Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1751EABE88B911F0BB3413A7DAE4EC9C.roa
File: 1751EABE88B911F0BB3413A7DAE4EC9C.roa (raw, json)
Hash identifier: ZSbNbEMHXh3vrbN0m+OjSiDSoOsCoPyaytYU8Q26db0=
Subject key identifier: 24:3A:A9:54:E1:94:08:FC:7F:56:06:55:6D:A7:2C:40:A1:BF:2B:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019CFA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1751EABE88B911F0BB3413A7DAE4EC9C.roa
Signing time: Wed 03 Sep 2025 11:28:19 +0000
ROA not before: Wed 03 Sep 2025 11:28:14 +0000
ROA not after: Fri 10 Oct 2025 11:28:14 +0000
asID: 203020
IP address blocks: 154.217.72.0/24 maxlen: 24
154.217.73.0/24 maxlen: 24
154.217.74.0/24 maxlen: 24
154.217.75.0/24 maxlen: 24
154.217.76.0/24 maxlen: 24
154.217.77.0/24 maxlen: 24
154.217.78.0/24 maxlen: 24
154.217.80.0/24 maxlen: 24
154.217.81.0/24 maxlen: 24
154.217.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105722 (0x19cfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 3 11:28:14 2025 GMT
Not After : Oct 10 11:28:14 2025 GMT
Subject: CN=68b82653-c2d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:79:9f:87:e2:e6:b3:2b:ec:f2:4d:87:13:6e:
d4:cb:c7:8f:51:94:ef:91:fd:86:b5:21:3e:8d:bd:
52:83:c9:fc:29:64:1e:9d:9d:eb:ea:43:55:ea:6f:
db:78:3c:4b:f4:36:6c:69:e5:71:94:5d:4d:de:b8:
2f:97:71:12:55:d3:92:b5:45:24:66:1c:e1:9e:2d:
c5:3e:dd:5a:6b:57:e7:55:b0:b2:96:c6:1b:93:69:
15:de:0b:9e:42:f8:5f:71:c4:c1:01:b2:3a:99:57:
f0:e7:93:f1:1e:30:cf:5c:54:86:9f:b9:7d:4b:39:
ae:d2:ef:e3:61:31:52:a5:61:3d:bd:ea:8b:ae:49:
d2:34:cc:ab:03:30:d9:97:eb:99:21:de:78:db:3b:
92:11:19:6b:a8:0e:b2:71:ad:dd:07:8e:0b:34:8e:
0d:e2:36:d6:ad:42:f9:be:b7:a5:c7:d4:ce:ea:b5:
33:d2:c1:6e:11:77:1c:41:cd:98:30:23:69:73:dd:
df:ee:d3:c9:ae:9b:09:3a:88:0d:c4:5b:a1:98:f5:
19:58:dc:b0:e5:14:55:01:bc:73:86:8f:ff:a8:09:
8d:17:92:31:d7:0d:f9:3c:b3:1c:8d:4a:1a:d3:83:
7d:6d:d4:13:65:97:f8:c1:9b:bf:e4:1e:55:d7:45:
0a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3A:A9:54:E1:94:08:FC:7F:56:06:55:6D:A7:2C:40:A1:BF:2B:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1751EABE88B911F0BB3413A7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.72.0-154.217.78.255
154.217.80.0-154.217.82.255
Signature Algorithm: sha256WithRSAEncryption
d6:3b:09:2c:65:28:8e:2c:c7:87:23:c7:bf:77:c8:35:c1:2d:
91:24:d8:ef:76:a8:6d:dc:ee:20:95:9e:fe:68:58:c8:e8:86:
da:83:db:9f:cd:d8:dc:01:ef:9e:f8:78:f4:54:17:51:24:8c:
aa:f7:d7:5d:b4:d6:37:4b:ed:aa:aa:45:c3:b8:74:73:78:e7:
55:5a:5e:45:f3:3d:3f:11:6f:92:bc:06:da:4e:ca:fb:9b:42:
76:70:ed:fa:9f:f8:4b:f7:71:db:8c:bb:8b:d2:11:78:c1:e1:
ac:c2:41:a5:cb:2a:cd:18:c1:ed:c3:80:91:15:00:dc:8e:54:
1e:fd:e1:65:c4:80:38:fa:f8:33:46:78:66:58:8c:14:e4:df:
bc:96:2a:8e:8a:13:3b:44:76:71:90:44:41:42:17:f3:bc:e0:
af:7a:ab:23:7a:9d:24:f9:27:b9:19:b8:0d:a9:22:7b:72:d0:
6a:e3:ad:8b:00:ee:91:6b:a9:39:50:90:70:da:02:0d:38:a4:
e5:a3:7c:ed:d3:86:1c:f8:d4:8a:58:a3:fd:91:54:72:fd:d6:
44:c0:73:8b:ce:ce:6e:a5:e3:fc:fa:73:ef:29:80:10:35:c6:
21:10:72:62:c3:ed:c2:24:5a:c5:72:3d:4e:5f:57:d0:1c:30:
f3:0a:8e:03
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Sep 3 18:42:23 2025 by rpki-client