Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/183BBDCC87EE11F09756E78ADAE4EC9C.roa
File: 183BBDCC87EE11F09756E78ADAE4EC9C.roa (raw, json)
Hash identifier: TdZYFtz1oftyOHAFBtK4EsbMJ2Tg7ibEqFmcgbjAnCE=
Subject key identifier: D0:8D:D8:41:5C:E4:D4:43:1F:5A:6B:B7:07:09:08:AF:17:BA:7A:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019C13
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/183BBDCC87EE11F09756E78ADAE4EC9C.roa
Signing time: Tue 02 Sep 2025 11:15:13 +0000
ROA not before: Tue 02 Sep 2025 11:15:08 +0000
ROA not after: Fri 10 Oct 2025 11:15:08 +0000
asID: 401701
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105491 (0x19c13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 2 11:15:08 2025 GMT
Not After : Oct 10 11:15:08 2025 GMT
Subject: CN=68b6d1c1-94a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c4:f7:13:eb:ad:40:7e:44:f3:d7:43:bd:95:
e4:f6:cf:65:35:d3:52:27:09:f6:ed:30:54:b7:09:
15:0a:ce:00:c2:9b:23:61:ba:28:61:d7:8e:b0:01:
03:36:d9:f9:da:dd:8f:1c:b8:9e:42:44:5e:ad:2f:
f8:1b:dd:48:58:75:06:1a:74:90:f3:b3:dd:b4:b0:
ef:b4:9c:fa:f7:bc:6a:b0:34:13:3a:b1:93:13:23:
5c:19:37:2d:19:39:7e:d3:42:30:bf:94:c6:8e:fd:
35:ab:75:72:79:07:be:c0:df:e6:66:b2:a0:5d:78:
2f:82:b6:a6:99:42:94:ee:30:25:b4:34:66:13:af:
50:4d:9c:87:0c:63:73:64:ca:53:25:4d:54:71:99:
a3:de:1a:06:81:74:ca:54:c3:2c:34:50:c7:89:dd:
16:2e:3f:28:06:0e:f9:9e:96:14:0d:a6:f0:b4:24:
fa:cb:23:d8:a4:bb:ff:c6:f0:26:5f:82:88:68:b9:
50:35:85:56:d3:47:0a:38:6c:38:6d:25:48:1a:1a:
69:38:ce:25:32:74:c4:53:1a:9e:8a:c7:fb:63:6a:
6b:47:7e:29:77:fe:16:1f:f5:e8:24:e5:a6:b6:68:
35:d6:ac:74:87:84:74:e6:7e:e1:8b:b9:cc:61:4e:
55:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8D:D8:41:5C:E4:D4:43:1F:5A:6B:B7:07:09:08:AF:17:BA:7A:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/183BBDCC87EE11F09756E78ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
4a:c4:64:68:fc:9f:da:8a:d0:59:60:14:6c:ea:8c:4b:dc:c8:
ca:8b:fc:40:3a:a7:34:3f:ef:bb:7d:0e:98:bc:44:b6:90:41:
23:6e:0c:75:49:e0:2d:14:23:69:0d:04:24:97:8e:e6:eb:69:
58:b0:1a:ba:28:5d:81:be:32:d1:f1:48:82:58:13:d0:f1:12:
b8:d9:97:b6:f3:7d:6d:d0:9a:1b:8c:e3:5a:81:4b:f9:82:6c:
e4:75:2d:3b:1b:30:c9:df:fb:2f:4a:11:e5:89:df:70:90:db:
bf:72:53:e6:7e:51:1d:23:b6:4b:61:36:bc:f7:71:5a:c8:12:
d4:ce:4a:4f:3f:f8:ca:32:95:ef:59:c6:c8:6b:56:12:24:67:
f4:6b:1f:55:45:95:af:4d:69:e5:6c:e5:fa:2b:eb:6b:d9:1c:
2c:0c:02:15:df:6a:ed:02:d5:de:0c:52:09:5d:d4:37:2a:33:
fa:09:09:5f:99:0e:fc:4d:81:84:ae:8b:1a:23:4a:06:53:15:
95:f9:3b:dc:d1:e7:e3:2d:93:ce:04:8c:f5:da:33:62:37:c2:
8c:ca:4c:28:95:c4:a8:59:e8:34:bd:66:29:68:e1:bc:c6:1f:
f1:a6:6f:cb:59:f5:93:a8:55:08:97:5f:3a:b5:4f:b3:6e:3b:
33:78:bb:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:34:38 2025 by rpki-client