Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/732F9938AB6111F09EFDADB2DAE4EC9C.roa
File: 732F9938AB6111F09EFDADB2DAE4EC9C.roa (raw, json)
Hash identifier: dfGh/kBNg50YtCvMyEHzXPyi4XGGgQzuFefCUAOJY4o=
Subject key identifier: 09:77:9F:37:23:98:5F:4C:35:F6:C5:E6:B4:6F:FE:E9:C6:C6:AF:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A43A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/732F9938AB6111F09EFDADB2DAE4EC9C.roa
Signing time: Fri 17 Oct 2025 13:59:08 +0000
ROA not before: Fri 17 Oct 2025 13:59:04 +0000
ROA not after: Mon 24 Nov 2025 13:59:04 +0000
asID: 58931
IP address blocks: 154.95.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107578 (0x1a43a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 17 13:59:04 2025 GMT
Not After : Nov 24 13:59:04 2025 GMT
Subject: CN=68f24bac-8559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a7:b7:ed:01:e8:14:a7:59:e1:5c:2a:6b:37:
e2:e7:fd:93:07:af:8e:69:86:ee:f5:ba:a2:d0:04:
49:73:bc:95:15:2d:48:a1:46:1d:49:9e:a9:fb:c4:
11:01:18:d6:3a:e1:78:67:59:6e:01:45:d3:5c:4d:
f1:f3:de:5f:02:63:bd:0d:e4:9f:cc:3b:bc:89:90:
8e:3c:18:44:b0:cb:c5:0d:a2:69:b4:b8:15:0d:f4:
c7:5e:11:a2:ea:1c:d7:89:d7:99:6b:15:b5:96:4f:
55:c1:2d:d9:8b:99:fc:f4:5f:a3:ba:73:a1:33:63:
fc:26:f9:f8:40:82:12:00:a0:90:cd:0c:bc:5c:89:
d6:f6:59:8f:e6:78:98:10:cf:8d:5e:c4:03:30:ca:
d6:89:01:e4:b4:4b:1e:02:0c:a9:af:42:d0:d4:4f:
20:d1:99:94:7d:fc:a5:7a:30:f0:bf:e9:4b:56:da:
9e:5f:55:84:33:8a:7c:45:03:69:9a:60:b8:64:60:
4b:9a:7c:ee:d7:da:b0:4b:75:5f:a7:41:fb:1c:91:
5a:28:d8:a9:09:d3:c2:ea:d7:04:2d:ec:52:c4:d5:
4d:65:1c:af:5e:1d:1e:13:d3:22:86:73:8e:35:e0:
11:7a:27:8e:bc:2c:5e:f1:7e:ba:da:7d:5a:8a:cc:
5f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:77:9F:37:23:98:5F:4C:35:F6:C5:E6:B4:6F:FE:E9:C6:C6:AF:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/732F9938AB6111F09EFDADB2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:03:e8:94:24:88:01:9d:1d:79:c0:a0:97:71:8f:b2:7e:67:
ad:f1:95:46:18:0b:c1:b1:b6:a6:ee:4a:5e:ba:68:19:63:16:
6f:f8:f6:54:a8:a1:fa:c3:b6:ff:38:19:fc:67:18:b8:06:93:
ac:22:ff:0c:f5:5c:6e:f5:c7:21:39:70:2a:2d:52:2a:e3:d0:
a3:48:a3:ab:26:ff:8b:64:da:d9:90:46:57:42:f2:83:1b:7c:
7b:fa:7a:e5:14:b8:b6:f0:82:22:17:41:12:ac:8f:fc:a7:05:
8d:52:13:ef:0e:e5:53:73:56:ef:89:85:de:2b:88:08:a5:69:
35:b7:7a:6b:55:f4:7a:51:89:6d:22:cd:62:3c:b3:f5:30:36:
aa:df:2f:fc:fa:6d:d4:b6:ff:58:bd:95:5b:d0:ae:92:39:a8:
c7:84:2e:36:b0:10:9e:7c:be:7c:7c:99:2e:d0:c0:53:47:e2:
48:0e:f8:a5:80:a2:fc:f8:92:d5:d5:36:9c:40:ab:e9:a8:43:
34:b2:3b:2a:f3:9e:6e:e3:78:0a:05:e6:81:da:25:60:ec:9c:
22:ad:c0:20:ad:b9:08:a7:89:79:15:03:c3:fd:76:7b:25:6b:
49:5a:54:47:83:2b:f4:16:24:db:86:94:21:1c:79:fc:fb:3b:
53:fb:cf:0a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAaQ6MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMDE3MTM1OTA0WhcNMjUxMTI0MTM1OTA0WjAYMRYw
FAYDVQQDEw02OGYyNGJhYy04NTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtqe37QHoFKdZ4Vwqazfi5/2TB6+OaYbu9bqi0ARJc7yVFS1IoUYdSZ6p
+8QRARjWOuF4Z1luAUXTXE3x895fAmO9DeSfzDu8iZCOPBhEsMvFDaJptLgVDfTH
XhGi6hzXideZaxW1lk9VwS3Zi5n89F+junOhM2P8Jvn4QIISAKCQzQy8XInW9lmP
5niYEM+NXsQDMMrWiQHktEseAgypr0LQ1E8g0ZmUffylejDwv+lLVtqeX1WEM4p8
RQNpmmC4ZGBLmnzu19qwS3Vfp0H7HJFaKNipCdPC6tcELexSxNVNZRyvXh0eE9Mi
hnOONeAReieOvCxe8X662n1aisxf+QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAl3
nzcjmF9MNfbF5rRv/unGxq94MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83MzJGOTkzOEFCNjExMUYwOUVGREFEQjJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml8YMA0GCSqGSIb3DQEB
CwUAA4IBAQBeA+iUJIgBnR15wKCXcY+yfmet8ZVGGAvBsbam7kpeumgZYxZv+PZU
qKH6w7b/OBn8Zxi4BpOsIv8M9Vxu9cchOXAqLVIq49CjSKOrJv+LZNrZkEZXQvKD
G3x7+nrlFLi28IIiF0ESrI/8pwWNUhPvDuVTc1bviYXeK4gIpWk1t3prVfR6UYlt
Is1iPLP1MDaq3y/8+m3Utv9YvZVb0K6SOajHhC42sBCefL58fJku0MBTR+JIDvil
gKL8+JLV1TacQKvpqEM0sjsq855u43gKBeaB2iVg7JwircAgrbkIp4l5FQPD/XZ7
JWtJWlRHgyv0FiTbhpQhHHn8+ztT+88K
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:02 2025 by rpki-client