Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/274FCA6499EC11F0818D99D2DAE4EC9C.roa
File: 274FCA6499EC11F0818D99D2DAE4EC9C.roa (raw, json)
Hash identifier: A/yLIRTePt1GqadjYlZ+G2iK2T+ttSnC6rYx5vE2PbM=
Subject key identifier: 83:2B:68:7D:F7:C9:E9:31:14:8C:56:3E:B2:49:8C:C8:FD:1B:7D:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A0E5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/274FCA6499EC11F0818D99D2DAE4EC9C.roa
Signing time: Thu 25 Sep 2025 08:46:40 +0000
ROA not before: Thu 25 Sep 2025 08:46:35 +0000
ROA not after: Sat 15 Nov 2025 08:46:35 +0000
asID: 138915
IP address blocks: 154.205.128.0/24 maxlen: 24
154.205.129.0/24 maxlen: 24
154.205.130.0/24 maxlen: 24
154.205.131.0/24 maxlen: 24
154.205.132.0/24 maxlen: 24
154.205.133.0/24 maxlen: 24
154.205.134.0/24 maxlen: 24
154.205.135.0/24 maxlen: 24
154.205.136.0/23 maxlen: 24
154.205.138.0/24 maxlen: 24
154.205.139.0/24 maxlen: 24
154.205.140.0/24 maxlen: 24
154.205.142.0/23 maxlen: 24
154.205.145.0/24 maxlen: 24
154.205.154.0/24 maxlen: 24
154.205.155.0/24 maxlen: 24
154.205.156.0/24 maxlen: 24
154.205.157.0/24 maxlen: 24
154.205.158.0/24 maxlen: 24
154.205.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106725 (0x1a0e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 25 08:46:35 2025 GMT
Not After : Nov 15 08:46:35 2025 GMT
Subject: CN=68d50170-e1d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:3d:73:5b:a6:38:d2:64:a3:69:15:17:42:d0:
e7:27:40:d3:e9:61:81:87:c1:98:3f:bc:0f:ba:15:
02:d4:9b:e0:c3:46:b1:1f:65:63:5f:7a:a5:56:e6:
e7:f5:0d:01:95:13:81:84:ee:35:c6:4e:34:91:df:
36:2e:2f:55:ff:f8:64:5e:93:33:38:0f:2f:b1:63:
cd:56:9f:88:6c:a8:83:4b:52:fc:87:8c:f8:50:7b:
5f:da:dc:8f:a4:2e:9f:97:b1:e9:d4:f6:91:14:1a:
ea:41:1a:cd:31:5a:bb:80:c7:36:82:7a:5c:cf:e4:
7f:0c:39:be:a6:d0:61:e1:f8:f4:01:37:82:31:32:
ab:0c:49:7d:ad:5d:22:35:5a:b6:ee:93:48:ff:cf:
32:a1:e4:80:bf:45:25:16:23:b8:7b:9c:a0:89:84:
ea:7d:57:6c:fe:73:55:c0:ef:44:63:b8:52:f2:91:
aa:e7:47:45:7b:69:26:20:55:ea:6c:34:38:60:19:
84:60:1f:48:fb:ef:a4:c5:3b:e9:50:9e:8a:22:2d:
28:d9:ea:6e:e1:8d:51:09:86:99:45:a5:36:d1:e4:
e8:8a:9b:13:dc:2e:66:32:a6:dd:ee:87:b6:15:2a:
76:c3:27:4f:e2:45:85:ce:f5:68:9a:11:36:87:43:
2c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2B:68:7D:F7:C9:E9:31:14:8C:56:3E:B2:49:8C:C8:FD:1B:7D:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/274FCA6499EC11F0818D99D2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.128.0-154.205.140.255
154.205.142.0/23
154.205.145.0/24
154.205.154.0-154.205.159.255
Signature Algorithm: sha256WithRSAEncryption
74:2e:4c:ff:09:f1:04:66:1f:ac:f0:1d:c4:03:da:3d:c2:31:
ec:8d:58:79:7c:fe:a0:81:cd:9b:94:4d:fd:24:44:28:4d:41:
9f:56:34:72:81:73:b7:b3:43:0d:11:24:86:df:94:99:65:8e:
b9:2b:ee:24:70:17:23:e4:1e:ca:7c:18:3d:cd:b2:3c:8d:5e:
34:4b:9d:36:7b:d7:95:6c:d9:84:fd:c7:6e:47:7d:70:80:31:
7e:20:45:ec:f1:90:77:04:6c:7b:b0:49:b3:58:cc:fe:27:9c:
d8:ab:08:6c:5f:eb:97:70:af:57:b6:3d:2e:62:af:0f:c9:cb:
07:b2:60:0a:9a:80:a7:a6:e6:c3:16:ae:ec:1d:09:a5:86:f6:
11:df:cf:f5:c5:6d:5c:86:5e:34:88:80:05:e9:99:55:10:76:
0f:7d:07:20:f6:b8:f2:08:38:32:dc:e2:77:2a:00:a2:35:c9:
4a:3d:32:67:f0:eb:6e:76:02:9f:9a:92:94:eb:a8:86:c2:23:
cb:02:25:e8:16:67:64:14:c9:c1:3a:a2:5f:68:4f:95:f2:ed:
61:15:8d:a0:b6:00:bf:11:67:c2:85:c3:38:76:01:5f:5f:07:
12:0e:c0:3f:4d:3a:c9:20:a5:ce:91:ba:7b:f8:3b:85:6d:c3:
8a:e9:7c:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:50 2025 by rpki-client