Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75DD541E9D5011F0AD1480C1DAE4EC9C.roa
File: 75DD541E9D5011F0AD1480C1DAE4EC9C.roa (raw, json)
Hash identifier: G7M6+vUuT+srTJDZYN0rFuE5efrmGSWhis4Kq4wVcVk=
Subject key identifier: F4:9E:CD:26:77:52:DD:01:54:2E:14:67:BF:E4:D6:DA:D5:BB:17:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A159
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75DD541E9D5011F0AD1480C1DAE4EC9C.roa
Signing time: Mon 29 Sep 2025 16:22:15 +0000
ROA not before: Mon 29 Sep 2025 16:22:09 +0000
ROA not after: Fri 31 Oct 2025 16:22:09 +0000
asID: 62240
IP address blocks: 154.194.80.0/24 maxlen: 24
154.194.81.0/24 maxlen: 24
154.194.83.0/24 maxlen: 24
154.194.84.0/24 maxlen: 24
154.194.85.0/24 maxlen: 24
154.194.118.0/24 maxlen: 24
154.195.121.0/24 maxlen: 24
154.195.122.0/24 maxlen: 24
154.195.123.0/24 maxlen: 24
154.195.125.0/24 maxlen: 24
154.195.127.0/24 maxlen: 24
154.195.128.0/24 maxlen: 24
154.195.129.0/24 maxlen: 24
154.195.130.0/24 maxlen: 24
154.195.131.0/24 maxlen: 24
154.195.132.0/24 maxlen: 24
154.195.133.0/24 maxlen: 24
154.195.134.0/24 maxlen: 24
154.195.135.0/24 maxlen: 24
154.196.88.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106841 (0x1a159)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 16:22:09 2025 GMT
Not After : Oct 31 16:22:09 2025 GMT
Subject: CN=68dab237-8bbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6e:80:9a:2a:3e:f2:90:de:0f:7a:07:80:a7:
4b:f2:4b:86:4f:41:2a:ed:70:e1:de:3c:a4:a3:3e:
5d:03:8b:35:42:b9:4e:08:97:9d:3b:a3:0e:8a:7a:
c0:8a:7e:ef:bb:2f:ca:c9:7b:ef:a5:7e:1e:df:70:
5c:82:f9:3d:fe:1b:f0:24:ae:35:22:dd:d1:75:74:
68:6c:c4:21:04:7d:c3:fc:31:47:0a:a4:c1:54:35:
8b:f1:5c:87:24:b8:64:2b:9b:4d:42:12:fe:20:e0:
3f:c6:60:97:3d:ac:30:e3:fb:78:c9:2f:0a:8a:dc:
82:02:b3:44:c2:42:fe:ea:59:6a:9d:c6:17:9b:09:
c6:7b:59:51:73:69:b0:ce:e4:3c:4d:25:38:9e:5d:
f7:f2:73:3c:84:46:80:20:1c:09:79:88:3a:fc:7a:
46:e4:00:cb:d1:03:12:fe:04:b3:24:45:4c:dc:f0:
d1:f2:ce:f0:76:f0:66:9c:8a:4d:e3:a6:a9:72:4e:
43:d2:df:c2:16:05:4d:4c:51:7e:23:b8:70:7b:24:
e2:4a:0e:ed:1a:e5:41:87:fe:e6:b1:bd:64:19:5c:
74:ae:57:0d:61:08:98:23:75:08:53:3b:96:84:19:
86:70:9d:1a:79:81:18:d6:82:0a:0d:f2:a6:7b:c6:
9c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9E:CD:26:77:52:DD:01:54:2E:14:67:BF:E4:D6:DA:D5:BB:17:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75DD541E9D5011F0AD1480C1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.80.0/23
154.194.83.0-154.194.85.255
154.194.118.0/24
154.195.121.0-154.195.123.255
154.195.125.0/24
154.195.127.0-154.195.135.255
154.196.88.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:84:ea:ad:ba:4b:65:99:be:ef:9a:6e:b6:5e:5f:cd:e0:f9:
15:2d:f1:b9:e1:35:91:24:7a:4d:64:8d:99:e3:fa:08:f2:68:
fd:31:44:d6:2f:db:a8:cf:99:9d:fd:ef:27:df:86:8a:8e:9f:
da:79:28:24:ed:66:5a:ee:bb:c5:3e:84:1e:0c:d4:e7:76:04:
4d:c1:70:46:7e:96:20:b0:06:1d:c7:e4:b8:1d:f4:7d:c8:c7:
96:de:da:38:f3:c0:11:e6:fc:4b:eb:6c:b2:7b:fe:b1:d6:87:
43:9a:ef:25:51:48:cf:bb:41:98:6d:c4:d5:ee:94:c4:cb:52:
bc:41:8c:fe:5f:35:8c:27:1c:82:53:54:ce:ba:8b:bf:41:18:
68:af:cb:17:03:ac:22:af:37:b9:f7:04:4f:d0:f0:b5:2b:45:
8b:9f:54:d7:f6:41:2f:fd:e8:81:e3:0c:24:0c:4c:a9:79:b0:
c3:41:aa:34:d6:f0:9c:99:f7:8c:06:68:0b:15:f2:fe:02:34:
b3:79:b0:1f:8f:d8:67:ef:fe:a5:e8:f5:a1:33:81:15:87:1a:
0c:0f:85:27:b4:97:ab:b5:50:66:04:6b:17:45:35:3f:05:45:
a2:33:8e:98:36:03:18:c8:7a:c2:ed:64:f5:a5:3b:05:37:3f:
e9:b3:2a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 11:34:03 2025 by rpki-client