Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C0E8DDE831911F083ED5B7CDAE4EC9C.roa
File: 9C0E8DDE831911F083ED5B7CDAE4EC9C.roa (raw, json)
Hash identifier: gshNeFza01yTPEpRQTIw509hixDG1b0N3KdQ+NYRJvo=
Subject key identifier: DA:5A:FB:D8:73:68:7F:01:03:17:78:1A:10:88:7E:72:8E:03:6C:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019857
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C0E8DDE831911F083ED5B7CDAE4EC9C.roa
Signing time: Wed 27 Aug 2025 07:44:07 +0000
ROA not before: Wed 27 Aug 2025 07:44:02 +0000
ROA not after: Thu 02 Oct 2025 07:44:02 +0000
asID: 32043
IP address blocks: 154.193.99.0/24 maxlen: 24
154.193.100.0/22 maxlen: 24
154.193.104.0/22 maxlen: 24
154.193.108.0/23 maxlen: 24
154.193.110.0/24 maxlen: 24
154.194.5.0/24 maxlen: 24
154.203.8.0/22 maxlen: 24
154.203.12.0/22 maxlen: 24
154.203.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104535 (0x19857)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 27 07:44:02 2025 GMT
Not After : Oct 2 07:44:02 2025 GMT
Subject: CN=68aeb747-5aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4c:ce:f3:3f:b2:55:b9:62:be:9b:20:fd:db:
cf:d4:c7:3d:7b:d4:5d:c5:b4:02:1d:91:7d:8c:61:
f7:ea:db:71:00:bb:30:49:d0:b4:d5:fb:2c:93:ad:
e3:3c:26:43:99:4f:ff:af:5a:92:53:d4:dc:2f:97:
07:1d:3f:71:d6:b9:dd:60:b2:56:f2:9e:f2:8c:bc:
41:27:48:41:ab:59:5f:b6:1c:06:b7:17:e3:8d:a6:
63:ac:f0:d2:13:c4:80:0c:be:c6:fa:aa:54:88:b9:
e0:cd:95:1e:88:40:a6:ff:22:81:75:4c:be:d2:3b:
a8:c3:51:96:f1:eb:b7:37:d5:83:0a:7a:d3:3b:a0:
93:13:0b:18:dd:f1:6a:c1:62:d2:46:f9:fd:fe:f2:
8b:6f:f9:fd:01:3b:82:5b:b2:9f:5e:0a:6f:6c:63:
14:40:98:3d:ad:da:f6:97:6d:17:b8:cb:85:04:da:
3b:63:46:11:d5:25:47:73:91:7d:4b:aa:4c:96:ab:
87:84:06:e0:ff:f7:45:a9:a9:2c:f1:63:a7:f2:3f:
02:00:e5:50:c5:6d:f8:dc:fe:4a:15:5d:78:10:b3:
69:c7:f9:bc:7e:a4:d1:76:00:c7:2d:19:29:73:5a:
f0:7a:f7:09:b2:00:b8:33:25:d2:2a:b6:69:38:0d:
71:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:5A:FB:D8:73:68:7F:01:03:17:78:1A:10:88:7E:72:8E:03:6C:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9C0E8DDE831911F083ED5B7CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.99.0-154.193.110.255
154.194.5.0/24
154.203.8.0/21
154.203.243.0/24
Signature Algorithm: sha256WithRSAEncryption
06:7e:44:22:7f:4e:4f:c6:1e:de:1e:b7:49:5b:c3:9f:9e:f1:
64:1c:56:8b:0d:2c:7d:33:c1:f0:af:12:b0:7b:4a:7d:fd:b3:
91:bf:ac:43:3b:f6:65:75:cd:df:a8:92:10:80:43:cb:52:9a:
68:27:d2:99:c6:76:e0:a0:d5:c2:e3:b6:37:40:ce:60:03:36:
54:53:d4:44:90:df:3b:bb:98:d0:00:26:db:1a:18:24:75:9e:
67:7d:2d:4d:48:84:6b:bb:4e:c9:5c:93:85:17:49:c0:83:66:
ca:ce:40:fb:3d:20:e1:4b:e2:28:ab:28:78:95:73:47:7c:1c:
b1:3e:4b:bc:2b:73:e1:0c:a4:df:02:85:22:f1:12:99:2e:39:
a2:0c:e6:ca:78:4d:c1:3c:2c:98:59:37:2f:54:48:51:02:81:
b9:d8:1a:05:aa:c5:7c:21:01:37:b6:81:ae:5d:8e:d0:83:45:
ef:03:e3:5a:a0:47:7d:12:b5:c6:77:e4:3f:d9:c4:eb:f1:46:
05:cd:a8:bf:36:b2:9e:32:84:a5:a6:ed:04:e9:55:5f:d5:71:
26:8d:d4:a0:d6:91:7f:60:fc:d8:80:a8:3e:e8:b8:75:3a:2c:
7c:21:ed:ee:e4:e2:6c:e7:e3:7a:0d:61:45:ef:5c:03:0a:2a:
72:96:00:c5
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIDAZhXMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODI3MDc0NDAyWhcNMjUxMDAyMDc0NDAyWjAYMRYw
FAYDVQQDEw02OGFlYjc0Ny01YWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqUzO8z+yVblivpsg/dvP1Mc9e9RdxbQCHZF9jGH36ttxALswSdC01fss
k63jPCZDmU//r1qSU9TcL5cHHT9x1rndYLJW8p7yjLxBJ0hBq1lfthwGtxfjjaZj
rPDSE8SADL7G+qpUiLngzZUeiECm/yKBdUy+0juow1GW8eu3N9WDCnrTO6CTEwsY
3fFqwWLSRvn9/vKLb/n9ATuCW7KfXgpvbGMUQJg9rdr2l20XuMuFBNo7Y0YR1SVH
c5F9S6pMlquHhAbg//dFqaks8WOn8j8CAOVQxW343P5KFV14ELNpx/m8fqTRdgDH
LRkpc1rwevcJsgC4MyXSKrZpOA1x1wIDAQABo4ICvzCCArswHQYDVR0OBBYEFNpa
+9hzaH8BAxd4GhCIfnKOA2x4MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85QzBFOERERTgzMTkxMUYwODNFRDVCN0NEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgMAwDBACawWMDBACawW4DBACa
wgUDBAOaywgDBACay/MwDQYJKoZIhvcNAQELBQADggEBAAZ+RCJ/Tk/GHt4et0lb
w5+e8WQcVosNLH0zwfCvErB7Sn39s5G/rEM79mV1zd+okhCAQ8tSmmgn0pnGduCg
1cLjtjdAzmADNlRT1ESQ3zu7mNAAJtsaGCR1nmd9LU1IhGu7Tslck4UXScCDZsrO
QPs9IOFL4iirKHiVc0d8HLE+S7wrc+EMpN8ChSLxEpkuOaIM5sp4TcE8LJhZNy9U
SFECgbnYGgWqxXwhATe2ga5djtCDRe8D41qgR30StcZ35D/ZxOvxRgXNqL82sp4y
hKWm7QTpVV/VcSaN1KDWkX9g/NiAqD7ouHU6LHwh7e7k4mzn43oNYUXvXAMKKnKW
AMU=
-----END CERTIFICATE-----
Generated at Wed Sep 3 18:41:50 2025 by rpki-client