Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A5A8FFC88B711F0B5F9069DDAE4EC9C.roa
File: 5A5A8FFC88B711F0B5F9069DDAE4EC9C.roa (raw, json)
Hash identifier: X24ggVpxDcjgUkNPj3XNrSuze4Oxwh+LVECPs7y6oEE=
Subject key identifier: 37:5F:0F:4F:E4:72:EA:4C:8F:51:19:5F:62:08:9B:BE:44:40:07:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019CF6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A5A8FFC88B711F0B5F9069DDAE4EC9C.roa
Signing time: Wed 03 Sep 2025 11:15:53 +0000
ROA not before: Wed 03 Sep 2025 11:15:46 +0000
ROA not after: Fri 10 Oct 2025 11:15:46 +0000
asID: 203020
IP address blocks: 154.217.52.0/24 maxlen: 24
154.217.53.0/24 maxlen: 24
154.217.54.0/24 maxlen: 24
154.217.55.0/24 maxlen: 24
154.217.56.0/24 maxlen: 24
154.217.57.0/24 maxlen: 24
154.217.58.0/24 maxlen: 24
154.217.59.0/24 maxlen: 24
154.217.60.0/24 maxlen: 24
154.217.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105718 (0x19cf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 3 11:15:46 2025 GMT
Not After : Oct 10 11:15:46 2025 GMT
Subject: CN=68b82369-0b5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7f:76:35:fe:d5:74:c1:c7:d4:d4:96:96:97:
95:72:1f:e5:e1:8c:a5:13:04:7d:60:9c:de:15:47:
e5:30:3a:97:98:52:63:dc:69:c7:5b:aa:74:65:80:
89:f4:b7:8c:cf:48:ff:2f:b9:26:64:f6:78:94:38:
9f:94:73:e5:09:37:d1:3a:9b:ce:01:08:6d:7b:83:
11:72:c8:34:d9:c8:3a:05:33:39:92:fa:8e:59:e3:
b1:e5:fe:e9:f4:ee:12:ea:82:63:d7:40:36:61:36:
1d:73:9e:9d:3c:74:48:ee:c1:71:39:f0:25:bc:bc:
c7:fe:ae:9b:08:16:cd:c3:fb:47:f9:2d:29:54:7a:
ee:5e:1c:09:3b:e5:2b:bd:2e:7b:28:a1:c0:cc:1b:
74:d8:a0:51:3c:c6:95:38:f3:ba:d5:9d:fe:4d:14:
c4:21:9b:f5:e3:9a:53:63:98:9d:9b:1d:1a:30:e3:
d8:c3:dd:62:09:5a:a3:09:34:58:62:77:a4:0d:82:
8a:b8:bb:bb:73:30:59:dd:6c:27:69:ef:e4:f7:64:
7f:0f:6e:46:1d:09:e6:86:8c:50:ed:5a:62:f8:b8:
c3:43:15:1a:89:b7:e1:f1:fc:6a:eb:15:c9:45:5a:
37:53:29:60:e5:b4:e2:f4:26:6e:01:bd:a9:73:6d:
b8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5F:0F:4F:E4:72:EA:4C:8F:51:19:5F:62:08:9B:BE:44:40:07:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5A5A8FFC88B711F0B5F9069DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.52.0-154.217.61.255
Signature Algorithm: sha256WithRSAEncryption
a1:0a:c3:e2:ec:01:22:7c:83:fb:ff:8c:aa:09:3d:98:dc:7e:
52:9d:17:aa:1b:a6:fa:2b:b0:14:cc:7b:81:37:91:09:4b:3f:
47:39:5d:e9:9e:88:66:b3:b0:ba:77:f2:23:fc:39:fc:66:ee:
17:a2:35:13:08:e3:c6:48:3a:0d:70:37:a4:1b:d5:6c:ef:84:
b8:80:64:41:7a:aa:0d:b3:bf:5c:b4:33:7b:e4:dc:90:e3:d5:
9b:01:03:e4:ab:a5:c1:73:01:62:4a:1a:b0:20:f3:05:5d:e5:
a3:61:4e:67:69:ec:43:ff:6f:83:f8:8e:2a:f1:c7:99:c8:42:
7b:a6:e2:19:2b:ae:ad:44:38:38:16:be:68:7f:02:ca:59:55:
f9:8e:43:5d:e3:85:41:d4:a6:59:4b:15:07:f2:95:b2:af:0c:
c9:c9:ed:80:c6:54:a3:8c:d9:ee:35:ad:f8:de:63:16:8e:c1:
ce:ab:b8:47:22:f1:d2:b6:90:0a:48:46:71:8d:c1:57:a0:84:
7b:99:73:0b:ad:90:e2:1a:60:ff:50:72:89:73:d1:15:48:8f:
d6:84:1e:7c:0c:cb:4f:81:d9:11:0a:81:b7:42:1a:08:6c:a9:
03:58:55:a0:fa:89:77:ac:07:63:e6:57:7a:64:4d:67:24:d9:
58:3b:db:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:37:38 2025 by rpki-client