Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0011E8E0828811F08DCA02BADAE4EC9C.roa
File: 0011E8E0828811F08DCA02BADAE4EC9C.roa (raw, json)
Hash identifier: c+wNgv6AgtIp5fbpsPaSHrxEjiqqa7hmWJX7frxkaX8=
Subject key identifier: 06:85:BF:D6:A9:30:82:92:CF:BC:05:43:50:A1:A6:62:29:E7:18:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0197CA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0011E8E0828811F08DCA02BADAE4EC9C.roa
Signing time: Tue 26 Aug 2025 14:21:48 +0000
ROA not before: Tue 26 Aug 2025 14:21:43 +0000
ROA not after: Thu 02 Oct 2025 14:21:43 +0000
asID: 984
IP address blocks: 154.82.132.0/24 maxlen: 24
154.82.135.0/24 maxlen: 24
154.90.133.0/24 maxlen: 24
154.95.2.0/24 maxlen: 24
154.95.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104394 (0x197ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 26 14:21:43 2025 GMT
Not After : Oct 2 14:21:43 2025 GMT
Subject: CN=68adc2fc-33ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8d:f3:c9:bd:60:bb:13:cc:b6:e2:2f:7f:ed:
62:2e:6f:30:5e:54:0d:71:88:24:8f:86:5f:7e:c6:
1f:40:33:aa:67:1a:a3:0c:38:4f:90:70:4b:ba:a2:
d0:58:f9:17:66:04:4e:d7:13:b5:da:8b:cf:bf:5b:
cd:31:94:b9:b0:40:28:16:d4:bd:16:5f:f0:98:e3:
55:6c:c0:7f:46:6a:f9:bd:a0:84:c7:2f:4b:ba:a7:
c4:0e:3f:52:8d:4d:e6:6d:3b:1b:99:97:28:df:27:
7e:a2:8b:7a:d4:af:3d:b6:20:39:73:87:a2:1f:68:
29:98:4c:a8:05:0d:92:74:8f:79:4a:99:dd:ac:22:
cf:db:12:46:ea:71:24:55:80:33:9a:4f:1b:a5:c1:
bf:d3:8b:52:50:9f:75:67:4a:58:41:35:b3:20:20:
40:7c:89:78:8d:f6:bb:2f:cf:d6:17:8e:61:dd:13:
b9:69:d9:4b:b0:8f:82:69:32:41:f1:73:97:72:8d:
92:53:43:92:14:75:37:be:35:37:c5:b3:e7:04:9c:
28:8c:f5:5c:9c:2e:3e:4f:82:79:09:4a:a8:d5:99:
d2:87:c8:c2:e9:ef:37:6d:12:7d:a5:03:07:ef:f9:
f2:d7:aa:ec:6f:5d:1d:12:a4:44:df:5c:e6:dd:8a:
b2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:85:BF:D6:A9:30:82:92:CF:BC:05:43:50:A1:A6:62:29:E7:18:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0011E8E0828811F08DCA02BADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.132.0/24
154.82.135.0/24
154.90.133.0/24
154.95.2.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:29:35:6b:36:80:83:b0:22:a5:0b:fa:f4:74:be:e8:94:fb:
0b:1e:dc:f9:da:f2:2f:81:3c:8a:91:61:7c:a8:7e:39:0b:cf:
75:ee:9a:a4:d3:6e:16:c2:bc:f0:57:24:09:b1:0d:14:3a:8d:
f3:0a:06:bc:92:38:ad:50:ab:d9:01:76:09:95:83:83:3b:02:
4f:16:60:1c:61:00:8c:6e:e1:aa:d4:25:67:bc:7f:fb:41:41:
b5:85:fd:7a:a0:3d:aa:74:90:c6:dc:09:1d:1d:06:b4:8a:1f:
f8:0d:8a:f4:70:01:12:77:eb:14:cd:a4:47:9d:42:30:24:40:
57:5a:ae:54:a4:ac:f8:0c:e6:1d:ef:0d:01:75:e7:8c:66:d9:
20:c7:39:a4:39:e8:ee:ee:18:0e:50:cf:bf:93:f1:fc:c0:c8:
5b:56:35:aa:11:6e:20:b2:32:c6:06:5c:cd:a8:e3:58:bc:fd:
60:c2:26:8d:2a:bb:24:eb:4b:79:7c:90:ec:7d:8f:e6:a3:37:
3a:0f:99:f7:08:93:73:7a:08:a8:a0:78:29:d4:f9:77:41:fd:
2c:71:bb:16:95:85:5e:d6:db:cc:6f:35:1d:69:de:08:7c:57:
61:66:5b:29:fb:48:2a:74:5d:6e:2a:0f:7c:bb:fe:13:4e:b8:
e5:4a:27:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:42:31 2025 by rpki-client