Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EE48596895811F08FB70EBBDAE4EC9C.roa
File: 9EE48596895811F08FB70EBBDAE4EC9C.roa (raw, json)
Hash identifier: 92fIQmzCG0odDACAVdhns49GWGUIAcVeCGh17HAvTr8=
Subject key identifier: B3:E8:66:73:4E:BF:53:F0:DC:89:E0:BA:15:5B:8A:10:F3:29:59:58
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019D5C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EE48596895811F08FB70EBBDAE4EC9C.roa
Signing time: Thu 04 Sep 2025 06:30:17 +0000
ROA not before: Thu 04 Sep 2025 06:30:12 +0000
ROA not after: Thu 10 Sep 2026 06:30:12 +0000
asID: 131618
IP address blocks: 154.222.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 09 Sep 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105820 (0x19d5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 4 06:30:12 2025 GMT
Not After : Sep 10 06:30:12 2026 GMT
Subject: CN=68b931f9-f9ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:54:8c:54:fc:22:5b:a6:78:45:21:55:50:cb:
01:f5:21:a5:73:aa:a8:8e:7b:d0:ab:16:8d:31:81:
47:9c:85:48:41:fe:43:c6:de:8c:8c:90:5b:b9:67:
53:67:48:09:92:82:8b:1d:a0:74:70:ad:46:83:8f:
1c:bc:ba:a7:af:d5:fa:af:ca:88:1b:78:ce:96:bb:
d2:64:82:75:b3:2e:a9:3d:c6:38:58:e7:b0:78:80:
ac:a2:47:d4:2b:20:f5:e4:f7:24:58:85:d9:3f:be:
15:51:7b:89:5c:8d:d0:41:61:0c:b4:d1:bb:3f:a1:
5c:be:0d:f4:9f:f8:d9:e4:3e:ca:fa:e5:52:a9:6a:
84:1d:f0:fc:d0:a7:4f:1d:79:7e:0e:f4:f9:81:0d:
1b:cb:75:d4:44:de:6a:e1:14:b9:0e:75:61:cb:2c:
cc:22:7a:e6:87:ca:fb:6d:0a:16:5f:3d:98:ab:15:
73:d4:c3:47:7a:a2:56:5e:ee:70:5d:1d:91:ae:49:
4c:b0:91:5e:f6:10:76:e9:9d:fa:e1:29:e2:27:6a:
30:16:1a:e2:ca:8d:4d:29:2f:7b:fb:a0:10:5d:8a:
5a:3c:ff:eb:69:5d:9e:02:db:18:c4:fa:88:73:5e:
4e:97:7d:e3:3d:0b:5a:36:56:69:4d:db:c2:ae:7b:
86:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E8:66:73:4E:BF:53:F0:DC:89:E0:BA:15:5B:8A:10:F3:29:59:58
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EE48596895811F08FB70EBBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.0.0/24
Signature Algorithm: sha256WithRSAEncryption
29:67:1a:5c:4b:28:02:20:c4:66:6a:2b:b5:77:fb:5e:f5:47:
16:0c:ee:3f:b8:f4:2c:28:85:c3:36:bf:43:c1:36:4b:ec:4c:
62:92:56:fb:97:2b:44:eb:79:64:92:5c:26:29:5c:49:58:c6:
5c:e3:38:8a:83:d3:99:8f:ee:1f:13:50:0e:11:6b:49:11:96:
2b:ab:6a:39:e0:ec:81:66:33:4a:0d:80:75:c7:08:23:40:5a:
5c:48:06:4f:1d:24:0e:87:c6:aa:c3:37:b2:38:dd:e9:39:e9:
6b:ce:b5:9b:96:ea:2f:8b:2b:28:ce:27:95:bf:df:71:3e:0e:
7e:9d:26:1a:85:07:0f:9b:a7:ba:ae:a1:62:19:e7:62:44:dc:
1a:c2:cb:6c:a4:48:ff:64:a4:2e:ce:93:1a:5d:29:85:8e:7a:
d8:96:31:1c:df:c2:a6:4f:62:0a:7f:23:59:70:5c:cf:82:d4:
cb:29:14:e9:59:01:c7:9f:25:e6:3a:af:af:86:85:89:3a:aa:
10:e5:61:35:cd:8d:a2:08:97:99:14:03:d8:b4:97:5e:fd:ae:
15:e1:8a:83:38:cb:ac:ba:2b:4a:57:ea:31:88:00:f5:64:43:
39:76:e1:8d:a9:91:d4:9c:09:11:05:c3:2d:f2:24:ec:0a:ab:
93:20:a7:5d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAZ1cMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwOTA0MDYzMDEyWhcNMjYwOTEwMDYzMDEyWjAYMRYw
FAYDVQQDEw02OGI5MzFmOS1mOWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuVSMVPwiW6Z4RSFVUMsB9SGlc6qojnvQqxaNMYFHnIVIQf5Dxt6MjJBb
uWdTZ0gJkoKLHaB0cK1Gg48cvLqnr9X6r8qIG3jOlrvSZIJ1sy6pPcY4WOeweICs
okfUKyD15PckWIXZP74VUXuJXI3QQWEMtNG7P6Fcvg30n/jZ5D7K+uVSqWqEHfD8
0KdPHXl+DvT5gQ0by3XURN5q4RS5DnVhyyzMInrmh8r7bQoWXz2YqxVz1MNHeqJW
Xu5wXR2RrklMsJFe9hB26Z364SniJ2owFhriyo1NKS97+6AQXYpaPP/raV2eAtsY
xPqIc15Ol33jPQtaNlZpTdvCrnuG+wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLPo
ZnNOv1Pw3InguhVbihDzKVlYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85RUU0ODU5Njg5NTgxMUYwOEZCNzBFQkJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt4AMA0GCSqGSIb3DQEB
CwUAA4IBAQApZxpcSygCIMRmaiu1d/te9UcWDO4/uPQsKIXDNr9DwTZL7Exiklb7
lytE63lkklwmKVxJWMZc4ziKg9OZj+4fE1AOEWtJEZYrq2o54OyBZjNKDYB1xwgj
QFpcSAZPHSQOh8aqwzeyON3pOelrzrWbluoviysozieVv99xPg5+nSYahQcPm6e6
rqFiGediRNwawstspEj/ZKQuzpMaXSmFjnrYljEc38KmT2IKfyNZcFzPgtTLKRTp
WQHHnyXmOq+vhoWJOqoQ5WE1zY2iCJeZFAPYtJde/a4V4YqDOMusuitKV+oxiAD1
ZEM5duGNqZHUnAkRBcMt8iTsCquTIKdd
-----END CERTIFICATE-----
Generated at Sun Sep 7 12:38:01 2025 by rpki-client