Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70F7259CA35411F08302E3D1DAE4EC9C.roa
File: 70F7259CA35411F08302E3D1DAE4EC9C.roa (raw, json)
Hash identifier: J+qITFR657vEJQGH3Gm+lL99tiM9IRh/oCgcEdoVxxQ=
Subject key identifier: 84:A4:4A:E6:29:7B:22:D2:78:BF:EF:99:C6:DC:17:84:24:1B:8D:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A288
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70F7259CA35411F08302E3D1DAE4EC9C.roa
Signing time: Tue 07 Oct 2025 08:05:52 +0000
ROA not before: Tue 07 Oct 2025 08:05:46 +0000
ROA not after: Fri 14 Nov 2025 08:05:46 +0000
asID: 54252
IP address blocks: 154.201.53.0/24 maxlen: 24
154.201.54.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107144 (0x1a288)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 7 08:05:46 2025 GMT
Not After : Nov 14 08:05:46 2025 GMT
Subject: CN=68e4c9e0-e5ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:15:7a:54:8c:d2:33:d3:a1:b8:f2:fa:55:6c:
66:12:77:56:93:a2:ba:b5:44:d6:d8:ee:9c:c5:fd:
66:9a:34:69:43:e5:a1:58:19:0a:04:68:15:05:d4:
2c:3c:5d:d3:bb:02:5d:90:4f:c8:60:ad:7a:1e:cf:
de:ec:0f:af:1a:8a:f4:07:3e:5d:e7:ef:6c:f6:c8:
3f:53:24:8e:9f:e7:e7:39:cb:25:a2:1d:b7:8c:39:
dc:1e:90:55:9d:3c:d8:cc:8f:66:42:7e:58:2c:0d:
0d:19:17:d6:71:23:22:7a:52:8b:a5:58:97:fa:54:
34:31:b3:55:e5:9d:5a:e9:7b:69:92:14:43:ee:5b:
2e:c3:13:56:a7:bf:6c:ce:de:13:05:8a:20:e2:18:
84:cb:e9:61:d1:d1:70:8c:83:22:4c:bc:ed:cd:ec:
61:a0:a9:d0:5a:af:bf:cb:78:40:63:6a:97:8f:13:
32:ef:8f:86:1c:e6:5a:42:54:c2:ee:fc:85:5c:15:
5c:36:94:47:46:ee:46:9e:e2:96:04:69:ca:7b:5e:
63:e9:c7:ae:c4:56:59:1b:f2:55:23:35:cd:04:fe:
18:4d:d5:1e:9b:62:f9:85:b8:82:02:6a:06:6e:76:
6f:b5:14:74:83:31:da:44:d6:5a:af:ce:b0:64:8e:
2b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:A4:4A:E6:29:7B:22:D2:78:BF:EF:99:C6:DC:17:84:24:1B:8D:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70F7259CA35411F08302E3D1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.53.0-154.201.55.255
Signature Algorithm: sha256WithRSAEncryption
38:ab:90:d6:4c:ec:ee:85:b9:ef:f1:e2:33:b8:33:00:fa:71:
b9:78:3f:cd:a4:be:33:0c:65:95:6a:49:77:6b:97:2d:14:65:
ba:3f:83:b0:6b:b9:ff:c3:12:fc:7a:cd:31:1a:50:37:f2:e8:
d4:04:6f:e9:1e:26:9c:95:d9:0e:63:cf:ca:2b:21:5c:94:72:
26:cc:98:de:d0:fb:22:25:80:c2:6b:2b:d0:47:f5:63:9b:50:
d3:e8:72:61:fe:1e:e9:37:19:f6:ac:56:15:45:50:9c:4a:4f:
de:03:4f:73:01:df:78:b1:86:3d:b9:54:ad:16:73:5d:3c:f5:
0d:05:30:91:94:f1:22:f9:ca:28:c6:18:ff:dc:9b:24:84:bc:
ae:45:ff:dc:40:9f:7b:49:c9:1b:0e:a5:70:0a:1b:da:d1:f6:
0c:87:27:7f:47:ad:62:e5:8d:c8:5b:f9:11:49:50:04:97:20:
16:b9:84:75:62:20:fc:e8:54:e4:53:cf:37:c3:d2:b6:1f:17:
cb:88:6f:38:d2:56:d1:fa:10:d8:30:2f:17:eb:7b:79:9f:3a:
db:fd:65:b7:aa:67:ff:75:c8:e4:b8:21:4e:3e:db:66:2c:3e:
a1:5e:a7:f6:69:f6:8b:e6:00:72:a8:45:04:0f:d4:db:90:38:
97:3f:26:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:22 2025 by rpki-client