Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55B051DCA9B211F0B896117ADAE4EC9C.roa
File: 55B051DCA9B211F0B896117ADAE4EC9C.roa (raw, json)
Hash identifier: +Kv15MATDKyu49yjVV8PsBnNMhXWyR/90r9kKOROEmw=
Subject key identifier: C9:C0:59:AA:B3:A3:B6:30:7C:A7:01:16:81:E2:41:E7:35:05:DA:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A399
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55B051DCA9B211F0B896117ADAE4EC9C.roa
Signing time: Wed 15 Oct 2025 10:33:06 +0000
ROA not before: Wed 15 Oct 2025 10:33:01 +0000
ROA not after: Thu 20 Nov 2025 10:33:01 +0000
asID: 20326
IP address blocks: 154.198.176.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107417 (0x1a399)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 15 10:33:01 2025 GMT
Not After : Nov 20 10:33:01 2025 GMT
Subject: CN=68ef7862-7a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:28:87:17:4d:8b:93:69:26:6d:41:22:f1:d0:
32:bd:8b:cb:c1:47:b7:14:7a:1d:b0:60:fc:47:a3:
dc:b3:34:75:8a:0e:da:46:fd:84:19:50:78:db:b3:
ce:38:53:8e:4c:8b:44:2b:5b:73:19:84:36:14:a4:
88:ed:ed:67:e4:66:c0:44:67:cf:96:3c:0c:7c:e8:
4a:c9:51:eb:c7:78:6a:24:5f:a2:43:6e:38:a5:ed:
ab:49:0d:6c:a6:33:a8:a3:43:9f:98:7b:fe:8a:24:
a4:7c:8c:16:bf:33:3a:e7:9d:51:41:15:d1:53:10:
5f:db:ec:6c:26:ee:d7:9e:f8:b6:3e:b0:98:a2:56:
89:c3:df:5e:2d:30:e6:ff:b6:49:74:54:d7:fb:1c:
3f:3b:ce:a4:8e:3a:bf:21:04:32:1a:8a:f5:ec:aa:
6d:29:b8:11:ad:5a:56:13:ac:66:d9:52:cb:72:20:
63:d4:5e:7a:7a:b6:ba:89:41:24:0d:f9:87:f5:3f:
7e:90:03:ad:77:7c:59:36:9d:f4:7b:03:40:18:77:
b4:9e:47:e8:cf:9f:12:c7:35:45:d0:e5:38:a8:f6:
33:08:4a:96:21:b3:c1:99:73:1e:d6:f5:8b:ed:51:
86:a7:fe:73:a8:bb:21:72:5b:28:c2:4a:b5:a5:05:
00:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C0:59:AA:B3:A3:B6:30:7C:A7:01:16:81:E2:41:E7:35:05:DA:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55B051DCA9B211F0B896117ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.176.0/21
Signature Algorithm: sha256WithRSAEncryption
55:b9:27:00:39:df:03:a7:af:38:19:a5:a4:d6:0b:77:7c:f4:
a2:2d:7d:ea:58:e1:e3:2b:52:26:c0:0a:84:d2:8f:cd:40:a8:
5b:d4:97:66:48:9c:5e:f8:39:a9:8a:45:c0:15:de:d1:28:75:
73:39:1c:07:4d:6a:2a:04:57:80:cb:7f:1f:a0:29:26:1c:2c:
0b:c8:a3:2e:b9:66:6c:0e:dc:c1:2d:40:6f:6a:e1:8d:35:49:
27:ad:fb:a1:47:78:bb:7e:a3:15:68:40:f3:14:2c:28:36:89:
b3:84:f3:c5:a8:84:62:ef:80:57:c0:bd:be:ad:5e:e1:02:c4:
dd:2a:19:1e:7b:5b:cf:1b:c2:5f:78:51:2d:6f:6a:aa:fe:49:
56:5a:a2:ad:d8:88:59:53:53:65:05:6c:a2:f4:3b:41:4b:16:
ed:27:84:ab:41:df:27:27:1e:f6:9d:8a:b4:d9:55:57:06:38:
e5:3b:81:e7:50:2a:81:b3:59:6c:00:ff:4e:f1:4f:2d:76:30:
2d:d6:6a:e8:3c:8e:c4:30:ef:b3:e8:a4:2a:e3:43:13:cd:b6:
0b:11:cf:22:d1:8d:0a:86:0e:92:9d:ab:0f:67:e1:cc:e9:07:
b5:2c:84:86:05:5e:d0:45:e2:04:37:ad:29:a3:56:bc:ab:47:
07:e6:f3:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:18 2025 by rpki-client