Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FD554588D6511F09FE1BB85DAE4EC9C.roa
File: 7FD554588D6511F09FE1BB85DAE4EC9C.roa (raw, json)
Hash identifier: 8kJjo9v6AUJLT6AfDZsZ9cWDTgnzbnz4h/75KqZf46g=
Subject key identifier: 9D:4C:AA:54:D4:5F:88:E7:7F:2F:DF:DB:0B:19:57:5D:B0:53:EA:CA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019F16
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FD554588D6511F09FE1BB85DAE4EC9C.roa
Signing time: Tue 09 Sep 2025 10:12:33 +0000
ROA not before: Tue 09 Sep 2025 10:12:28 +0000
ROA not after: Fri 17 Oct 2025 10:12:28 +0000
asID: 209242
IP address blocks: 154.197.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 19 Sep 2025 05:10:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106262 (0x19f16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 9 10:12:28 2025 GMT
Not After : Oct 17 10:12:28 2025 GMT
Subject: CN=68bffd91-2ef7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:16:ee:42:21:b1:e1:fb:2f:6a:44:81:58:43:
27:dd:4f:43:00:7b:36:fc:0e:13:b9:b7:aa:91:09:
63:f9:f4:7e:e6:a6:2d:db:3f:86:38:f6:8b:63:31:
18:7d:2c:db:9c:f0:18:97:e0:ed:32:e7:e2:1a:70:
eb:90:e2:04:57:0e:f6:50:e4:51:2f:62:42:46:25:
3e:21:40:2d:ed:c7:b9:b7:70:32:6c:86:d2:72:d1:
06:15:f0:e3:11:b5:0f:cd:64:d2:95:e9:6e:1e:d8:
64:5b:7a:29:fc:17:ee:8d:1a:1f:fd:03:c7:5c:b6:
e5:65:83:45:7b:0f:74:9d:bf:9f:22:c3:7c:a1:94:
69:5e:e0:0f:0f:30:7d:10:2b:ae:15:d9:aa:a3:db:
6d:a6:44:3f:12:f9:5d:f2:8a:84:9a:ab:3d:66:18:
9a:a7:8c:b1:4c:f3:45:11:3b:6c:27:07:33:24:cd:
b5:f1:e3:ef:e9:ca:b3:1a:5d:fa:3b:a5:b6:9f:d1:
ab:c3:aa:91:c2:06:89:ad:de:90:71:70:cc:74:67:
03:a2:f2:61:ce:bb:a3:af:0e:f3:21:24:0b:22:22:
cf:bf:1c:6e:07:1c:5b:62:e5:74:31:97:1e:92:36:
cb:4a:bf:88:66:ed:c5:56:e2:b5:51:28:e9:6b:16:
06:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:4C:AA:54:D4:5F:88:E7:7F:2F:DF:DB:0B:19:57:5D:B0:53:EA:CA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7FD554588D6511F09FE1BB85DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.75.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:21:34:3a:28:78:91:67:6c:e5:9b:62:ff:e8:42:37:14:db:
a9:76:8d:ae:b5:20:c1:90:6a:c8:3a:a5:20:b7:ea:53:53:97:
42:58:61:39:34:37:03:fd:55:fa:c2:ca:33:44:a4:f3:8a:66:
f2:72:11:89:db:47:49:d1:fa:fc:ff:c3:22:66:6b:5b:dd:d4:
ec:e4:ce:b4:79:8c:6d:f4:60:67:89:bf:99:96:b7:13:3b:db:
cf:7d:8c:ee:54:e5:53:22:5f:b9:32:24:8e:2a:d2:48:f9:30:
dc:96:65:20:78:2d:ee:82:33:b2:3c:ac:a9:db:45:83:37:3c:
58:5d:9e:c0:67:ea:6f:1c:08:eb:05:d4:49:7b:0c:ef:b6:dc:
a1:38:51:46:69:6d:f6:40:d5:a9:bf:b2:4a:d1:29:60:3f:80:
7c:8e:40:1f:c1:b5:3a:fc:a1:4c:1f:98:6a:72:fb:e1:f9:08:
13:4f:5c:9b:88:a6:2d:3e:cd:55:d1:d8:07:0f:f4:f1:6f:5f:
3e:29:18:74:bd:45:32:cc:13:7d:61:61:db:e1:d7:46:c8:24:
fb:f2:cf:33:c9:4f:78:58:8c:e1:29:28:cc:22:19:42:3e:50:
e9:24:7a:4f:ab:be:42:02:cc:13:f7:b0:90:da:85:fa:e3:15:
d0:17:1c:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 17 23:23:46 2025 by rpki-client