Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4AA6D9089D6611F09464EECADAE4EC9C.roa
File: 4AA6D9089D6611F09464EECADAE4EC9C.roa (raw, json)
Hash identifier: LW5ES7Y6XGr2QnuBa2p/un90aIWDBJ2XburFwjat6k0=
Subject key identifier: 2C:50:00:07:4C:F4:9D:6A:ED:11:AF:01:A4:9F:43:1E:E7:61:18:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A17D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4AA6D9089D6611F09464EECADAE4EC9C.roa
Signing time: Mon 29 Sep 2025 18:58:32 +0000
ROA not before: Mon 29 Sep 2025 18:58:26 +0000
ROA not after: Fri 31 Oct 2025 18:58:26 +0000
asID: 44559
IP address blocks: 154.81.40.0/24 maxlen: 24
154.81.41.0/24 maxlen: 24
154.81.42.0/24 maxlen: 24
154.81.43.0/24 maxlen: 24
154.81.44.0/24 maxlen: 24
154.81.45.0/24 maxlen: 24
154.81.46.0/24 maxlen: 24
154.81.47.0/24 maxlen: 24
154.81.52.0/24 maxlen: 24
154.81.53.0/24 maxlen: 24
154.81.54.0/24 maxlen: 24
154.81.55.0/24 maxlen: 24
154.81.192.0/24 maxlen: 24
154.81.195.0/24 maxlen: 24
154.81.196.0/24 maxlen: 24
154.81.197.0/24 maxlen: 24
154.81.198.0/24 maxlen: 24
154.81.199.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106877 (0x1a17d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 18:58:26 2025 GMT
Not After : Oct 31 18:58:26 2025 GMT
Subject: CN=68dad6d8-468d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1e:01:60:55:74:75:59:18:ce:01:0e:23:2b:
9c:5d:37:c5:c5:76:5f:3d:36:a4:0b:1a:db:12:81:
c8:33:76:2b:0b:71:5b:b8:67:46:98:d4:1b:06:93:
b6:bf:86:4b:99:97:86:55:9e:4a:cd:29:22:f5:ae:
30:25:30:59:dd:f9:2d:92:4c:48:ee:2c:87:db:50:
e1:1c:35:c6:4e:7b:15:03:e7:d4:15:2f:d0:a8:90:
b7:3d:b0:c7:44:c8:1b:d8:68:b6:0a:c3:2e:21:29:
7d:8f:cf:e3:bc:f7:34:7b:e3:ea:71:db:e1:3e:c6:
8a:0c:b1:e9:28:dc:00:4a:2d:39:fd:5c:f2:60:bd:
6e:8d:40:c5:6d:80:77:0e:dc:56:36:4b:8f:57:d8:
2a:50:42:d0:8a:fa:d6:6d:75:1d:e6:f8:07:c4:ef:
81:94:36:51:fa:92:41:9f:2b:0a:da:62:ed:d4:9c:
b9:75:22:c2:69:d1:8b:c8:ef:b8:48:ae:8f:84:97:
e6:99:23:52:89:b2:4a:6e:48:05:b1:30:75:a8:88:
c8:6a:6c:80:15:37:5c:ed:85:7e:c8:2c:4f:18:35:
a4:f9:b2:d2:46:93:48:8f:39:e7:6c:10:79:83:9c:
8f:51:8a:d4:0a:cd:e7:3f:c4:64:2f:40:95:fa:73:
e3:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:50:00:07:4C:F4:9D:6A:ED:11:AF:01:A4:9F:43:1E:E7:61:18:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4AA6D9089D6611F09464EECADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.40.0/21
154.81.52.0/22
154.81.192.0/24
154.81.195.0-154.81.199.255
Signature Algorithm: sha256WithRSAEncryption
44:ac:a0:df:99:f6:68:9e:9b:4a:84:76:17:02:cd:1b:43:22:
3e:26:37:40:6c:09:83:99:93:d7:29:e5:a3:7e:ab:e8:b3:25:
25:b7:ab:c0:75:b7:5c:a3:b1:ca:eb:ce:b5:c8:4f:a1:e9:0b:
1c:27:71:19:8e:97:74:c5:67:f2:b7:b7:f1:aa:60:ae:ff:3a:
b2:2b:68:40:80:e3:da:6a:a3:bb:5e:18:e4:36:d0:fa:05:31:
30:2a:68:64:a0:37:48:38:f4:a6:04:77:9b:cb:8a:30:cb:90:
78:1e:be:27:38:41:8c:59:e4:81:2a:6a:89:a3:fa:21:10:9a:
c8:4c:94:4b:c0:d7:65:1c:92:1b:88:fc:7d:1f:eb:64:a5:40:
3f:6b:a9:20:7e:3c:1f:1f:af:44:3f:ad:db:3c:a4:30:aa:8d:
1a:52:3f:66:8f:ba:a8:ca:0f:00:bb:de:f9:19:a7:42:15:ad:
fa:18:bc:c4:26:b6:04:86:b2:01:19:21:f8:5b:a9:ab:a9:40:
4e:96:48:3b:4e:b7:87:84:c6:04:28:62:8d:43:8b:68:52:65:
03:e5:8c:75:1c:69:a4:4d:53:d0:d6:e7:7d:5f:ac:f1:cd:53:
d4:17:64:22:3d:aa:29:37:00:d9:62:44:16:b2:23:3b:2c:c8:
5e:d3:2e:ef
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIDAaF9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwOTI5MTg1ODI2WhcNMjUxMDMxMTg1ODI2WjAYMRYw
FAYDVQQDEw02OGRhZDZkOC00NjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2R4BYFV0dVkYzgEOIyucXTfFxXZfPTakCxrbEoHIM3YrC3FbuGdGmNQb
BpO2v4ZLmZeGVZ5KzSki9a4wJTBZ3fktkkxI7iyH21DhHDXGTnsVA+fUFS/QqJC3
PbDHRMgb2Gi2CsMuISl9j8/jvPc0e+PqcdvhPsaKDLHpKNwASi05/VzyYL1ujUDF
bYB3DtxWNkuPV9gqUELQivrWbXUd5vgHxO+BlDZR+pJBnysK2mLt1Jy5dSLCadGL
yO+4SK6PhJfmmSNSibJKbkgFsTB1qIjIamyAFTdc7YV+yCxPGDWk+bLSRpNIjznn
bBB5g5yPUYrUCs3nP8RkL0CV+nPj0QIDAQABo4ICvzCCArswHQYDVR0OBBYEFCxQ
AAdM9J1q7RGvAaSfQx7nYRjYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80QUE2RDkwODlENjYxMUYwOTQ2NEVFQ0FEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQDmlEoAwQCmlE0AwQAmlHA
MAwDBACaUcMDBAOaUcAwDQYJKoZIhvcNAQELBQADggEBAESsoN+Z9miem0qEdhcC
zRtDIj4mN0BsCYOZk9cp5aN+q+izJSW3q8B1t1yjscrrzrXIT6HpCxwncRmOl3TF
Z/K3t/GqYK7/OrIraECA49pqo7teGOQ20PoFMTAqaGSgN0g49KYEd5vLijDLkHge
vic4QYxZ5IEqaomj+iEQmshMlEvA12UckhuI/H0f62SlQD9rqSB+PB8fr0Q/rds8
pDCqjRpSP2aPuqjKDwC73vkZp0IVrfoYvMQmtgSGsgEZIfhbqaupQE6WSDtOt4eE
xgQoYo1Di2hSZQPljHUcaaRNU9DW531frPHNU9QXZCI9qik3ANliRBayIzssyF7T
Lu8=
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:53 2025 by rpki-client