Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FDB8D66833211F0BE06499ADAE4EC9C.roa
File: 1FDB8D66833211F0BE06499ADAE4EC9C.roa (raw, json)
Hash identifier: w6YjfNOmSBt6mkYAVrJfE8X3+jA1V6qzEWB+W1Wr4QY=
Subject key identifier: 42:93:C3:F2:EE:8A:A7:1F:F2:73:9B:E5:FE:3D:9E:DC:2B:2A:8D:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01986D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FDB8D66833211F0BE06499ADAE4EC9C.roa
Signing time: Wed 27 Aug 2025 10:39:36 +0000
ROA not before: Wed 27 Aug 2025 10:39:31 +0000
ROA not after: Fri 03 Oct 2025 10:39:31 +0000
asID: 23470
IP address blocks: 154.202.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104557 (0x1986d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 27 10:39:31 2025 GMT
Not After : Oct 3 10:39:31 2025 GMT
Subject: CN=68aee068-2741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5b:f0:10:2d:5f:fe:f9:a8:c5:d1:99:cc:d9:
62:8c:61:88:62:7e:84:f4:87:8e:76:80:f0:2a:0a:
81:49:18:c1:99:1f:64:fc:2f:48:c0:17:4d:5e:22:
66:79:2d:de:99:a6:a6:2e:7a:e8:6b:b6:09:37:5c:
9e:d8:55:db:91:b9:c0:a6:ac:65:60:40:58:0c:6a:
16:e9:77:29:c1:42:87:36:1b:57:76:26:b4:92:0d:
02:d0:00:57:cb:9c:41:cd:2c:e3:b1:0d:1d:e6:8a:
15:1e:64:08:41:d7:3f:1f:2e:98:b4:95:9d:9e:b1:
c7:a5:cc:95:f5:4f:1b:ac:b1:b9:c0:6e:6e:12:4f:
77:69:bb:0e:1b:9d:f4:92:bd:42:98:02:44:81:4f:
9d:0a:8f:51:45:11:5f:e8:27:c0:a3:a8:29:ae:77:
67:3b:ed:d5:c0:f9:13:e6:81:dd:d0:4c:88:2d:07:
9c:21:d6:0a:22:ef:be:7b:1d:d0:53:d6:5a:6b:e3:
6c:f6:be:ac:d4:67:4a:33:46:1c:c3:2f:d1:62:cc:
89:7d:dc:f8:82:a3:f0:47:38:d4:2d:39:af:ff:76:
85:68:10:8e:dc:c5:fe:00:9c:58:c8:ec:4a:6f:2a:
e2:6d:4d:3c:e0:0c:6d:97:a9:0d:d1:db:28:a8:64:
20:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:93:C3:F2:EE:8A:A7:1F:F2:73:9B:E5:FE:3D:9E:DC:2B:2A:8D:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FDB8D66833211F0BE06499ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.0.0/24
Signature Algorithm: sha256WithRSAEncryption
60:65:77:6c:cf:25:a1:58:4e:e1:a5:7c:8a:f1:e2:bc:c6:c3:
85:1d:2b:9d:ff:40:0a:56:2e:4d:63:19:2b:9e:a9:72:10:05:
e5:c1:2f:d5:eb:e9:f4:9a:5b:1a:1d:81:5a:1b:a2:98:98:f6:
d2:90:0c:df:7f:03:e9:19:10:52:cb:a3:a4:3f:b0:3f:43:e6:
d6:62:1b:87:f9:da:02:5f:fb:c7:4a:bf:e9:03:4a:9b:5c:71:
a4:e3:b8:ec:69:a8:d5:7d:44:25:5f:95:70:fd:b9:e8:b8:27:
81:7a:42:33:6f:95:12:29:3c:60:42:be:c0:1d:50:dc:5d:c5:
f3:7b:eb:13:f8:0d:ec:44:91:4d:96:c8:85:8e:d5:c6:2a:60:
01:5b:f2:70:8d:0a:a1:30:d5:d6:66:74:4d:65:08:11:50:c1:
fd:1d:2f:58:e4:37:24:03:57:3a:e3:b7:ab:06:74:9f:43:f7:
1d:18:a7:b1:9f:a2:28:44:03:47:7f:ca:db:c5:3b:5c:74:22:
79:a2:16:7f:ad:c5:db:ba:0b:9c:0c:e2:f6:19:4b:fd:05:e2:
6e:76:cc:94:01:7e:98:1c:dd:74:be:2e:3c:6b:f9:3b:f2:01:
70:05:f2:59:f4:e2:7f:17:55:f8:86:e9:85:7c:f4:e7:be:ec:
9b:90:ab:b7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAZhtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODI3MTAzOTMxWhcNMjUxMDAzMTAzOTMxWjAYMRYw
FAYDVQQDEw02OGFlZTA2OC0yNzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxVvwEC1f/vmoxdGZzNlijGGIYn6E9IeOdoDwKgqBSRjBmR9k/C9IwBdN
XiJmeS3emaamLnroa7YJN1ye2FXbkbnApqxlYEBYDGoW6XcpwUKHNhtXdia0kg0C
0ABXy5xBzSzjsQ0d5ooVHmQIQdc/Hy6YtJWdnrHHpcyV9U8brLG5wG5uEk93absO
G530kr1CmAJEgU+dCo9RRRFf6CfAo6gprndnO+3VwPkT5oHd0EyILQecIdYKIu++
ex3QU9Zaa+Ns9r6s1GdKM0Ycwy/RYsyJfdz4gqPwRzjULTmv/3aFaBCO3MX+AJxY
yOxKbyribU084Axtl6kN0dsoqGQgXQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEKT
w/Luiqcf8nOb5f49ntwrKo0OMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRkRCOEQ2NjgzMzIxMUYwQkUwNjQ5OUFEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsoAMA0GCSqGSIb3DQEB
CwUAA4IBAQBgZXdszyWhWE7hpXyK8eK8xsOFHSud/0AKVi5NYxkrnqlyEAXlwS/V
6+n0mlsaHYFaG6KYmPbSkAzffwPpGRBSy6OkP7A/Q+bWYhuH+doCX/vHSr/pA0qb
XHGk47jsaajVfUQlX5Vw/bnouCeBekIzb5USKTxgQr7AHVDcXcXze+sT+A3sRJFN
lsiFjtXGKmABW/JwjQqhMNXWZnRNZQgRUMH9HS9Y5DckA1c647erBnSfQ/cdGKex
n6IoRANHf8rbxTtcdCJ5ohZ/rcXbugucDOL2GUv9BeJudsyUAX6YHN10vi48a/k7
8gFwBfJZ9OJ/F1X4humFfPTnvuybkKu3
-----END CERTIFICATE-----
Generated at Wed Sep 3 18:30:31 2025 by rpki-client