Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7820F914B34F11F0BDE18ED7DAE4EC9C.roa
File: 7820F914B34F11F0BDE18ED7DAE4EC9C.roa (raw, json)
Hash identifier: iwcGFpuVFPfVi/Fcmeiff/N2hUkIIfWYSGQ/Wv0CNIw=
Subject key identifier: 16:21:4C:65:7F:CF:19:CB:10:A8:D5:20:29:87:E5:D3:FF:E5:CF:69
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A545
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7820F914B34F11F0BDE18ED7DAE4EC9C.roa
Signing time: Mon 27 Oct 2025 16:10:35 +0000
ROA not before: Mon 27 Oct 2025 16:10:29 +0000
ROA not after: Mon 01 Dec 2025 16:10:29 +0000
asID: 62240
IP address blocks: 154.195.158.0/24 maxlen: 24
154.195.159.0/24 maxlen: 24
154.195.160.0/24 maxlen: 24
154.195.161.0/24 maxlen: 24
154.195.162.0/24 maxlen: 24
154.195.163.0/24 maxlen: 24
154.195.164.0/24 maxlen: 24
154.195.165.0/24 maxlen: 24
154.195.166.0/24 maxlen: 24
154.195.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 Oct 2025 09:04:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107845 (0x1a545)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 27 16:10:29 2025 GMT
Not After : Dec 1 16:10:29 2025 GMT
Subject: CN=68ff997b-6bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:54:bf:90:b9:00:ab:5f:e4:c6:f5:1f:74:2c:
38:f6:a3:f2:65:34:5c:77:e7:95:ba:ac:21:03:ca:
8c:23:ec:33:27:54:a2:e5:95:21:0d:31:af:34:ba:
9d:9c:c8:15:47:13:75:88:aa:1f:94:29:b8:2b:56:
2f:75:98:2c:bf:02:88:15:00:84:96:42:b5:e3:fd:
bf:33:26:bc:ad:e1:fe:76:df:a5:18:18:15:aa:dc:
c0:fb:db:00:38:8b:67:6d:31:40:14:30:18:af:06:
20:25:3a:52:d5:24:77:5e:34:17:73:90:08:c6:3e:
0a:2a:08:94:fb:37:6c:87:a4:fb:08:c1:14:2a:a9:
2a:15:89:ef:f0:cc:64:54:a9:04:7e:df:7d:fd:b8:
ef:a2:3a:93:27:b1:1b:a0:34:b7:8f:a9:3b:d2:c6:
7c:5e:fb:64:96:12:2b:b0:b6:58:5a:38:5d:bc:e9:
59:0e:14:33:45:b9:0f:a5:e3:3a:31:25:c9:b2:d3:
68:a7:f6:27:34:fc:28:e3:15:ef:db:d4:ff:85:85:
2f:58:76:6f:e5:8a:e4:02:1d:a9:d1:7d:32:f4:e5:
dd:64:de:7f:4b:01:d9:94:a4:be:7d:44:e3:94:67:
14:f4:77:32:ec:12:a6:d7:f5:01:d3:af:6f:77:76:
54:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:21:4C:65:7F:CF:19:CB:10:A8:D5:20:29:87:E5:D3:FF:E5:CF:69
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7820F914B34F11F0BDE18ED7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.158.0-154.195.167.255
Signature Algorithm: sha256WithRSAEncryption
c1:39:6a:44:85:34:ac:b3:fc:9c:01:38:67:06:9e:f6:7c:7c:
29:1c:d4:66:d6:8e:a2:4d:bd:f0:73:4b:15:27:2f:3e:bb:ea:
c5:7b:a5:54:4d:06:fc:5e:85:a9:fe:10:59:77:a9:6b:fa:c6:
46:fb:36:02:16:b3:f3:43:da:49:8a:96:32:b2:9d:b7:4c:f6:
57:cd:43:e5:3f:9a:b4:50:0f:a1:0e:3b:7c:ff:df:ab:aa:24:
3f:d7:ef:2f:cf:26:eb:2c:a9:1a:fb:7e:fb:9f:fc:03:29:4e:
92:36:ad:dc:5f:79:74:8b:48:7b:4a:e1:42:5d:d2:4d:8e:87:
67:5a:36:53:24:61:40:47:c8:3a:7f:7e:40:51:6e:ea:13:32:
bc:bd:5a:e3:f7:dc:69:c8:dc:a4:90:4a:be:ae:69:1b:4c:ba:
9c:7d:99:6e:89:72:7e:06:c7:cb:90:4d:09:43:70:1e:2f:4c:
3d:24:a0:ec:ca:8c:76:fa:06:7f:57:1d:b5:ad:d1:45:9d:56:
8d:0d:3e:82:74:7a:54:8b:18:43:3d:b1:88:0c:86:a5:bf:a6:
d6:d0:a2:7c:4b:ca:bf:f5:f8:2f:b8:1a:5e:9d:01:61:84:59:
60:d2:f7:d2:28:22:d9:66:64:bf:4f:8b:22:d5:1e:5d:8a:36:
59:fe:b1:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 17:04:45 2025 by rpki-client