Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D3F94B0997911F0AB2A43DBDAE4EC9C.roa
File: 5D3F94B0997911F0AB2A43DBDAE4EC9C.roa (raw, json)
Hash identifier: DhGg/mpmdrZM+Q5RSltkqXUB4aYE+bB3+w/7IYqlphI=
Subject key identifier: F2:A7:2A:DB:76:3D:C2:FD:C2:87:A0:C9:15:9A:F5:D9:2F:A1:F2:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A0B8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D3F94B0997911F0AB2A43DBDAE4EC9C.roa
Signing time: Wed 24 Sep 2025 19:04:59 +0000
ROA not before: Wed 24 Sep 2025 19:04:53 +0000
ROA not after: Thu 30 Oct 2025 19:04:53 +0000
asID: 9304
IP address blocks: 154.82.134.0/24 maxlen: 24
154.82.148.0/24 maxlen: 24
154.82.153.0/24 maxlen: 24
154.82.158.0/24 maxlen: 24
154.82.196.0/24 maxlen: 24
154.82.197.0/24 maxlen: 24
154.82.198.0/24 maxlen: 24
154.82.199.0/24 maxlen: 24
154.83.65.0/24 maxlen: 24
154.83.67.0/24 maxlen: 24
154.89.132.0/24 maxlen: 24
154.90.65.0/24 maxlen: 24
154.90.67.0/24 maxlen: 24
154.90.128.0/24 maxlen: 24
154.90.134.0/24 maxlen: 24
154.90.136.0/24 maxlen: 24
154.90.137.0/24 maxlen: 24
154.90.140.0/24 maxlen: 24
154.90.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106680 (0x1a0b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 24 19:04:53 2025 GMT
Not After : Oct 30 19:04:53 2025 GMT
Subject: CN=68d440da-1dc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ea:70:cd:59:0c:53:93:ff:c5:02:96:6d:0c:
c1:a7:a8:df:64:9a:b3:3d:e2:0d:49:29:e6:68:d4:
ff:cb:6b:52:7e:26:25:55:15:b3:ba:49:a2:1a:7a:
7a:f0:65:9a:17:ae:8a:51:ff:f7:9f:70:62:86:ca:
f8:42:93:4f:9d:a4:a6:07:5d:16:72:ec:57:d3:60:
72:0d:f1:f3:b1:c0:bc:9d:ea:e9:f0:47:8a:09:69:
16:e3:6d:69:5b:04:87:75:76:41:8c:cd:54:b7:3c:
a0:7c:a8:98:db:c1:d2:3e:e7:47:cb:a2:d4:23:52:
ed:86:32:55:af:bb:f7:09:8d:78:37:35:87:96:d6:
2a:a2:53:13:69:67:12:75:28:d4:9d:65:e4:dd:88:
a1:31:d4:cf:5e:b3:46:2e:9f:5f:7c:50:2d:ac:1d:
75:a4:0e:d5:3a:d8:f6:e9:e9:cb:5e:58:f2:14:5f:
28:f8:8c:53:aa:91:3e:c0:76:44:10:5b:42:9e:a9:
76:4d:4b:7f:5e:a3:7c:fe:19:92:9c:09:92:f1:b8:
2b:96:dc:c7:b9:13:71:83:e1:30:6b:56:fb:d2:df:
31:82:9a:16:e7:48:0a:40:cf:57:5b:29:0a:ba:1a:
3e:d9:72:9e:57:55:63:04:7a:f4:1e:3a:93:cc:b7:
e2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A7:2A:DB:76:3D:C2:FD:C2:87:A0:C9:15:9A:F5:D9:2F:A1:F2:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D3F94B0997911F0AB2A43DBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.134.0/24
154.82.148.0/24
154.82.153.0/24
154.82.158.0/24
154.82.196.0/22
154.83.65.0/24
154.83.67.0/24
154.89.132.0/24
154.90.65.0/24
154.90.67.0/24
154.90.128.0/24
154.90.134.0/24
154.90.136.0/23
154.90.140.0/24
154.90.189.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:26:07:bb:90:d3:41:32:13:09:38:82:10:11:0c:a9:5a:8c:
07:79:15:48:39:41:6a:63:80:5d:c3:ce:fa:e2:1e:ff:fb:13:
b3:29:30:e9:78:bb:a1:55:46:ed:bb:ab:1c:8c:12:77:79:30:
89:c2:41:08:b5:7d:f9:59:8a:bc:8d:f6:17:97:94:42:34:8c:
da:65:ff:78:d1:fd:8c:83:a6:ee:cb:ed:60:ed:dd:f7:ef:bf:
8c:70:ee:b3:36:a7:07:b0:24:ed:2c:26:b2:01:ed:00:11:1e:
8f:04:46:f5:c7:d4:14:52:b1:7d:2d:a0:81:37:5b:88:d1:cb:
88:58:43:79:f4:7b:19:b1:54:0c:10:af:97:6a:48:31:c4:f4:
68:7a:54:ba:52:a4:60:a4:e7:d7:24:0c:05:08:02:e5:86:ff:
fc:8a:35:76:00:3b:ac:cd:c6:a1:e6:ea:a0:2a:f1:43:21:02:
45:c4:74:71:e0:3f:4c:e4:64:ae:12:e7:e8:30:d2:8a:1f:b9:
b8:f3:ed:c5:0a:2c:13:f5:ba:19:1b:0b:bc:20:cc:e2:22:d3:
66:c9:b4:05:88:46:3b:cc:98:0e:f3:5b:24:06:68:eb:6c:d9:
76:22:df:a0:62:38:c5:9e:6b:b3:a7:54:1c:27:4f:db:30:e0:
a0:30:b4:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:50 2025 by rpki-client