Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94D2778A834411F0B4C2FC91DAE4EC9C.roa
File: 94D2778A834411F0B4C2FC91DAE4EC9C.roa (raw, json)
Hash identifier: QVNxyk6GQNPAO7ZCaZifuYnVHA8ZBogke11WxR9Qzws=
Subject key identifier: E3:E4:50:34:97:1F:3C:AF:89:9A:E1:02:3D:37:CB:47:BD:3E:88:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019891
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94D2778A834411F0B4C2FC91DAE4EC9C.roa
Signing time: Wed 27 Aug 2025 12:51:43 +0000
ROA not before: Wed 27 Aug 2025 12:51:38 +0000
ROA not after: Mon 03 Nov 2025 12:51:38 +0000
asID: 138915
IP address blocks: 154.93.73.0/24 maxlen: 24
154.93.86.0/24 maxlen: 24
154.93.92.0/24 maxlen: 24
154.93.93.0/24 maxlen: 24
154.93.99.0/24 maxlen: 24
154.93.103.0/24 maxlen: 24
154.93.106.0/24 maxlen: 24
154.93.107.0/24 maxlen: 24
154.93.108.0/24 maxlen: 24
154.93.112.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104593 (0x19891)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 27 12:51:38 2025 GMT
Not After : Nov 3 12:51:38 2025 GMT
Subject: CN=68aeff5f-894f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:3e:d7:73:cb:b9:c9:f6:05:04:4d:93:cf:b1:
3c:61:21:d1:d2:06:2c:90:74:4d:02:3c:dc:a2:5a:
51:71:2d:d6:26:52:f7:f7:38:45:29:8a:22:c9:d6:
f1:d9:45:1e:1b:85:2f:42:8c:41:52:5f:60:47:5d:
43:00:96:03:79:04:67:c4:1e:68:50:b4:38:33:c1:
51:b2:ec:60:b7:25:cf:ad:91:50:e3:50:9f:6d:95:
fe:14:6a:9f:ae:2c:1b:ef:4a:80:89:bb:7d:69:76:
ca:20:95:d3:12:7c:62:26:98:b5:63:c5:48:c7:0f:
90:99:88:49:6e:20:9c:95:ff:10:f7:ca:86:e6:25:
0c:e9:d1:86:08:b1:de:a8:77:09:2f:05:4f:76:26:
d2:f8:50:58:71:bc:05:1a:b1:ab:16:af:81:42:8a:
f9:94:7a:6b:56:bd:97:96:26:4c:b0:d4:e7:3c:ea:
61:58:cc:cc:38:1e:62:0e:1a:1e:a6:84:0b:23:39:
0e:44:71:e8:77:e5:9f:cf:51:6e:37:fc:99:cf:76:
4f:f0:2f:66:5e:95:8b:5c:b4:38:f9:f6:be:83:bd:
60:5b:16:91:3b:e9:c3:2e:de:d9:0e:a9:3f:e3:e2:
5d:03:d9:c0:ae:ae:84:fd:c5:66:3b:9d:bb:f7:e9:
9d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E4:50:34:97:1F:3C:AF:89:9A:E1:02:3D:37:CB:47:BD:3E:88:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/94D2778A834411F0B4C2FC91DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.73.0/24
154.93.86.0/24
154.93.92.0/23
154.93.99.0/24
154.93.103.0/24
154.93.106.0-154.93.108.255
154.93.112.0/23
Signature Algorithm: sha256WithRSAEncryption
ce:b5:9c:4c:ad:8a:53:b4:97:2d:0e:04:89:7a:a2:0d:24:f7:
96:47:89:01:96:1c:06:61:a6:77:7d:07:d2:a1:14:1f:f8:2e:
03:ec:d9:b6:0b:a4:44:e3:0d:2c:12:4d:ae:98:2c:c8:ac:a5:
87:b6:f1:d4:19:0f:0e:66:42:ba:40:ab:17:fc:9a:45:33:af:
64:96:7e:17:5a:fc:b1:51:7d:24:bf:d0:60:a2:07:66:1e:0e:
d1:74:47:f7:f2:21:21:e6:95:66:59:4c:40:6b:38:c1:b3:94:
1b:d4:73:7e:d6:a1:29:da:ac:1b:cd:18:e2:73:3c:20:eb:c6:
28:9a:91:e2:da:66:01:94:7b:7a:c8:ca:9f:2b:a2:21:d6:bf:
bf:14:d8:ab:d6:ce:61:ab:27:9f:03:33:a2:3b:60:40:65:18:
da:9d:28:2d:2b:49:68:78:67:95:c2:ff:a7:6a:51:d6:32:b1:
7c:77:00:5d:50:86:c7:01:dd:82:9c:d9:62:2b:63:75:1c:2e:
db:99:71:2e:ab:c3:56:35:9c:4c:f2:3b:a7:f2:4d:fb:29:09:
c7:97:03:80:56:6e:63:11:c7:c9:ec:8c:d6:51:aa:42:ba:41:
f4:06:97:cc:07:b2:0f:cd:06:43:4e:27:f2:f2:c9:f3:ed:d1:
6a:ea:e0:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:32:41 2025 by rpki-client