Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8263C66A79B411F08783EDA2DAE4EC9C.roa
File: 8263C66A79B411F08783EDA2DAE4EC9C.roa (raw, json)
Hash identifier: /gt9Rh/PWGifH01kbUGhC6yMoNjL32oJbADu023Kt7k=
Subject key identifier: AF:13:9A:30:3A:8F:B1:5B:89:08:0F:71:AF:56:07:D6:84:A6:18:05
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0191D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8263C66A79B411F08783EDA2DAE4EC9C.roa
Signing time: Fri 15 Aug 2025 08:47:44 +0000
ROA not before: Fri 15 Aug 2025 08:47:39 +0000
ROA not after: Fri 19 Sep 2025 08:47:39 +0000
asID: 202736
IP address blocks: 154.88.53.0/24 maxlen: 24
154.88.54.0/24 maxlen: 24
154.88.56.0/24 maxlen: 24
154.88.57.0/24 maxlen: 24
154.88.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Aug 2025 00:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102864 (0x191d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 15 08:47:39 2025 GMT
Not After : Sep 19 08:47:39 2025 GMT
Subject: CN=689ef430-af87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b4:1d:a9:93:85:01:bb:e3:7a:71:94:bc:73:
e8:98:f5:57:74:09:8f:39:21:9d:4b:cc:1e:d6:61:
68:77:8e:a7:25:8d:78:6e:28:97:e9:fe:d9:23:6c:
b2:6d:aa:94:6b:17:ea:b9:f6:f3:92:fe:2e:61:27:
53:84:f9:c8:d6:e3:a1:f7:35:ca:37:ce:e4:32:d6:
d4:2a:71:d7:7c:0d:1c:4b:3f:5a:f7:18:40:57:22:
2f:9c:d8:73:ae:0e:d3:c1:cb:2c:ce:94:a5:41:ff:
6b:4d:bd:08:9e:e0:42:98:df:dd:05:7d:f6:a6:a4:
4f:bf:8f:26:e8:40:ac:81:15:28:4a:96:99:33:a8:
9b:28:9e:7a:05:85:3f:9d:d9:df:97:cb:b2:22:56:
d9:2a:40:b2:37:ab:9f:90:88:79:67:c3:bf:22:8e:
77:ab:e6:5a:cf:bb:41:c1:8f:21:2b:d9:94:3a:b2:
4c:7b:47:ab:57:c8:79:4a:b6:af:8d:3c:79:62:f3:
b6:2e:bc:90:07:0c:6f:1f:54:3d:52:57:32:23:94:
42:af:f1:66:50:15:f8:6f:ee:4d:5e:da:39:0f:ea:
08:6e:cd:81:c3:6f:0f:8e:f3:cc:dd:2d:b9:d7:26:
19:9a:08:24:c9:e5:aa:0d:7c:34:24:ac:1b:4e:a0:
27:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:13:9A:30:3A:8F:B1:5B:89:08:0F:71:AF:56:07:D6:84:A6:18:05
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8263C66A79B411F08783EDA2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.53.0-154.88.54.255
154.88.56.0-154.88.58.255
Signature Algorithm: sha256WithRSAEncryption
33:d7:91:e3:63:46:04:0c:0c:5f:a2:bf:5b:be:0d:32:37:a2:
0e:9d:5f:c9:7c:0f:c7:55:0f:28:ef:52:10:5a:0c:00:65:e9:
c0:7f:30:87:67:d3:79:c7:3f:af:ea:81:bd:a6:ca:8a:11:40:
fd:57:96:f3:75:60:58:35:60:af:b1:b9:89:24:f7:35:6b:51:
b4:0b:3f:50:4c:96:b6:7d:79:f8:36:8f:c1:b0:97:9f:21:d0:
65:b4:e0:5b:10:04:5c:6b:66:69:45:bf:d5:4b:ef:b2:87:dd:
45:21:58:f0:40:8d:c9:20:26:12:b8:9c:1f:95:53:ec:06:df:
fd:7a:76:7c:e7:dd:25:f3:0c:30:bb:37:32:5f:30:b2:25:e3:
c1:38:a4:29:4d:e8:be:f4:40:e2:96:53:87:9b:49:87:3f:fe:
95:42:10:ae:3c:36:57:10:05:05:35:06:09:e0:fb:42:b5:8e:
79:54:3d:9d:03:12:00:0e:36:26:59:89:f4:95:ae:a7:75:5e:
6d:92:76:57:bb:31:c2:23:05:3e:85:2a:07:6b:ca:28:b5:12:
36:83:79:81:a0:ed:d7:a6:46:b0:3d:e6:46:51:5f:8b:7f:9f:
17:53:ba:69:1a:9a:69:a6:5a:fc:b4:2a:b8:49:f6:b2:b5:06:
cd:fe:13:20
-----BEGIN CERTIFICATE-----
MIIFmjCCBIKgAwIBAgIDAZHQMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODE1MDg0NzM5WhcNMjUwOTE5MDg0NzM5WjAYMRYw
FAYDVQQDEw02ODllZjQzMC1hZjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7rQdqZOFAbvjenGUvHPomPVXdAmPOSGdS8we1mFod46nJY14biiX6f7Z
I2yybaqUaxfqufbzkv4uYSdThPnI1uOh9zXKN87kMtbUKnHXfA0cSz9a9xhAVyIv
nNhzrg7TwcsszpSlQf9rTb0InuBCmN/dBX32pqRPv48m6ECsgRUoSpaZM6ibKJ56
BYU/ndnfl8uyIlbZKkCyN6ufkIh5Z8O/Io53q+Zaz7tBwY8hK9mUOrJMe0erV8h5
SravjTx5YvO2LryQBwxvH1Q9UlcyI5RCr/FmUBX4b+5NXto5D+oIbs2Bw28PjvPM
3S251yYZmggkyeWqDXw0JKwbTqAnDwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFK8T
mjA6j7FbiQgPca9WB9aEphgFMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84MjYzQzY2QTc5QjQxMUYwODc4M0VEQTJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcMAwDBACaWDUDBACaWDYwDAME
A5pYOAMEAJpYOjANBgkqhkiG9w0BAQsFAAOCAQEAM9eR42NGBAwMX6K/W74NMjei
Dp1fyXwPx1UPKO9SEFoMAGXpwH8wh2fTecc/r+qBvabKihFA/VeW83VgWDVgr7G5
iST3NWtRtAs/UEyWtn15+DaPwbCXnyHQZbTgWxAEXGtmaUW/1UvvsofdRSFY8ECN
ySAmEricH5VT7Abf/Xp2fOfdJfMMMLs3Ml8wsiXjwTikKU3ovvRA4pZTh5tJhz/+
lUIQrjw2VxAFBTUGCeD7QrWOeVQ9nQMSAA42JlmJ9JWup3VebZJ2V7sxwiMFPoUq
B2vKKLUSNoN5gaDt16ZGsD3mRlFfi3+fF1O6aRqaaaZa/LQquEn2srUGzf4TIA==
-----END CERTIFICATE-----
Generated at Thu Aug 21 03:15:37 2025 by rpki-client