Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08921684A5B511F0964BB5B9DAE4EC9C.roa
File: 08921684A5B511F0964BB5B9DAE4EC9C.roa (raw, json)
Hash identifier: 6durI5OkcM7zxG9KYjpIIsxprbOBSr2N5OrziBsHD0M=
Subject key identifier: 0D:D1:69:5F:F4:9B:3F:6D:23:9B:F5:8A:51:65:68:B5:62:A9:B0:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A337
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08921684A5B511F0964BB5B9DAE4EC9C.roa
Signing time: Fri 10 Oct 2025 08:42:20 +0000
ROA not before: Fri 10 Oct 2025 08:42:13 +0000
ROA not after: Sun 16 Nov 2025 08:42:13 +0000
asID: 395793
IP address blocks: 154.83.8.0/24 maxlen: 24
154.83.9.0/24 maxlen: 24
154.83.10.0/24 maxlen: 24
154.83.11.0/24 maxlen: 24
154.83.24.0/24 maxlen: 24
154.91.152.0/24 maxlen: 24
154.91.153.0/24 maxlen: 24
154.91.154.0/24 maxlen: 24
154.91.155.0/24 maxlen: 24
154.91.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107319 (0x1a337)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 10 08:42:13 2025 GMT
Not After : Nov 16 08:42:13 2025 GMT
Subject: CN=68e8c6ec-d501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:43:d1:25:7e:5e:0b:d5:4f:83:e5:06:fc:76:
5b:b6:64:f6:6d:b4:9e:6f:88:7e:ec:52:a9:4e:19:
b8:c8:a5:09:e7:9d:14:da:e8:70:eb:2f:e1:fb:08:
d7:a3:26:ce:e9:e6:44:e6:28:2b:3f:15:75:28:23:
cf:16:f7:a5:4a:13:2a:3a:1a:02:39:31:fd:9a:fd:
bd:39:f0:e1:f5:77:60:2f:94:92:e1:8a:a1:4b:2e:
8b:b3:12:8f:b4:d8:52:4e:ce:cf:22:11:a2:bf:85:
ba:b8:9f:94:c2:7c:83:88:79:3a:b7:0a:c1:9c:ff:
9d:e3:e7:4a:2c:88:2f:56:a2:0d:5a:43:c3:01:23:
be:b2:70:1f:12:cd:3a:87:71:79:7e:c7:ae:e2:b7:
74:8e:ab:ca:b1:f6:fa:f3:41:bf:f8:a8:3c:db:2f:
7b:9f:00:ce:d7:ca:09:03:6d:0a:6e:3f:1a:46:61:
50:d2:d1:ab:cc:10:d0:4e:4e:a0:36:79:90:9c:05:
72:2c:80:33:67:61:68:d8:88:06:70:42:8f:1a:a2:
99:7b:7c:6c:43:2c:e4:ed:bf:8e:4c:f4:45:08:b0:
66:5f:cb:03:19:ae:2a:84:f9:6f:5a:1b:c8:52:13:
fe:56:aa:dc:c7:cd:23:c8:fa:b9:5d:dd:cb:41:be:
13:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:D1:69:5F:F4:9B:3F:6D:23:9B:F5:8A:51:65:68:B5:62:A9:B0:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08921684A5B511F0964BB5B9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.8.0/22
154.83.24.0/24
154.91.152.0-154.91.156.255
Signature Algorithm: sha256WithRSAEncryption
75:cd:60:42:db:0e:2a:2c:c8:77:44:11:fc:47:e1:b0:20:8a:
04:dd:74:d6:e1:67:b3:9f:9c:e6:d1:f1:23:7f:00:9d:e2:76:
6d:d2:85:10:fb:cb:3c:94:ca:fa:2e:95:75:f7:ce:79:a9:0c:
63:95:d0:01:3a:2f:8c:98:42:d6:97:a6:cd:5d:06:91:d8:2d:
32:c9:5b:86:c5:f1:6f:5c:f6:7e:c4:0c:65:33:5c:50:b5:e9:
47:5e:3d:9e:7e:b8:ca:b4:c3:8f:ee:47:70:c1:d0:d0:41:d9:
0f:85:15:64:54:02:14:bf:49:0c:b4:8d:bb:0c:b0:be:0d:06:
44:51:f0:d4:43:f9:fc:aa:26:f1:22:c6:7c:d2:b6:44:bc:5f:
63:a0:17:6e:86:e9:b1:03:47:67:ae:53:20:65:9a:3d:ff:4e:
5b:d9:8f:d4:a7:e7:eb:19:ea:d6:c2:ba:98:3b:d9:8e:16:6d:
86:29:6e:91:2a:23:09:e9:4b:3d:4c:1a:f1:b9:9f:c5:87:8d:
a5:aa:d3:fd:aa:e5:eb:bf:15:ae:f6:ec:b1:79:bc:1c:be:bb:
61:fe:3d:5c:8b:dc:32:a3:b9:d1:9f:33:c7:98:2d:91:d4:36:
1c:d6:f4:6c:84:3e:f7:7a:68:67:3d:7f:b7:e6:6b:d3:e2:4a:
a1:ea:65:12
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgIDAaM3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMDEwMDg0MjEzWhcNMjUxMTE2MDg0MjEzWjAYMRYw
FAYDVQQDEw02OGU4YzZlYy1kNTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0UPRJX5eC9VPg+UG/HZbtmT2bbSeb4h+7FKpThm4yKUJ550U2uhw6y/h
+wjXoybO6eZE5igrPxV1KCPPFvelShMqOhoCOTH9mv29OfDh9XdgL5SS4YqhSy6L
sxKPtNhSTs7PIhGiv4W6uJ+UwnyDiHk6twrBnP+d4+dKLIgvVqINWkPDASO+snAf
Es06h3F5fseu4rd0jqvKsfb680G/+Kg82y97nwDO18oJA20Kbj8aRmFQ0tGrzBDQ
Tk6gNnmQnAVyLIAzZ2Fo2IgGcEKPGqKZe3xsQyzk7b+OTPRFCLBmX8sDGa4qhPlv
WhvIUhP+Vqrcx80jyPq5Xd3LQb4TkQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFA3R
aV/0mz9tI5v1ilFlaLViqbDjMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wODkyMTY4NEE1QjUxMUYwOTY0QkI1QjlEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQCmlMIAwQAmlMYMAwDBAOa
W5gDBACaW5wwDQYJKoZIhvcNAQELBQADggEBAHXNYELbDiosyHdEEfxH4bAgigTd
dNbhZ7OfnObR8SN/AJ3idm3ShRD7yzyUyvoulXX3znmpDGOV0AE6L4yYQtaXps1d
BpHYLTLJW4bF8W9c9n7EDGUzXFC16UdePZ5+uMq0w4/uR3DB0NBB2Q+FFWRUAhS/
SQy0jbsMsL4NBkRR8NRD+fyqJvEixnzStkS8X2OgF26G6bEDR2euUyBlmj3/TlvZ
j9Sn5+sZ6tbCupg72Y4WbYYpbpEqIwnpSz1MGvG5n8WHjaWq0/2q5eu/Fa727LF5
vBy+u2H+PVyL3DKjudGfM8eYLZHUNhzW9GyEPvd6aGc9f7fma9PiSqHqZRI=
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:00 2025 by rpki-client