Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/743F6F00A35B11F092BAE67EDAE4EC9C.roa
File: 743F6F00A35B11F092BAE67EDAE4EC9C.roa (raw, json)
Hash identifier: 7rMgwQdWZLyWxi+f9EQHghkbcQ/FkozgOGG3nMtkzvo=
Subject key identifier: 82:B6:55:4B:43:94:65:13:45:D6:E5:DD:56:45:65:C8:8A:5E:59:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A292
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/743F6F00A35B11F092BAE67EDAE4EC9C.roa
Signing time: Tue 07 Oct 2025 08:56:04 +0000
ROA not before: Tue 07 Oct 2025 08:55:58 +0000
ROA not after: Sun 16 Nov 2025 08:55:58 +0000
asID: 40779
IP address blocks: 154.222.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107154 (0x1a292)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 7 08:55:58 2025 GMT
Not After : Nov 16 08:55:58 2025 GMT
Subject: CN=68e4d5a4-2c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8f:5c:b5:45:f5:d9:f4:1e:47:ee:c3:0c:31:
b9:b8:7f:a8:3d:ac:e4:03:b7:63:7b:9f:85:39:ac:
8f:7a:e7:c4:da:3b:ae:65:85:20:bb:7a:23:9c:1a:
37:45:6a:87:ef:af:35:30:3d:9b:90:47:cb:0a:08:
5b:f8:06:ba:76:34:5a:e2:86:88:a9:3a:b2:4c:86:
1a:aa:b4:98:7f:4f:f5:05:bf:09:13:8e:88:6e:08:
b7:51:be:5f:67:37:4a:86:ef:1c:61:e9:0d:57:e4:
6d:45:2d:0a:8f:2a:62:d3:73:17:f8:d2:3f:7f:df:
25:7e:d1:43:78:ce:cb:f5:06:b6:5d:6e:4e:f1:20:
f1:07:92:5b:18:01:f8:31:08:0c:10:dc:d8:15:a2:
14:f6:5a:91:a3:1f:2b:bd:69:d4:35:ef:2a:ef:82:
0a:a0:2e:3f:4b:50:c8:48:bc:fb:78:c5:0a:db:bd:
f6:26:3d:a5:83:ab:c6:65:0f:0b:58:06:39:47:4f:
a7:df:f2:8b:a2:e4:3c:db:2f:3b:8a:08:49:70:91:
7e:5d:10:4e:49:6a:49:35:fb:a0:04:95:cb:5a:dc:
bf:30:cf:04:9a:56:7f:f9:c8:88:a3:35:44:4c:79:
25:38:c2:f5:3d:c1:4c:e1:36:4c:08:22:b8:e1:aa:
06:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:B6:55:4B:43:94:65:13:45:D6:E5:DD:56:45:65:C8:8A:5E:59:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/743F6F00A35B11F092BAE67EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.16.0/20
Signature Algorithm: sha256WithRSAEncryption
a7:3d:43:91:30:da:45:61:fe:26:10:3d:59:5a:17:0f:01:b2:
86:96:0e:00:ee:80:f6:cf:2d:cd:01:0b:c6:66:ea:c4:df:aa:
a9:63:ac:b2:33:61:bf:73:4b:78:83:c1:c2:68:95:47:23:17:
72:e9:5b:27:75:40:ca:b3:95:d4:9d:82:56:8f:40:10:16:ce:
90:4a:b3:36:28:bf:38:e8:d2:cc:ed:22:32:ec:3f:16:24:ed:
b4:cd:38:04:f7:bc:46:17:16:a7:44:73:0f:53:38:2e:07:57:
45:9e:ff:59:f5:bd:46:a9:6b:ca:30:e9:5a:d4:c7:be:e0:55:
94:84:d9:21:ed:9c:12:53:ea:db:7f:2c:1c:02:df:6e:d6:2c:
4e:9b:65:7e:bd:8f:5e:a0:09:22:18:98:af:65:d1:65:97:0c:
ce:4e:37:32:6d:c4:68:09:2e:4a:89:99:eb:8c:f9:5b:61:2d:
7f:17:76:cf:71:74:e2:bd:7e:20:4d:f8:0f:7a:33:63:5f:62:
89:db:cf:67:7d:c0:ca:ac:31:64:af:36:de:c5:69:b4:d9:fe:
63:e9:8a:a0:02:1b:25:d6:a6:f3:f9:98:c2:4c:df:60:74:69:
32:ea:5d:94:08:73:a9:1c:d0:49:90:c7:76:4e:8e:16:29:00:
dc:c5:c9:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:44 2025 by rpki-client