Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6390E0A4837A11F0813F47EADAE4EC9C.roa
File: 6390E0A4837A11F0813F47EADAE4EC9C.roa (raw, json)
Hash identifier: bD14xO3jatzbt+CeHFA57xaBqJgT6jevs51vKT9M+uE=
Subject key identifier: D6:E0:0A:84:5E:1B:2B:A5:90:02:4F:98:8F:97:A9:CB:C8:FD:0A:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0198FD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6390E0A4837A11F0813F47EADAE4EC9C.roa
Signing time: Wed 27 Aug 2025 19:16:53 +0000
ROA not before: Wed 27 Aug 2025 19:16:48 +0000
ROA not after: Mon 03 Nov 2025 19:16:48 +0000
asID: 63139
IP address blocks: 154.94.79.0/24 maxlen: 24
154.94.83.0/24 maxlen: 24
154.94.84.0/24 maxlen: 24
154.94.85.0/24 maxlen: 24
154.94.121.0/24 maxlen: 24
154.94.122.0/24 maxlen: 24
154.94.123.0/24 maxlen: 24
154.94.124.0/24 maxlen: 24
154.94.126.0/24 maxlen: 24
154.94.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104701 (0x198fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 27 19:16:48 2025 GMT
Not After : Nov 3 19:16:48 2025 GMT
Subject: CN=68af59a5-50a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:40:f0:22:17:1d:d4:8d:66:29:59:10:8c:dd:
65:85:1c:cb:76:35:6b:8a:48:82:3c:d5:1e:2d:5a:
23:85:5b:92:5a:d7:fc:8a:5d:bb:96:a9:13:ba:f2:
69:1b:8e:02:99:d9:cd:cf:a2:5e:57:e4:41:99:44:
51:2c:7c:2c:1d:a4:cf:dc:2e:8d:fd:9d:b3:33:38:
d2:b2:67:c8:d9:d8:d0:86:28:25:cd:1b:db:39:71:
ab:84:13:fa:a6:75:29:a0:40:23:b3:95:ca:cc:d2:
81:0d:c8:49:dc:fc:8e:42:92:8d:87:b4:33:97:42:
c0:f1:f2:74:40:58:52:cb:7d:9b:28:8d:cd:c4:cf:
6b:fd:10:c6:3b:84:a4:eb:25:5a:8a:40:48:c3:d7:
4c:b5:c5:75:1a:cd:42:ad:72:9b:ea:6b:be:33:5b:
ce:2d:36:73:89:a3:1d:84:11:07:34:3d:37:e7:43:
28:2e:e2:68:64:94:2a:b4:18:46:9a:39:f8:4b:74:
f5:c9:d0:12:65:cb:49:8c:fa:5f:74:91:32:52:9a:
de:23:1e:ec:ea:6b:8b:9d:f0:c2:1d:4a:a6:ed:b1:
2b:31:3a:ea:d7:54:a9:76:72:7c:46:df:c3:ae:5a:
67:0d:07:b0:fa:58:12:61:d8:56:cc:2a:b2:5a:80:
5d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E0:0A:84:5E:1B:2B:A5:90:02:4F:98:8F:97:A9:CB:C8:FD:0A:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6390E0A4837A11F0813F47EADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.79.0/24
154.94.83.0-154.94.85.255
154.94.121.0-154.94.124.255
154.94.126.0/23
Signature Algorithm: sha256WithRSAEncryption
99:57:ba:37:f3:13:82:a9:47:74:12:df:de:fe:a5:6c:e0:74:
7e:9b:7e:91:bf:11:a4:c8:eb:f8:bb:08:1b:26:cd:d8:6a:c0:
76:f1:3b:da:be:4c:f4:be:df:2e:f6:73:1c:d8:c0:6c:05:51:
1a:61:3e:94:bb:43:95:df:ea:6a:37:d3:06:e9:22:0d:2f:7a:
94:f4:21:e9:a6:f7:25:e8:e2:3b:d9:0d:0e:55:e2:ae:8f:a2:
b4:5b:91:26:0b:d0:94:11:08:52:b3:29:bf:4a:20:fd:b4:3a:
2c:35:fd:0b:78:9f:cf:47:0d:16:45:05:f6:28:33:4d:c5:e4:
24:3e:06:16:c2:16:01:02:be:13:18:4b:13:b7:e5:8c:e2:4c:
96:93:86:e6:8e:a8:ae:9b:a7:1b:c2:33:1b:22:2d:0f:ef:7f:
96:6b:36:6d:34:54:30:d9:c2:a6:f0:7a:f2:c5:b7:89:2d:d4:
25:39:41:1c:94:91:5b:b9:6f:72:3b:d6:a0:0c:2e:7d:57:19:
ed:50:b8:22:05:91:d9:cd:39:8b:48:4c:d9:34:c4:8c:8d:a1:
81:8d:9f:28:e9:8f:53:0f:7b:06:87:fc:a0:70:50:56:99:39:
c8:1a:6e:d5:69:ce:6b:56:6b:ee:c1:98:7c:d9:41:a9:fe:85:
15:58:64:be
-----BEGIN CERTIFICATE-----
MIIFpjCCBI6gAwIBAgIDAZj9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODI3MTkxNjQ4WhcNMjUxMTAzMTkxNjQ4WjAYMRYw
FAYDVQQDEw02OGFmNTlhNS01MGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsEDwIhcd1I1mKVkQjN1lhRzLdjVrikiCPNUeLVojhVuSWtf8il27lqkT
uvJpG44CmdnNz6JeV+RBmURRLHwsHaTP3C6N/Z2zMzjSsmfI2djQhiglzRvbOXGr
hBP6pnUpoEAjs5XKzNKBDchJ3PyOQpKNh7Qzl0LA8fJ0QFhSy32bKI3NxM9r/RDG
O4Sk6yVaikBIw9dMtcV1Gs1CrXKb6mu+M1vOLTZziaMdhBEHND0350MoLuJoZJQq
tBhGmjn4S3T1ydASZctJjPpfdJEyUpreIx7s6muLnfDCHUqm7bErMTrq11SpdnJ8
Rt/DrlpnDQew+lgSYdhWzCqyWoBdYwIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFNbg
CoReGyulkAJPmI+XqcvI/Qr+MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82MzkwRTBBNDgzN0ExMUYwODEzRjQ3RUFEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQAml5PMAwDBACaXlMDBAGa
XlQwDAMEAJpeeQMEAJpefAMEAZpefjANBgkqhkiG9w0BAQsFAAOCAQEAmVe6N/MT
gqlHdBLf3v6lbOB0fpt+kb8RpMjr+LsIGybN2GrAdvE72r5M9L7fLvZzHNjAbAVR
GmE+lLtDld/qajfTBukiDS96lPQh6ab3JejiO9kNDlXiro+itFuRJgvQlBEIUrMp
v0og/bQ6LDX9C3ifz0cNFkUF9igzTcXkJD4GFsIWAQK+ExhLE7fljOJMlpOG5o6o
rpunG8IzGyItD+9/lms2bTRUMNnCpvB68sW3iS3UJTlBHJSRW7lvcjvWoAwufVcZ
7VC4IgWR2c05i0hM2TTEjI2hgY2fKOmPUw97Bof8oHBQVpk5yBpu1WnOa1Zr7sGY
fNlBqf6FFVhkvg==
-----END CERTIFICATE-----
Generated at Wed Sep 3 18:40:21 2025 by rpki-client