Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F0B43F2A51311F093F9E69ADAE4EC9C.roa
File: 5F0B43F2A51311F093F9E69ADAE4EC9C.roa (raw, json)
Hash identifier: +i0CKEbCZ5Zy8xDwxfQ0Po5pt8qcmjj5jJi/wRI62hQ=
Subject key identifier: EA:85:B4:FB:F1:64:2F:43:FF:6F:AD:D0:12:92:F9:8C:23:44:F2:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A316
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F0B43F2A51311F093F9E69ADAE4EC9C.roa
Signing time: Thu 09 Oct 2025 13:25:07 +0000
ROA not before: Thu 09 Oct 2025 13:25:02 +0000
ROA not after: Sun 16 Nov 2025 13:25:02 +0000
asID: 22773
IP address blocks: 154.90.22.0/24 maxlen: 24
154.90.23.0/24 maxlen: 24
154.90.24.0/24 maxlen: 24
154.90.25.0/24 maxlen: 24
154.90.26.0/24 maxlen: 24
154.90.27.0/24 maxlen: 24
154.90.132.0/24 maxlen: 24
154.90.141.0/24 maxlen: 24
154.90.144.0/24 maxlen: 24
154.90.145.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107286 (0x1a316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 9 13:25:02 2025 GMT
Not After : Nov 16 13:25:02 2025 GMT
Subject: CN=68e7b7b3-435c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:31:d8:b9:e1:ad:16:52:d6:af:a3:c9:20:aa:
8b:53:73:ff:5a:6a:f6:29:20:59:86:92:be:ca:c0:
10:68:51:a2:aa:20:c6:3d:28:03:ea:f7:2e:da:9b:
f1:0d:f1:53:c6:29:32:46:e2:70:ce:e8:49:e1:7d:
86:8b:cd:11:4c:80:d6:e9:32:a9:78:bc:d0:60:70:
3d:7e:16:7c:3a:5b:22:53:89:76:88:c8:6c:bb:66:
62:b4:24:01:e5:31:e3:43:f8:76:c0:a7:7a:53:49:
a3:ec:7a:42:8d:c4:6f:f1:00:6d:e3:a8:92:88:8d:
3d:73:37:49:87:a0:21:75:14:a6:b7:fc:2f:c4:7f:
df:60:49:54:df:9b:34:8f:11:d7:98:5c:bd:95:59:
ea:18:21:6f:2d:c3:ba:af:a1:5d:7f:1c:a2:d8:ce:
73:81:eb:ac:de:eb:34:a8:cb:82:69:ab:49:d0:91:
e4:3c:5c:cb:98:9f:a3:ee:9d:20:e2:85:15:85:5c:
71:8c:3d:e0:42:74:a8:03:2b:75:fe:b5:ec:6e:5a:
13:23:a8:9d:c2:59:e4:31:84:27:fc:d3:ea:34:b2:
e1:9b:ae:59:2a:2a:40:db:81:d3:d9:eb:03:87:da:
0f:b6:09:38:d0:c0:19:a0:02:80:45:be:e1:ec:f5:
7a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:85:B4:FB:F1:64:2F:43:FF:6F:AD:D0:12:92:F9:8C:23:44:F2:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5F0B43F2A51311F093F9E69ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.22.0-154.90.27.255
154.90.132.0/24
154.90.141.0/24
154.90.144.0/23
Signature Algorithm: sha256WithRSAEncryption
09:b0:65:5b:0e:20:9d:88:1a:bb:95:fa:a4:3b:4b:61:76:71:
8f:c1:4e:56:a9:47:d6:43:09:43:70:59:a7:74:71:03:33:f5:
6f:bf:a6:82:9b:34:83:2d:81:5b:e4:35:82:03:5c:15:1e:5c:
db:f3:49:b0:9f:00:0b:96:ae:87:73:52:4f:95:25:de:df:47:
4e:bf:0b:54:d3:a5:f8:97:cc:b7:3e:9a:0d:cf:5b:96:7e:57:
05:bb:7e:eb:91:89:f1:05:ae:44:20:17:02:e3:cd:18:1d:18:
ef:df:5c:43:c6:64:12:04:40:c4:eb:a8:cd:cc:13:e7:cd:b0:
2d:8d:00:36:55:d7:21:3f:82:f8:3c:d1:c2:0b:d3:61:e4:07:
93:46:f4:de:62:82:9d:80:fa:7f:bf:ea:89:61:94:0a:cd:ce:
5e:81:2a:22:c1:a7:c7:72:f8:73:b7:bb:92:b3:d1:f0:3c:1d:
a6:b8:d5:53:d9:a8:6a:4f:22:3e:f8:01:e3:1c:c7:94:bd:9f:
88:c3:a0:04:22:76:ca:60:70:cb:fa:79:f1:94:4b:82:85:6f:
61:94:79:a7:8e:1f:9d:b1:bb:49:bd:04:54:0f:33:85:2d:a0:
41:e0:3a:74:bb:a0:6b:07:e0:53:59:b5:4a:07:e9:76:a5:e4:
fe:c6:ca:76
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIDAaMWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMDA5MTMyNTAyWhcNMjUxMTE2MTMyNTAyWjAYMRYw
FAYDVQQDEw02OGU3YjdiMy00MzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1jHYueGtFlLWr6PJIKqLU3P/Wmr2KSBZhpK+ysAQaFGiqiDGPSgD6vcu
2pvxDfFTxikyRuJwzuhJ4X2Gi80RTIDW6TKpeLzQYHA9fhZ8OlsiU4l2iMhsu2Zi
tCQB5THjQ/h2wKd6U0mj7HpCjcRv8QBt46iSiI09czdJh6AhdRSmt/wvxH/fYElU
35s0jxHXmFy9lVnqGCFvLcO6r6Fdfxyi2M5zgeus3us0qMuCaatJ0JHkPFzLmJ+j
7p0g4oUVhVxxjD3gQnSoAyt1/rXsbloTI6idwlnkMYQn/NPqNLLhm65ZKipA24HT
2esDh9oPtgk40MAZoAKARb7h7PV6mQIDAQABo4ICvzCCArswHQYDVR0OBBYEFOqF
tPvxZC9D/2+t0BKS+YwjRPKZMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81RjBCNDNGMkE1MTMxMUYwOTNGOUU2OUFEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgMAwDBAGaWhYDBAKaWhgDBACa
WoQDBACaWo0DBAGaWpAwDQYJKoZIhvcNAQELBQADggEBAAmwZVsOIJ2IGruV+qQ7
S2F2cY/BTlapR9ZDCUNwWad0cQMz9W+/poKbNIMtgVvkNYIDXBUeXNvzSbCfAAuW
rodzUk+VJd7fR06/C1TTpfiXzLc+mg3PW5Z+VwW7fuuRifEFrkQgFwLjzRgdGO/f
XEPGZBIEQMTrqM3ME+fNsC2NADZV1yE/gvg80cIL02HkB5NG9N5igp2A+n+/6olh
lArNzl6BKiLBp8dy+HO3u5Kz0fA8Haa41VPZqGpPIj74AeMcx5S9n4jDoAQidspg
cMv6efGUS4KFb2GUeaeOH52xu0m9BFQPM4UtoEHgOnS7oGsH4FNZtUoH6Xal5P7G
ynY=
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:46 2025 by rpki-client