Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D259678A43411F0A570CC78DAE4EC9C.roa
File: 8D259678A43411F0A570CC78DAE4EC9C.roa (raw, json)
Hash identifier: bbNxhJ5OGO8k6NN+LdOCmQLLG7fE3o9U5oxt8sPiidY=
Subject key identifier: 34:9A:B3:7D:E8:FB:82:6E:D9:2C:DE:A4:E9:77:8A:99:FA:B6:0A:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A2C7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D259678A43411F0A570CC78DAE4EC9C.roa
Signing time: Wed 08 Oct 2025 10:50:06 +0000
ROA not before: Wed 08 Oct 2025 10:50:01 +0000
ROA not after: Fri 14 Nov 2025 10:50:01 +0000
asID: 212238
IP address blocks: 154.90.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107207 (0x1a2c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 8 10:50:01 2025 GMT
Not After : Nov 14 10:50:01 2025 GMT
Subject: CN=68e641de-664f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:35:5b:bb:12:11:13:f9:d6:71:82:7c:5f:ad:
b5:74:30:87:3c:4f:7d:10:8a:2f:5c:9a:d9:f7:8b:
3e:b6:fc:3f:45:0d:0d:d8:3c:a0:36:8b:d5:b3:b1:
4b:78:f2:8c:eb:12:68:05:1f:4b:2a:0a:28:48:38:
cf:04:b5:20:46:1d:f8:4f:91:0a:98:6f:0e:52:82:
91:72:9a:b2:8b:f8:37:66:18:ec:e9:2d:1e:24:10:
b3:07:32:ac:09:18:1f:68:55:ec:06:62:ac:43:43:
d3:94:53:7d:54:bb:a2:e1:3d:a6:94:56:c1:37:31:
cb:92:17:49:5c:71:cc:8a:7f:ea:ee:64:45:0c:b2:
cd:fa:c9:38:ae:83:c8:ce:6a:54:3c:a8:48:7d:f4:
72:e3:48:4f:53:dd:4e:bc:44:2d:a9:50:17:ca:b4:
fc:f0:e3:fe:81:ac:4d:2c:41:50:21:1e:8b:20:6a:
41:28:7e:1b:7b:fb:7f:11:c0:c7:0f:ff:3a:b3:db:
24:66:50:ab:7c:26:91:0a:14:90:1d:40:f1:7f:cd:
4c:16:d6:28:c4:8d:9b:9d:81:87:70:28:fb:cc:9b:
ff:fa:36:8f:c4:80:81:8c:03:8d:00:95:eb:a3:12:
b9:c3:70:45:50:5c:a3:23:fd:d8:8b:9e:e1:13:5e:
00:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:9A:B3:7D:E8:FB:82:6E:D9:2C:DE:A4:E9:77:8A:99:FA:B6:0A:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8D259678A43411F0A570CC78DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.71.0/24
Signature Algorithm: sha256WithRSAEncryption
06:0c:85:00:42:6c:8a:b4:71:9b:5d:88:bd:89:22:6b:ad:ac:
e2:ab:05:bd:87:7d:7b:00:a0:43:36:9b:1c:56:ef:11:56:31:
30:7d:61:d6:26:92:b2:50:2a:c0:58:14:53:dc:46:fa:58:4e:
1e:22:38:99:91:08:84:88:57:83:ef:cf:98:a2:9f:5c:4a:6c:
6e:bc:9c:e2:b1:4d:dd:96:36:95:4b:e0:bd:1e:41:06:b7:94:
0f:5e:ca:23:1a:28:7a:90:d3:0a:06:35:11:cf:29:44:e7:b2:
2f:44:47:03:7f:cb:80:a1:6b:6b:8c:fd:d8:cf:78:b4:0a:eb:
9e:a0:a6:38:0c:31:99:fa:24:fb:1a:d0:b8:36:2c:61:20:d7:
aa:89:1b:09:71:c5:44:7d:ac:74:cc:9d:04:d6:2e:35:0f:08:
88:0a:49:2c:7a:f8:42:d8:a4:7a:f7:51:af:a5:ad:87:59:a3:
a1:9e:ba:32:2d:85:de:69:81:c6:00:12:03:77:18:d0:4a:c7:
3b:34:57:eb:46:ad:75:69:a4:85:62:69:a7:18:bb:79:1c:84:
1e:ac:6f:f6:da:d6:17:d5:73:fb:44:1e:be:d1:cd:fc:5c:4f:
91:13:2c:79:7a:9b:3a:8b:ac:51:b2:77:43:cc:58:5d:df:a2:
2e:c0:d7:7b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAaLHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMDA4MTA1MDAxWhcNMjUxMTE0MTA1MDAxWjAYMRYw
FAYDVQQDEw02OGU2NDFkZS02NjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4DVbuxIRE/nWcYJ8X621dDCHPE99EIovXJrZ94s+tvw/RQ0N2DygNovV
s7FLePKM6xJoBR9LKgooSDjPBLUgRh34T5EKmG8OUoKRcpqyi/g3Zhjs6S0eJBCz
BzKsCRgfaFXsBmKsQ0PTlFN9VLui4T2mlFbBNzHLkhdJXHHMin/q7mRFDLLN+sk4
roPIzmpUPKhIffRy40hPU91OvEQtqVAXyrT88OP+gaxNLEFQIR6LIGpBKH4be/t/
EcDHD/86s9skZlCrfCaRChSQHUDxf81MFtYoxI2bnYGHcCj7zJv/+jaPxICBjAON
AJXroxK5w3BFUFyjI/3Yi57hE14ArQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDSa
s33o+4Ju2SzepOl3ipn6tgpGMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84RDI1OTY3OEE0MzQxMUYwQTU3MENDNzhEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlpHMA0GCSqGSIb3DQEB
CwUAA4IBAQAGDIUAQmyKtHGbXYi9iSJrraziqwW9h317AKBDNpscVu8RVjEwfWHW
JpKyUCrAWBRT3Eb6WE4eIjiZkQiEiFeD78+Yop9cSmxuvJzisU3dljaVS+C9HkEG
t5QPXsojGih6kNMKBjURzylE57IvREcDf8uAoWtrjP3Yz3i0CuueoKY4DDGZ+iT7
GtC4NixhINeqiRsJccVEfax0zJ0E1i41DwiICkksevhC2KR691Gvpa2HWaOhnroy
LYXeaYHGABIDdxjQSsc7NFfrRq11aaSFYmmnGLt5HIQerG/22tYX1XP7RB6+0c38
XE+REyx5eps6i6xRsndDzFhd36IuwNd7
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:29:48 2025 by rpki-client