Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C3E1B02953211F0AF0630B9DAE4EC9C.roa
File: 7C3E1B02953211F0AF0630B9DAE4EC9C.roa (raw, json)
Hash identifier: s8ISpe5DWPhlfB0a72+20p+DN4g7XITRiXWFkvtmFNI=
Subject key identifier: 03:EA:42:5D:EF:DD:AC:DB:5F:51:AB:10:43:22:CD:C5:DA:23:B7:FA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A027
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C3E1B02953211F0AF0630B9DAE4EC9C.roa
Signing time: Fri 19 Sep 2025 08:27:32 +0000
ROA not before: Fri 19 Sep 2025 08:27:25 +0000
ROA not after: Sun 26 Oct 2025 08:27:25 +0000
asID: 16509
IP address blocks: 154.83.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106535 (0x1a027)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 19 08:27:25 2025 GMT
Not After : Oct 26 08:27:25 2025 GMT
Subject: CN=68cd13f4-feca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:7c:fa:47:d2:27:69:8d:f0:73:be:aa:12:c9:
26:0a:c6:60:ef:ca:29:d6:7d:a6:d6:1b:e1:22:f4:
d9:f9:3f:cd:d2:b9:3f:bf:09:7a:6f:8c:4c:b1:fa:
e7:10:d4:f9:48:0f:ae:65:96:b6:d4:6b:fb:cf:38:
91:24:b9:eb:0a:e8:0a:29:8a:a5:1e:ea:04:9e:46:
3e:6a:86:ba:3d:f6:20:87:96:3d:1d:e0:31:5b:4a:
e5:6c:f2:ec:0f:38:e7:78:fb:11:12:3c:d1:28:05:
b5:32:f4:cb:6e:4f:f8:cd:a8:c9:d1:da:5b:40:3d:
ed:93:92:97:d3:0f:87:82:6d:b1:cc:fb:a5:92:bd:
3f:02:d6:fb:c3:a5:60:0c:14:e9:61:ef:6d:b7:1f:
69:6f:5f:38:4e:47:fd:05:40:d4:a0:e6:b2:73:c9:
49:0c:76:00:72:78:41:61:33:ef:46:7f:eb:6a:e2:
a4:eb:39:5c:0e:56:2f:00:0b:49:73:fa:2c:d8:01:
9a:d4:a3:71:dd:b4:fc:9d:79:0d:75:7e:c2:e2:5f:
68:34:30:09:2c:f4:6b:9c:67:1d:4f:06:92:fc:80:
78:3f:d1:3b:3f:06:32:38:c8:2d:19:2a:7f:f2:79:
18:52:1c:04:50:f2:be:43:cc:69:40:05:94:9e:ba:
98:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EA:42:5D:EF:DD:AC:DB:5F:51:AB:10:43:22:CD:C5:DA:23:B7:FA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C3E1B02953211F0AF0630B9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.178.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:d6:4f:36:c3:28:8e:0d:6d:ce:8b:e0:73:4f:5c:37:e7:d1:
c0:72:5b:7a:d3:a5:4b:cc:8f:05:f0:ad:35:57:10:3f:e5:98:
66:16:e6:15:21:cf:ef:38:8b:ee:15:bb:6c:df:24:77:f7:9f:
05:e8:14:4b:2e:f9:67:86:4c:e0:c1:c0:f3:05:06:be:ef:92:
0f:db:26:30:87:18:d2:a5:3a:c6:2e:2d:c8:d2:44:30:bf:16:
25:65:b4:8c:be:39:ca:72:22:55:88:29:9b:f6:1a:55:79:8d:
a3:7a:45:20:3c:d2:3d:ac:93:42:15:a7:58:48:f1:7c:6d:29:
e6:75:e4:32:b3:95:2c:24:1f:a1:20:44:fb:1a:b7:43:b3:a5:
81:dd:2e:5b:dd:de:71:1b:ab:89:47:6b:9e:0c:1b:33:dd:b6:
3f:7d:bb:78:10:38:96:34:0b:c6:d3:56:08:a6:6f:5d:bb:c4:
a2:53:06:58:1f:17:54:dd:a1:fb:39:0d:f8:f0:26:87:8f:0b:
0f:aa:40:eb:9e:6d:e7:22:35:b6:0c:0e:cc:48:07:74:e4:bd:
25:50:db:6a:51:23:06:51:25:4a:a9:95:42:9c:0e:51:9c:0f:
b5:97:94:84:91:dc:36:7d:dc:a9:76:3d:85:7b:a4:5f:bb:bd:
29:bb:17:89
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAaAnMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwOTE5MDgyNzI1WhcNMjUxMDI2MDgyNzI1WjAYMRYw
FAYDVQQDEw02OGNkMTNmNC1mZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3Xz6R9InaY3wc76qEskmCsZg78op1n2m1hvhIvTZ+T/N0rk/vwl6b4xM
sfrnENT5SA+uZZa21Gv7zziRJLnrCugKKYqlHuoEnkY+aoa6PfYgh5Y9HeAxW0rl
bPLsDzjnePsREjzRKAW1MvTLbk/4zajJ0dpbQD3tk5KX0w+Hgm2xzPulkr0/Atb7
w6VgDBTpYe9ttx9pb184Tkf9BUDUoOayc8lJDHYAcnhBYTPvRn/rauKk6zlcDlYv
AAtJc/os2AGa1KNx3bT8nXkNdX7C4l9oNDAJLPRrnGcdTwaS/IB4P9E7PwYyOMgt
GSp/8nkYUhwEUPK+Q8xpQAWUnrqYSwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAPq
Ql3v3azbX1GrEEMizcXaI7f6MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83QzNFMUIwMjk1MzIxMUYwQUYwNjMwQjlEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlOyMA0GCSqGSIb3DQEB
CwUAA4IBAQBa1k82wyiODW3Oi+BzT1w359HAclt606VLzI8F8K01VxA/5ZhmFuYV
Ic/vOIvuFbts3yR3958F6BRLLvlnhkzgwcDzBQa+75IP2yYwhxjSpTrGLi3I0kQw
vxYlZbSMvjnKciJViCmb9hpVeY2jekUgPNI9rJNCFadYSPF8bSnmdeQys5UsJB+h
IET7GrdDs6WB3S5b3d5xG6uJR2ueDBsz3bY/fbt4EDiWNAvG01YIpm9du8SiUwZY
HxdU3aH7OQ348CaHjwsPqkDrnm3nIjW2DA7MSAd05L0lUNtqUSMGUSVKqZVCnA5R
nA+1l5SEkdw2fdypdj2Fe6Rfu70puxeJ
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:46 2025 by rpki-client