Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/283272568C7C11F0AF036E9CDAE4EC9C.roa
File: 283272568C7C11F0AF036E9CDAE4EC9C.roa (raw, json)
Hash identifier: rHKYvlSgdJo02E+VGVf76aBSdjzG1Tg7dp+Dlb3mBnU=
Subject key identifier: 62:D3:51:04:03:05:8B:04:E8:B5:BF:90:D1:F8:CC:04:2A:10:AC:B9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019E8E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/283272568C7C11F0AF036E9CDAE4EC9C.roa
Signing time: Mon 08 Sep 2025 06:22:13 +0000
ROA not before: Mon 08 Sep 2025 06:22:08 +0000
ROA not after: Sun 05 Oct 2025 06:22:08 +0000
asID: 54600
IP address blocks: 154.89.144.0/20 maxlen: 24
154.89.160.0/19 maxlen: 24
154.89.192.0/20 maxlen: 24
154.90.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 17 Sep 2025 00:06:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106126 (0x19e8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 8 06:22:08 2025 GMT
Not After : Oct 5 06:22:08 2025 GMT
Subject: CN=68be7615-ecdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:38:3e:26:32:2c:b9:b0:bc:cf:26:47:75:14:
6f:a0:a7:17:1a:73:e8:c9:73:26:57:e7:e2:db:24:
2e:1c:6d:cc:c2:be:21:6f:dd:88:db:12:9c:1e:f9:
30:e6:64:12:d1:c5:9c:07:09:ff:aa:6f:f4:8f:e4:
3b:e0:b5:ee:64:75:41:8f:a5:1a:0b:4e:37:b1:ed:
6f:b6:60:11:fe:8c:f6:19:91:03:2e:29:82:71:b2:
7c:b5:86:4e:72:9a:d6:ab:9d:31:5b:16:1c:bc:03:
51:a5:13:7f:2e:65:0e:82:80:09:21:43:be:8e:c0:
c2:ef:6c:61:b5:3b:c8:96:a2:6c:48:9d:91:ea:b4:
1c:14:da:ba:e1:f0:58:a5:d2:73:e2:70:85:d0:0c:
79:53:10:b6:da:67:ca:11:29:7c:91:1a:aa:3e:57:
09:17:28:e2:4f:f7:3e:14:03:1c:e0:ae:7e:96:f9:
44:20:18:5b:fa:59:79:d6:24:51:63:66:5d:29:61:
74:91:29:a5:2b:60:b6:5f:e9:f2:cf:1a:b4:86:2e:
1f:7d:d9:60:72:d2:ae:d2:36:93:ae:7d:d0:d5:cc:
53:06:57:47:f7:bf:3b:8e:ae:31:50:47:2b:19:d1:
54:d0:70:cb:86:f9:c9:4b:8f:77:86:57:37:8c:c1:
50:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D3:51:04:03:05:8B:04:E8:B5:BF:90:D1:F8:CC:04:2A:10:AC:B9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/283272568C7C11F0AF036E9CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.144.0-154.89.207.255
154.90.224.0/19
Signature Algorithm: sha256WithRSAEncryption
79:b8:8b:fe:fa:64:be:e0:4b:66:6f:98:31:da:c3:3f:5f:7c:
43:b0:72:df:cb:51:af:7f:48:73:36:00:8b:cd:31:32:d4:c6:
07:c6:88:4c:71:41:96:99:b7:3e:36:ce:2d:09:6e:d5:42:1e:
b1:a6:0d:84:b4:ff:7d:0b:91:22:1f:9f:77:5b:6b:cf:ef:65:
c5:8a:f5:0e:9a:97:93:cc:fb:b9:64:b5:95:f7:8f:e5:77:8b:
d7:6e:bf:76:60:cb:83:e8:0b:34:b3:13:5d:4f:82:c2:97:31:
e4:fb:62:9d:85:dc:10:e8:ff:62:62:b9:71:e4:1c:35:c0:de:
52:bc:5c:c8:52:b1:63:2b:23:7f:c0:22:9b:a7:02:39:6a:a2:
64:3a:8b:1e:a9:6a:9c:f5:a6:a9:bc:cd:31:c8:8f:2b:48:3c:
7f:8d:0c:c6:9d:da:e9:54:46:d8:cd:47:ff:cd:5d:17:53:6a:
aa:2a:70:07:66:bd:06:ff:c2:31:db:90:35:33:43:16:ab:71:
fc:26:dd:8b:fd:b5:01:63:3d:cf:19:d7:cc:53:42:56:23:96:
ad:27:ca:f9:d6:6c:16:cc:5e:c2:53:ad:1e:77:d2:71:58:8f:
5a:4c:37:f0:a8:a4:d6:55:80:86:7b:02:4a:7e:01:f8:a0:c8:
42:af:1f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 15 04:58:24 2025 by rpki-client