Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26EA7614946011F08E3225ECDAE4EC9C.roa
File: 26EA7614946011F08E3225ECDAE4EC9C.roa (raw, json)
Hash identifier: w7rQsmzjDFjjLNVNzo9x8MMKuB6iA53AuqUPdFcO3tA=
Subject key identifier: 22:C2:1C:5B:09:9D:33:E1:57:CA:6F:3F:2A:D3:A8:6F:C6:F9:2A:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019FF1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26EA7614946011F08E3225ECDAE4EC9C.roa
Signing time: Thu 18 Sep 2025 07:21:54 +0000
ROA not before: Thu 18 Sep 2025 07:21:50 +0000
ROA not after: Tue 21 Oct 2025 07:21:50 +0000
asID: 209242
IP address blocks: 154.198.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106481 (0x19ff1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 18 07:21:50 2025 GMT
Not After : Oct 21 07:21:50 2025 GMT
Subject: CN=68cbb312-05b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7b:b8:bb:22:09:1f:0f:ec:47:c8:41:72:b3:
d5:0e:56:9a:ae:23:b7:bb:3e:01:03:75:a2:f4:78:
8e:a4:f0:ae:39:0e:bd:50:04:5e:9f:8d:35:e7:51:
9b:be:5c:af:a7:59:1e:5f:17:b7:62:c8:ae:8e:65:
a7:c9:32:47:c9:3a:0c:b4:78:73:b3:5f:3f:4e:69:
6b:ac:99:65:51:74:93:7d:34:09:7f:91:24:23:5b:
e6:39:d6:61:ea:0a:93:95:e1:f7:67:a9:39:33:99:
ae:3a:11:09:7f:56:fa:1c:3b:e5:b2:8e:39:22:c2:
cf:98:3d:19:40:5d:fb:45:3f:19:47:c9:b5:e0:f1:
d3:0b:e5:fc:6b:22:0e:40:84:1b:9d:84:24:28:79:
4e:60:ca:97:8f:35:47:4d:6d:62:b9:c9:c0:6e:6e:
e8:36:9d:cd:28:c4:6d:bc:35:09:bf:12:50:b5:57:
e2:ad:6a:96:aa:03:a7:71:b5:0c:62:d5:86:78:7d:
85:49:d6:cb:b8:a7:2d:f9:f9:24:51:d5:28:15:f8:
0f:db:da:02:ba:ee:31:a3:68:60:bd:6e:de:e2:45:
60:6f:06:0b:29:b2:7d:b1:2a:89:eb:b1:7f:c6:2d:
08:5c:a5:9a:16:42:f1:5b:98:b3:e5:5d:44:f0:99:
84:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C2:1C:5B:09:9D:33:E1:57:CA:6F:3F:2A:D3:A8:6F:C6:F9:2A:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26EA7614946011F08E3225ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.173.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:97:1f:80:08:6e:15:cb:55:ab:7e:12:96:c9:8f:a9:72:80:
3a:e2:f4:61:86:80:7c:de:b7:f6:d4:38:c6:a2:fe:ba:af:9c:
de:66:90:bf:72:71:85:99:fb:37:d9:70:25:e9:f5:38:24:b1:
ce:8f:19:03:42:57:9d:37:d1:e5:0d:ae:7b:c2:ce:de:9f:43:
34:fa:52:90:09:6a:f7:03:41:4d:76:2b:60:54:fc:d6:11:46:
2e:0b:06:13:e5:75:69:83:4a:3d:c5:f6:2e:31:79:ad:66:12:
aa:88:04:f6:b6:8b:30:c5:76:5d:30:ae:0c:6e:5b:93:e1:bd:
56:3c:41:03:19:6c:c5:68:11:88:b3:69:88:37:09:35:a5:65:
f3:97:d8:49:42:b9:f4:1e:4c:f0:70:06:8f:af:ea:45:8d:4f:
73:6d:25:d3:8e:f3:75:df:a0:d6:59:70:3a:6c:85:46:37:f6:
03:99:57:ce:36:c8:23:99:6a:73:81:3b:58:8e:81:91:87:01:
79:dc:d4:16:01:51:49:ba:08:4a:64:4a:25:8c:23:37:da:be:
3a:7b:5e:90:db:65:12:b5:b6:c0:c1:93:5b:f0:e7:2c:a9:26:
2f:be:4e:b3:98:8b:3f:92:1a:e6:6f:e3:da:bf:5f:fd:fc:04:
62:46:49:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:28 2025 by rpki-client