c8:7d:d2:86:38:ae:59:f8:ae:18:70:53:66:
70:5a:f2:bf:db:e4:d2:65:97:0d:16:10:e4:28:1b:
e1:54:79:fa:05:ff:ef:03:c7:6f:66:5a:58:ef:ca:
7e:11:a3:41:b0:be:9c:30:88:56:5a:74:a1:b8:75:
22:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:57:CF:E3:73:05:8C:E7:D2:66:BA:8A:45:44:02:62:6B:79:5B:9F
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/7BCBECAAA52511F08C9B028EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.183.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:d9:b4:f4:c5:43:5c:53:44:73:c2:bc:1d:93:91:72:63:0a:
2a:e8:12:01:f5:e6:e2:f4:3e:a4:60:7d:ed:b3:8c:f6:04:70:
cb:14:d8:0e:d7:3e:1e:14:40:95:70:3c:ed:6f:64:82:76:76:
a8:c2:4c:ba:f5:b7:de:d2:d9:04:3a:ef:8b:86:cf:83:b3:ae:
90:28:13:bb:1f:d0:61:c1:2b:67:2f:6c:a4:4d:18:28:1c:e4:
5f:b7:3e:d1:7d:2c:c9:f5:75:91:56:dc:84:c2:78:5a:96:66:
83:3f:66:96:0f:90:5b:9b:fa:ac:91:90:3a:09:b0:9a:b0:ff:
7b:01:cc:36:a8:22:70:ba:95:9f:eb:ef:0c:64:d8:93:73:57:
28:4f:2a:44:de:e1:58:37:be:5d:01:2d:87:fa:72:6e:9d:f8:
ce:31:6d:63:02:c5:26:f8:60:4e:b8:ae:7b:18:67:2f:fc:cb:
c3:95:b6:ba:8c:18:8a:36:97:d9:e4:1d:6f:8b:a0:e9:a2:22:
24:22:63:5f:5f:d7:02:bd:bd:2e:ad:d7:20:3f:13:60:42:35:
6f:bb:d4:e6:af:5b:5b:57:c0:d5:e1:f8:b7:43:35:15:27:5d:
6e:91:c4:7f:29:87:0c:38:6e:9d:6b:2f:c9:cd:47:26:03:f3:
01:b1:fd:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 16 01:54:19 2025 by rpki-client