Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66777890828611F0A8B61CB1DAE4EC9C.roa
File: 66777890828611F0A8B61CB1DAE4EC9C.roa (raw, json)
Hash identifier: PlXhFo51S5xb20oW6nriZgpKKrD5QZjWj9U5vjzY68w=
Subject key identifier: 11:66:BA:B1:26:99:A5:03:33:B2:7A:92:2F:D0:76:87:43:DB:BC:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0197C6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66777890828611F0A8B61CB1DAE4EC9C.roa
Signing time: Tue 26 Aug 2025 14:10:21 +0000
ROA not before: Tue 26 Aug 2025 14:10:14 +0000
ROA not after: Fri 03 Oct 2025 14:10:14 +0000
asID: 57043
IP address blocks: 154.83.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104390 (0x197c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 26 14:10:14 2025 GMT
Not After : Oct 3 14:10:14 2025 GMT
Subject: CN=68adc04d-5ab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7b:0e:9d:af:6e:c3:7a:27:62:a7:e3:0b:15:
34:75:11:bc:f3:11:70:17:09:fa:11:03:25:12:3a:
02:96:ce:ea:80:65:fe:a2:d9:6c:fc:82:b6:e6:2c:
19:bf:29:42:d2:8c:4e:87:89:0e:c4:be:13:2f:d0:
33:90:f5:86:e2:51:8c:8f:73:00:25:94:e1:30:7f:
98:1c:be:10:5c:f9:fe:ab:69:23:3c:78:c8:a6:50:
d1:11:45:58:fc:59:42:19:3a:0b:e8:9f:ee:51:27:
0f:38:11:48:58:da:34:6c:c9:83:c7:cf:61:ab:c7:
b8:42:93:41:7c:09:6d:9d:98:83:38:45:d1:02:e1:
e6:68:b2:18:6c:45:a4:46:12:87:2c:c7:df:f2:48:
71:68:e6:01:30:e5:d4:09:c5:f8:f1:0f:02:f5:2d:
1f:f7:a8:03:1a:3c:07:f7:c7:03:53:63:36:9d:e3:
c1:d7:a8:47:6c:26:60:6d:25:e4:d8:17:d0:83:cf:
a7:f8:1b:50:6e:0c:51:e0:85:af:7a:0d:30:a6:23:
a1:fd:e8:c7:22:6d:b3:d7:32:9a:74:a3:cc:81:17:
c5:0b:4c:e1:94:12:13:18:32:d9:d3:b9:ae:fc:6d:
63:f2:a9:4f:4c:c2:c8:32:70:ae:dc:05:7d:84:cd:
f1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:66:BA:B1:26:99:A5:03:33:B2:7A:92:2F:D0:76:87:43:DB:BC:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66777890828611F0A8B61CB1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.136.0/24
Signature Algorithm: sha256WithRSAEncryption
74:bd:34:41:6a:48:b5:9a:1b:1a:78:e2:49:84:61:d9:a6:a6:
7d:41:42:44:bd:60:f3:ef:a2:fc:91:e2:ed:5f:2a:8f:c4:9d:
b8:ef:9e:5e:0d:d4:7e:e0:29:6f:cb:96:7b:cf:5a:8c:e8:c7:
f1:d8:0f:00:f9:87:0b:15:c4:b9:3a:d5:0e:fd:02:7e:ca:60:
29:1b:7b:e7:f9:30:b4:06:97:b4:03:e1:2e:b8:25:02:7f:d7:
23:f1:3c:88:0c:a2:2d:6c:53:f1:8e:67:ce:b9:37:7c:ab:e7:
08:94:2a:ef:57:c2:2a:30:fc:42:72:9e:2a:4a:a0:ce:3f:0a:
52:4d:97:69:18:33:b8:ad:90:00:c8:7c:c1:1c:8a:5b:1b:58:
15:6b:d5:9b:0c:dc:4a:39:90:52:40:2b:9d:3b:bc:a4:5a:9e:
17:ff:04:88:4a:1a:5a:46:f6:f6:9f:8c:88:b9:47:77:6d:45:
ec:20:3e:db:a4:c9:8f:7f:09:50:f7:40:c5:fb:37:40:56:b7:
ba:96:8c:25:00:e3:80:04:7c:b3:a1:6a:6a:56:07:0c:3a:45:
f5:38:b2:6b:58:b6:38:f7:cf:5d:14:7e:db:bc:dc:2f:ec:5d:
28:4d:01:bc:b1:97:e9:98:35:5a:f2:92:17:4f:74:88:7a:0b:
79:07:8e:b3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAZfGMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODI2MTQxMDE0WhcNMjUxMDAzMTQxMDE0WjAYMRYw
FAYDVQQDEw02OGFkYzA0ZC01YWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoHsOna9uw3onYqfjCxU0dRG88xFwFwn6EQMlEjoCls7qgGX+otls/IK2
5iwZvylC0oxOh4kOxL4TL9AzkPWG4lGMj3MAJZThMH+YHL4QXPn+q2kjPHjIplDR
EUVY/FlCGToL6J/uUScPOBFIWNo0bMmDx89hq8e4QpNBfAltnZiDOEXRAuHmaLIY
bEWkRhKHLMff8khxaOYBMOXUCcX48Q8C9S0f96gDGjwH98cDU2M2nePB16hHbCZg
bSXk2BfQg8+n+BtQbgxR4IWveg0wpiOh/ejHIm2z1zKadKPMgRfFC0zhlBITGDLZ
07mu/G1j8qlPTMLIMnCu3AV9hM3xxwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBFm
urEmmaUDM7J6ki/QdodD27w3MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82Njc3Nzg5MDgyODYxMUYwQThCNjFDQjFEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlOIMA0GCSqGSIb3DQEB
CwUAA4IBAQB0vTRBaki1mhsaeOJJhGHZpqZ9QUJEvWDz76L8keLtXyqPxJ24755e
DdR+4Clvy5Z7z1qM6Mfx2A8A+YcLFcS5OtUO/QJ+ymApG3vn+TC0Bpe0A+EuuCUC
f9cj8TyIDKItbFPxjmfOuTd8q+cIlCrvV8IqMPxCcp4qSqDOPwpSTZdpGDO4rZAA
yHzBHIpbG1gVa9WbDNxKOZBSQCudO7ykWp4X/wSIShpaRvb2n4yIuUd3bUXsID7b
pMmPfwlQ90DF+zdAVre6lowlAOOABHyzoWpqVgcMOkX1OLJrWLY4989dFH7bvNwv
7F0oTQG8sZfpmDVa8pIXT3SIegt5B46z
-----END CERTIFICATE-----
Generated at Wed Sep 3 18:32:35 2025 by rpki-client