Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2B94B290AA9711F0B54B0397DAE4EC9C.roa
File: 2B94B290AA9711F0B54B0397DAE4EC9C.roa (raw, json)
Hash identifier: vCrDeeCQH8FjYIquhb7s2gyHVmD3qBlSZqu73Ic2Bxk=
Subject key identifier: AD:67:6F:B7:33:C7:8F:0D:68:8E:5F:1F:69:C0:3C:B7:E9:AF:E6:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A40B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2B94B290AA9711F0B54B0397DAE4EC9C.roa
Signing time: Thu 16 Oct 2025 13:51:10 +0000
ROA not before: Thu 16 Oct 2025 13:50:58 +0000
ROA not after: Fri 05 Dec 2025 13:50:58 +0000
asID: 20326
IP address blocks: 154.85.123.0/24 maxlen: 24
154.94.33.0/24 maxlen: 24
154.94.38.0/24 maxlen: 24
154.94.41.0/24 maxlen: 24
154.94.46.0/24 maxlen: 24
154.94.50.0/24 maxlen: 24
154.94.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107531 (0x1a40b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 16 13:50:58 2025 GMT
Not After : Dec 5 13:50:58 2025 GMT
Subject: CN=68f0f84e-be3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:52:f2:4d:0d:ce:59:36:58:3a:32:20:9d:2b:
af:d5:50:4e:e3:04:bf:3c:cc:55:55:58:27:b7:52:
bc:33:b9:2c:78:bd:fd:24:a6:c2:cf:cf:09:3c:6b:
0a:78:fd:ad:65:b8:50:76:d2:8e:1f:c0:45:75:49:
41:c1:94:76:75:a2:7a:cf:43:16:2a:53:41:68:a6:
4a:9a:a1:1f:5c:41:6a:ff:b7:54:64:a4:df:5a:1b:
28:ca:76:85:8f:a6:c4:8b:42:32:8b:02:5b:0e:4b:
05:21:a0:18:6a:3a:4a:48:85:40:9b:86:66:bb:b0:
b9:5b:1f:39:0d:f2:28:34:b6:e4:3c:c6:a0:26:f7:
21:7a:3a:9c:c9:8e:95:7a:68:1e:04:b3:fd:e9:22:
60:44:6f:63:c5:2b:e8:59:26:e4:4a:0d:17:32:40:
90:76:7e:04:49:c2:bb:39:06:e1:15:df:eb:47:d9:
ee:60:51:db:60:fe:be:42:3b:17:27:e0:35:65:b3:
1a:72:eb:c4:b2:aa:cf:3e:75:1d:7e:19:05:a9:af:
6f:0e:8b:45:4c:d5:32:28:60:61:03:fa:71:17:82:
d2:43:f3:86:1c:f6:53:e3:c4:2c:e0:26:38:72:6f:
73:96:5e:c0:b2:7c:4d:3e:35:81:a3:e3:4c:e2:9f:
dc:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:67:6F:B7:33:C7:8F:0D:68:8E:5F:1F:69:C0:3C:B7:E9:AF:E6:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2B94B290AA9711F0B54B0397DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.123.0/24
154.94.33.0/24
154.94.38.0/24
154.94.41.0/24
154.94.46.0/24
154.94.50.0/24
154.94.60.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:d0:c7:46:cb:86:5c:25:1d:e8:dd:09:12:9b:33:67:0c:8e:
34:cd:78:c7:52:f9:be:07:c9:1d:7f:58:c5:fc:80:3a:2b:9e:
a0:85:7d:fc:09:e5:b5:d9:86:6a:bb:63:20:65:b8:bc:28:53:
40:a6:27:3b:fc:77:49:4c:55:89:48:2c:27:a2:26:89:ae:b3:
bd:65:6d:a2:6f:27:2d:24:0a:8f:c9:36:a9:98:db:fc:86:01:
7f:1f:d6:5b:21:31:e9:11:2f:b9:fe:e0:fa:b6:b4:53:0d:f4:
54:31:e9:89:04:a4:81:57:17:c8:44:ba:77:c0:d4:a6:e4:63:
75:8c:ac:31:2b:e5:c2:94:f6:bf:f2:af:c5:25:d8:83:b7:41:
17:96:45:71:36:41:7a:23:b7:70:de:b1:d6:0e:2c:7f:57:f9:
79:03:ed:a7:da:49:51:f7:fb:6d:66:38:39:e9:d3:73:0c:3c:
84:82:d4:27:9f:d7:ed:a2:89:c2:95:1a:33:56:b3:c0:a0:e3:
83:5c:c0:21:8d:d9:12:78:69:e8:70:9a:eb:19:02:79:23:43:
a6:14:1c:9a:01:6d:56:4d:95:c9:d6:19:45:b8:23:cb:93:40:
1a:19:cc:c6:97:33:87:93:fd:b7:dd:32:87:41:81:4e:b0:8d:
82:ac:aa:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:39 2025 by rpki-client