Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95F048CAA4E311F0AFE124EBDAE4EC9C.roa
File: 95F048CAA4E311F0AFE124EBDAE4EC9C.roa (raw, json)
Hash identifier: 3byWsWMFeJqsRud6q0ZlO/8oiJyz1NLcmesa1hosD6g=
Subject key identifier: ED:B5:E0:33:D3:FE:B6:1A:B1:9B:CF:BB:8F:53:F3:93:CF:5F:15:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A2EA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95F048CAA4E311F0AFE124EBDAE4EC9C.roa
Signing time: Thu 09 Oct 2025 07:43:03 +0000
ROA not before: Thu 09 Oct 2025 07:42:58 +0000
ROA not after: Wed 05 Nov 2025 07:42:58 +0000
asID: 264605
IP address blocks: 154.88.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107242 (0x1a2ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 9 07:42:58 2025 GMT
Not After : Nov 5 07:42:58 2025 GMT
Subject: CN=68e76787-b827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:3a:69:38:73:9a:36:80:32:bb:9d:62:28:2f:
bf:5f:62:49:e2:13:fa:1b:86:4a:52:ff:32:75:11:
44:21:a1:2d:d8:41:00:c7:b9:77:50:62:f1:5d:52:
53:45:2d:db:62:1b:21:24:f0:0a:ed:21:a9:d9:94:
41:70:59:ab:b9:b9:e3:28:28:0d:6a:a3:84:29:f4:
1a:6b:35:47:1e:2d:7f:b2:0b:2b:73:e5:2e:fd:44:
a9:e5:1d:f1:20:9c:57:fd:cd:d8:ff:14:5f:ed:a5:
c4:4f:87:d8:ef:ce:b0:04:aa:19:51:27:61:c8:ca:
ca:5e:a9:9b:c1:69:7e:51:5d:b0:8c:3b:78:95:dd:
0f:7b:e3:1c:98:88:f0:9c:66:55:da:d3:05:75:d9:
ee:c8:8a:35:8f:15:c2:c1:da:5a:b7:39:60:0c:a3:
4d:59:4c:92:47:01:3f:fb:b5:4c:85:a8:a6:9b:05:
86:5f:0e:60:a4:a5:98:aa:9a:77:46:26:51:75:ce:
f6:92:94:da:31:53:7a:19:c1:61:5a:44:1d:3d:de:
95:69:18:b7:14:2b:33:7b:00:05:97:72:2e:4c:d6:
c9:5d:38:89:23:00:96:ec:72:46:cc:82:22:6b:c2:
4a:ad:12:6f:18:61:1d:94:1c:49:ab:b8:25:45:e8:
38:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:B5:E0:33:D3:FE:B6:1A:B1:9B:CF:BB:8F:53:F3:93:CF:5F:15:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95F048CAA4E311F0AFE124EBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.192.0/18
Signature Algorithm: sha256WithRSAEncryption
8f:09:f1:39:b5:85:05:c2:2b:f3:b0:83:5f:a9:99:87:5c:0c:
2f:db:ce:30:51:07:0d:34:54:ad:e6:88:0b:9b:60:52:24:0c:
50:73:5d:17:26:1a:f0:12:0a:04:3c:a4:c1:58:7a:a8:3b:1b:
ff:ed:6d:94:27:0d:6e:e1:12:f2:35:1a:73:97:b0:7f:9f:c9:
83:05:ed:8c:8f:f6:cf:77:0e:7c:0e:a6:92:9a:1e:52:33:a1:
48:1c:0b:64:d5:a8:d5:b8:af:19:01:fc:ee:77:fa:24:38:9a:
9c:d8:6a:8a:0b:c9:a6:c7:cb:c4:27:97:cd:de:c3:12:9b:b7:
ad:7f:05:33:4b:fd:5f:54:7c:cc:e4:74:a9:58:d3:d2:57:89:
5f:be:98:08:2c:f2:83:8c:c3:e8:c9:03:15:13:bb:b9:a9:b4:
2c:a6:ca:f8:02:85:11:95:ff:fe:06:42:7f:88:22:e9:41:16:
05:68:8d:45:ba:eb:dc:8c:01:5a:f0:e7:97:a3:1d:f8:e0:d1:
ce:5d:85:b7:55:aa:17:69:c3:5b:ba:be:87:b6:2a:fc:a4:5f:
13:02:62:bc:3c:1e:59:4b:bc:7e:c0:d9:a4:21:2e:e6:b1:ec:
4b:66:be:f2:d9:cb:05:f1:7a:2f:cd:5d:82:cc:96:43:3c:2d:
f0:93:7f:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:00 2025 by rpki-client