Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83740B0E946D11F0B94C7AC1DAE4EC9C.roa
File: 83740B0E946D11F0B94C7AC1DAE4EC9C.roa (raw, json)
Hash identifier: U/hOnIdC0RLnuOJZlaCXF15CbQUN+jF4M9fstg8ducs=
Subject key identifier: 40:1E:E3:07:53:4F:7D:9D:B7:97:18:AF:49:FB:D6:18:88:58:8D:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A007
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83740B0E946D11F0B94C7AC1DAE4EC9C.roa
Signing time: Thu 18 Sep 2025 08:57:33 +0000
ROA not before: Thu 18 Sep 2025 08:57:28 +0000
ROA not after: Tue 28 Oct 2025 08:57:28 +0000
asID: 211826
IP address blocks: 154.194.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 21 Sep 2025 00:06:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106503 (0x1a007)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 18 08:57:28 2025 GMT
Not After : Oct 28 08:57:28 2025 GMT
Subject: CN=68cbc97d-9fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c4:4b:2a:de:e2:c8:cc:90:fc:43:b5:1f:91:
b8:93:87:48:f3:a1:f3:32:6e:f1:37:4f:e4:b1:58:
ce:05:d6:e5:b4:bb:7b:2d:db:e9:82:31:c0:a0:b2:
a3:82:e9:d3:cd:2b:7c:9f:d6:82:73:22:25:69:35:
94:0f:57:41:8b:a5:29:2e:98:d6:c5:a8:ed:bd:3c:
d4:d5:30:9f:31:7a:b8:1c:2c:7e:db:2a:3f:1c:22:
61:b5:4b:83:0a:e5:78:fc:11:6d:16:71:77:86:a0:
a9:f6:7e:5d:18:0e:52:6a:7b:2d:74:a6:38:6f:20:
aa:ae:3a:84:b3:05:99:b3:64:dd:53:10:bf:1b:e2:
b6:b9:36:74:e1:4b:fd:e2:39:01:ed:32:de:73:b8:
af:a2:50:5f:d1:0e:03:9b:53:b5:1d:e3:c8:9e:f9:
e1:fd:28:4b:64:57:3a:07:f0:00:be:f3:2f:d8:f2:
49:f8:22:ce:0e:e4:7d:69:2d:c6:aa:54:d0:ac:11:
8d:7c:2e:0e:0c:d1:d8:6a:60:b3:7c:2e:bc:39:54:
37:a1:47:5a:d7:f1:4f:9c:4e:ee:c6:d5:2c:b7:d8:
85:f7:9d:30:8e:18:0a:62:77:d9:f9:91:84:5d:2a:
68:98:81:6f:f8:44:a2:c5:d8:9a:54:40:46:f4:4b:
e5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:1E:E3:07:53:4F:7D:9D:B7:97:18:AF:49:FB:D6:18:88:58:8D:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83740B0E946D11F0B94C7AC1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.55.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:3a:5d:fe:c6:43:ee:fc:6c:fd:ef:a7:51:40:f2:a7:ec:e5:
4d:0e:7b:ee:86:2e:85:48:61:db:ce:8d:e2:11:54:a8:c1:64:
ae:87:cc:0b:35:c1:1d:57:9d:cc:46:8a:d6:08:12:3b:64:2c:
16:85:ac:17:ed:ab:f5:9b:0c:db:f1:5b:05:bf:79:80:73:f2:
7f:0b:2f:29:5b:ff:bb:cc:61:19:b6:43:ff:2f:96:5f:c1:b4:
a1:7d:ee:bd:55:80:ff:4e:13:b7:40:db:13:3f:12:8a:f9:c5:
d1:33:53:ab:6e:a8:05:9c:f0:4d:d1:e3:b5:24:2b:37:82:19:
aa:6e:2b:39:62:13:33:2b:82:cd:6e:5c:c7:0b:1a:20:d7:fd:
0d:61:80:ed:3c:49:9b:e5:72:cb:3c:31:ac:14:89:52:bb:38:
f8:18:1d:4a:68:41:16:7f:da:22:0b:0a:f6:7f:0d:c1:c9:7e:
1e:91:f7:89:29:44:d1:dd:cf:9f:e2:91:e1:d5:19:35:8e:e4:
ca:af:68:04:48:32:60:72:6b:af:75:61:c2:d3:6b:b8:b8:2e:
78:26:60:22:c0:a5:cc:0f:7d:34:90:32:76:18:30:62:52:12:
05:70:fc:1e:1a:58:54:b2:9d:91:0a:62:09:82:d6:1c:eb:84:
10:ff:bf:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 05:17:09 2025 by rpki-client