Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04672C0E8A3D11F081AA828ADAE4EC9C.roa
File: 04672C0E8A3D11F081AA828ADAE4EC9C.roa (raw, json)
Hash identifier: 8YYnxzKrPXbq+41gv5Vv5sBoJd9k/c8DTZTTgGEdEmQ=
Subject key identifier: A3:57:87:E2:5C:65:69:F8:CD:23:76:66:AE:64:54:3F:3C:97:C5:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019E0A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04672C0E8A3D11F081AA828ADAE4EC9C.roa
Signing time: Fri 05 Sep 2025 09:45:12 +0000
ROA not before: Fri 05 Sep 2025 09:45:07 +0000
ROA not after: Fri 05 Dec 2025 09:45:07 +0000
asID: 18229
IP address blocks: 154.210.135.0/24 maxlen: 24
154.210.136.0/24 maxlen: 24
154.210.137.0/24 maxlen: 24
154.210.138.0/24 maxlen: 24
154.210.139.0/24 maxlen: 24
154.210.140.0/24 maxlen: 24
154.210.141.0/24 maxlen: 24
154.210.142.0/24 maxlen: 24
154.210.143.0/24 maxlen: 24
154.210.144.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105994 (0x19e0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 5 09:45:07 2025 GMT
Not After : Dec 5 09:45:07 2025 GMT
Subject: CN=68bab128-fc5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1f:38:db:ca:e8:0d:55:be:18:5d:17:01:8f:
84:3e:6f:12:7b:6a:21:b6:7f:46:dc:bf:b2:a0:16:
76:f1:3c:bf:2a:89:3a:30:b2:73:16:3e:21:40:b2:
9e:b4:c4:27:de:d0:8e:51:28:6c:8e:a9:0d:ab:75:
c4:0d:7e:74:70:83:0c:bc:d4:ef:12:5b:a8:a9:b9:
c0:e8:95:b2:e0:38:af:41:52:5a:eb:a7:d3:03:92:
93:4a:f7:1a:f9:25:e5:9e:cb:8a:61:af:3d:4a:42:
11:e9:e0:06:11:5b:66:25:1b:51:08:f1:a3:20:e3:
38:8a:30:d0:01:15:58:42:3d:a2:df:50:a6:51:35:
72:88:e1:53:ae:62:38:d1:2b:59:05:45:11:b2:8e:
2f:79:b2:05:7a:b6:4e:4e:77:bd:a9:12:38:55:4b:
6c:0d:b1:e0:3f:30:04:93:2a:90:41:61:c4:b5:f0:
3f:2a:a1:d3:b3:63:1a:e2:90:21:cf:04:50:0f:d3:
6d:f3:bb:f3:6a:b8:d5:10:47:43:64:51:4e:40:9b:
5e:28:03:24:bb:37:2b:7c:5b:47:fc:bf:cb:13:9b:
0a:ce:92:bb:0a:7b:f7:03:0a:ff:6e:e3:a6:83:09:
97:e7:2b:51:01:15:c0:e9:27:79:15:c6:4a:65:99:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:57:87:E2:5C:65:69:F8:CD:23:76:66:AE:64:54:3F:3C:97:C5:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/04672C0E8A3D11F081AA828ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.135.0-154.210.144.255
Signature Algorithm: sha256WithRSAEncryption
3a:03:77:64:38:17:b6:ba:c7:ba:12:3c:f2:bf:a8:91:b7:12:
01:b1:f6:1f:fd:4a:21:c1:25:92:a1:3b:01:87:6e:24:cd:29:
f1:15:d0:b6:38:db:95:00:7f:3e:59:da:61:74:9e:ea:f1:30:
60:45:26:e7:b9:96:28:1d:32:24:c4:7d:2b:8a:5f:6c:2a:72:
cf:5c:df:2c:87:35:8d:00:f2:78:13:8f:cd:b7:56:6c:42:b4:
b8:07:e5:9f:bf:8e:ea:ad:0b:8a:5c:68:c4:9b:cd:cd:14:72:
92:c8:8e:3c:03:d6:0a:2d:49:f4:de:f9:2c:c2:98:9e:ca:59:
17:21:a8:df:2a:98:a0:0c:0e:2c:95:eb:7b:32:24:ac:32:95:
7a:ca:77:23:09:40:6a:a8:ce:5b:20:9e:da:40:8d:09:af:90:
48:31:29:a9:af:44:fb:a7:4e:8f:23:7c:cd:2b:f0:a8:2d:43:
50:dc:1e:c4:8b:73:fd:d0:dd:1f:2e:9f:f8:2d:4a:5e:2a:9f:
a1:22:45:a1:ce:10:4f:0c:6e:40:45:77:7b:87:27:00:65:cd:
e9:b2:b8:15:06:22:90:5f:8b:42:f5:6d:7b:cb:47:61:45:ae:
7b:13:f5:9f:ef:b9:ce:4d:f8:9d:9f:08:bf:7b:6f:15:7e:fd:
31:24:1c:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:20 2025 by rpki-client