Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B659B12A28211F09B0B7281DAE4EC9C.roa
File: 7B659B12A28211F09B0B7281DAE4EC9C.roa (raw, json)
Hash identifier: CGY3YN/7WbszkVsyurnsCCupbulfSBzoUHnCmvCxGWg=
Subject key identifier: 9F:54:2F:6A:18:99:65:86:00:83:59:E8:88:7E:A0:A1:04:BD:43:D6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A254
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B659B12A28211F09B0B7281DAE4EC9C.roa
Signing time: Mon 06 Oct 2025 07:02:55 +0000
ROA not before: Mon 06 Oct 2025 07:02:50 +0000
ROA not after: Thu 06 Nov 2025 07:02:50 +0000
asID: 45194
IP address blocks: 154.84.192.0/24 maxlen: 24
154.84.194.0/24 maxlen: 24
154.84.195.0/24 maxlen: 24
154.84.196.0/24 maxlen: 24
154.84.197.0/24 maxlen: 24
154.84.198.0/24 maxlen: 24
154.84.199.0/24 maxlen: 24
154.84.223.0/24 maxlen: 24
154.84.244.0/24 maxlen: 24
154.84.245.0/24 maxlen: 24
154.84.246.0/24 maxlen: 24
154.84.247.0/24 maxlen: 24
154.84.248.0/24 maxlen: 24
154.84.249.0/24 maxlen: 24
154.84.250.0/24 maxlen: 24
154.84.251.0/24 maxlen: 24
154.84.252.0/24 maxlen: 24
154.84.253.0/24 maxlen: 24
154.84.254.0/24 maxlen: 24
154.84.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107092 (0x1a254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 6 07:02:50 2025 GMT
Not After : Nov 6 07:02:50 2025 GMT
Subject: CN=68e3699f-77d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:80:5f:d8:26:51:91:3b:40:5b:8d:3e:a8:69:
cf:6d:aa:e5:9e:0d:91:00:bb:38:ea:64:ff:ed:bd:
2f:62:00:2b:1d:03:74:6f:22:20:5f:cd:52:0b:c3:
b4:63:8f:89:ce:f6:1f:63:08:89:83:78:77:d5:e5:
88:a8:a5:b0:08:c8:15:de:dc:7c:0f:10:e7:31:57:
6f:1f:87:53:b9:4a:11:6f:02:02:ad:ca:e0:23:f6:
cc:ad:2e:6f:23:2c:ba:e0:bd:9c:ec:14:2f:56:e6:
d9:b6:72:9a:ed:c7:67:80:7f:e3:bf:e0:cd:17:ae:
b2:8e:80:f3:3e:02:10:e3:eb:26:10:4a:ae:e9:c9:
b3:43:2a:cc:23:2b:a7:ca:36:66:db:92:37:80:c4:
87:a2:80:99:45:cc:2c:8d:5d:8a:01:1f:3d:4f:2b:
ff:95:0b:cb:06:8c:1b:41:f9:e1:b2:ed:15:3e:ed:
e7:ff:f8:31:15:d6:5f:c2:c2:e0:d8:d0:6a:27:ef:
71:53:1a:72:b5:36:32:89:1f:28:72:9b:c4:05:8e:
65:9e:8c:f7:0f:21:89:62:0a:a8:25:2d:61:73:0c:
2e:30:b0:e3:6e:09:48:3b:63:68:2f:fc:56:d9:d7:
dd:28:c4:e7:78:03:28:05:08:07:b0:4a:06:8d:2f:
60:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:54:2F:6A:18:99:65:86:00:83:59:E8:88:7E:A0:A1:04:BD:43:D6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B659B12A28211F09B0B7281DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.192.0/24
154.84.194.0-154.84.199.255
154.84.223.0/24
154.84.244.0-154.84.255.255
Signature Algorithm: sha256WithRSAEncryption
27:93:08:dd:19:fb:5a:eb:4f:04:2a:44:29:51:6a:d9:4a:48:
89:cf:6a:f1:0a:8f:ea:55:15:ce:a2:4e:b5:46:d5:58:f5:f8:
40:f5:de:b0:11:ac:1d:64:b4:a4:ee:ca:60:d7:a6:71:ac:7d:
5d:bc:0e:32:e1:cd:ed:41:f0:4a:26:77:8d:03:6a:d1:3e:b9:
aa:46:44:82:7d:a8:25:6d:fa:93:56:eb:8e:4b:49:5c:9a:19:
5b:94:8a:29:ca:c2:ad:ae:2b:95:42:c2:f7:77:c3:83:ac:94:
35:57:d2:ee:4b:b0:44:0d:87:37:6e:25:12:fe:f2:2d:15:72:
32:0a:d8:d1:26:ad:25:80:e5:35:09:cd:0f:ad:90:e4:cb:84:
b2:21:aa:56:45:60:cd:18:85:8d:d4:90:0e:69:82:c9:18:50:
59:03:80:64:87:3c:bb:58:16:24:b5:4e:d5:ad:3b:1c:28:4c:
b7:58:e3:c5:7e:0c:d4:67:78:7d:be:ab:69:b2:2e:02:9e:a0:
42:13:a8:e4:86:e9:08:f9:61:39:25:fa:eb:3f:6e:85:e7:48:
99:0f:f6:a3:b2:aa:43:f6:05:f1:5d:f7:2e:6a:40:b4:a9:65:
63:ea:2e:51:38:42:d7:ec:07:1e:d6:52:dc:bd:1d:4c:32:a3:
84:93:65:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:16 2025 by rpki-client