Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/745B78849D8F11F0A572F4D0DAE4EC9C.roa
File: 745B78849D8F11F0A572F4D0DAE4EC9C.roa (raw, json)
Hash identifier: tIEZFIbxE92nkFd0BkWqh5+Ce46qfDbKpkrZgKgSg3g=
Subject key identifier: 73:24:7F:85:52:14:A0:A8:64:96:02:F6:C9:6B:AB:B1:37:DE:05:54
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A1BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/745B78849D8F11F0A572F4D0DAE4EC9C.roa
Signing time: Mon 29 Sep 2025 23:53:11 +0000
ROA not before: Mon 29 Sep 2025 23:53:06 +0000
ROA not after: Thu 06 Nov 2025 23:53:06 +0000
asID: 147176
IP address blocks: 154.197.116.0/24 maxlen: 24
154.197.124.0/24 maxlen: 24
154.215.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106941 (0x1a1bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 23:53:06 2025 GMT
Not After : Nov 6 23:53:06 2025 GMT
Subject: CN=68db1be7-bde2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:98:cf:1b:d5:a7:bc:f2:f9:b5:28:69:69:57:
a8:d6:9d:da:54:32:6c:dd:09:a7:fa:4f:7b:24:ec:
7a:95:f3:73:c2:2e:43:5e:8e:41:01:d6:54:30:22:
7f:b5:e6:f1:84:59:2e:d2:92:cd:2b:b0:7a:3d:21:
34:90:cf:cc:3f:6b:f9:27:85:a5:6f:91:67:0a:f2:
46:52:23:6b:48:3a:9e:05:77:41:41:13:4e:cb:bf:
44:3b:59:35:83:25:a7:b3:3e:6e:5b:0e:2c:56:38:
e8:c3:c3:4f:55:62:77:73:14:93:0a:28:7d:3a:f1:
38:22:93:06:48:6a:f5:38:5e:56:1c:94:fe:6e:10:
e8:f4:05:91:25:44:db:d7:37:09:ab:97:01:e3:62:
76:73:68:bd:34:f7:aa:75:ef:d3:d9:49:2b:ac:ac:
9a:6b:ef:b4:80:d5:15:3b:13:b4:93:58:5d:90:7c:
f6:3a:44:6e:26:2c:06:8d:0f:f5:53:a5:24:9f:0f:
d1:b4:4b:b8:b4:92:e4:38:b4:36:24:47:91:08:e5:
99:7b:b8:44:76:ec:57:1f:9d:b7:bf:c1:87:dc:ff:
35:e8:ce:f5:44:f0:82:be:59:f8:c8:bc:bb:ee:de:
2d:00:d3:9b:fc:99:69:b9:61:6d:5d:1e:0b:4e:71:
35:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:24:7F:85:52:14:A0:A8:64:96:02:F6:C9:6B:AB:B1:37:DE:05:54
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/745B78849D8F11F0A572F4D0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.116.0/24
154.197.124.0/24
154.215.14.0/24
Signature Algorithm: sha256WithRSAEncryption
76:9b:3a:d4:bf:4b:bc:7c:87:24:cc:b0:51:71:a3:49:51:03:
28:9a:bd:cd:e4:0f:f7:22:2e:66:75:16:b0:af:9d:dd:6b:5b:
b6:91:4f:e5:f9:89:9d:6d:15:9d:d5:90:e6:a8:a0:f7:e3:c5:
b0:49:b4:01:3f:e3:ed:8c:85:75:8d:5d:0f:3d:ab:0c:fc:34:
c5:1f:5a:ce:4d:ad:dd:12:4d:18:20:40:85:c2:ae:92:52:f6:
b7:54:3b:ec:12:b8:a2:f0:e3:f7:e8:3b:b8:cd:f3:65:5b:68:
a9:dd:a9:4d:2d:30:cd:08:af:04:9c:f1:d3:cc:06:59:e2:e6:
4e:4c:82:37:ac:09:a8:57:24:83:68:fe:24:7f:eb:63:0f:db:
f3:09:3e:77:93:ea:b5:1b:01:b3:a6:9b:bb:1b:b3:4f:33:d8:
9a:ae:ce:1a:fb:b1:2c:6e:f1:1b:87:22:55:40:d2:62:e1:cb:
63:3c:21:b3:58:82:46:5b:ee:cb:37:c7:59:67:56:a9:c5:3c:
5a:d1:7f:de:d5:a0:fa:13:fc:e8:d7:46:ad:ac:92:8e:ca:ea:
0f:07:bf:9f:45:58:55:9a:83:85:c2:fd:54:bd:25:e4:10:29:
a7:09:0e:4b:2e:77:0b:d0:3a:b7:e6:6c:6f:0a:47:7e:0e:a5:
d9:0b:63:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:43 2025 by rpki-client