Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A16F0DDC9AC311F0AF794FC3DAE4EC9C.roa
File: A16F0DDC9AC311F0AF794FC3DAE4EC9C.roa (raw, json)
Hash identifier: LLCjnzZsby8K5mRYWhJ/hpxhq+rteD1TRKjY9Ad+g6k=
Subject key identifier: F7:48:41:C9:6C:57:F6:02:79:A6:DF:27:CD:61:89:82:E3:37:D2:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A131
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A16F0DDC9AC311F0AF794FC3DAE4EC9C.roa
Signing time: Fri 26 Sep 2025 10:29:07 +0000
ROA not before: Fri 26 Sep 2025 10:29:02 +0000
ROA not after: Sun 02 Nov 2025 10:29:02 +0000
asID: 17497
IP address blocks: 154.196.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106801 (0x1a131)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 26 10:29:02 2025 GMT
Not After : Nov 2 10:29:02 2025 GMT
Subject: CN=68d66af3-934f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:25:05:fe:95:dc:d8:44:86:63:a2:c1:9f:f2:
8d:50:ec:cb:02:84:a5:9d:b7:b3:76:93:46:99:17:
d6:fa:b0:4c:b2:3e:37:82:b3:48:4b:16:79:2e:da:
5b:f1:33:7e:5e:07:60:62:e6:60:dc:e3:71:c5:0d:
c6:e9:17:69:fa:a0:ad:1f:b8:1d:63:fc:c6:1b:2b:
8f:20:2f:e1:6d:cf:90:5d:ec:ed:ff:ef:01:27:55:
84:07:5a:8e:15:2c:21:64:af:81:4d:5e:f6:0e:7e:
b4:4e:84:61:e3:71:f3:d1:83:b9:2c:10:0a:88:eb:
bc:9d:6b:f6:c7:8f:99:8f:e0:66:ad:71:34:a8:d7:
24:a4:4a:3c:ff:da:bd:d7:3e:d5:7b:bb:80:d9:2e:
33:09:1f:45:67:0a:1f:d8:47:f1:8b:08:3f:73:79:
ec:eb:c4:eb:b7:4f:25:76:7d:0b:5b:c8:75:f6:46:
3f:29:0d:08:fb:64:f9:50:b1:e8:19:86:65:46:3f:
8f:8f:98:3d:ec:a2:8a:6b:00:a2:2a:11:36:41:71:
8b:66:59:6e:84:67:2d:66:76:2b:67:29:8f:3d:64:
10:26:a8:32:60:17:4c:66:f8:56:c8:93:f9:b6:c1:
73:5f:b7:36:21:6a:7d:1f:79:f1:6d:b7:56:17:14:
f4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:48:41:C9:6C:57:F6:02:79:A6:DF:27:CD:61:89:82:E3:37:D2:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A16F0DDC9AC311F0AF794FC3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.140.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:ea:50:e6:da:85:38:18:1b:19:94:e7:03:41:cb:ee:82:84:
cb:17:61:6d:e9:ab:07:55:1c:c6:a6:6d:55:31:25:90:6c:01:
a4:b0:41:68:9e:59:54:bb:12:14:7a:ac:d7:ec:be:d8:8d:a4:
4f:89:93:ac:37:f3:e1:16:e8:91:8a:2f:5f:56:87:a7:e7:67:
5a:47:91:2c:d0:65:9e:31:8c:3e:1d:07:bb:65:ed:07:14:eb:
dc:6e:6a:04:53:5f:0b:4f:f2:67:19:40:60:21:0d:b4:ed:18:
ab:70:87:1a:24:c8:6f:5b:45:5d:1d:93:b3:f8:37:a2:19:77:
92:0c:11:1f:96:de:27:35:60:5f:9e:e2:6b:d1:d1:02:52:03:
33:77:2a:d7:b3:b6:4e:47:b7:72:cb:e2:f7:5c:49:9a:c9:98:
c8:26:b4:e5:4a:fc:cb:a3:14:9c:e2:3d:f5:7c:c5:3b:d5:7f:
11:cf:80:62:a6:97:06:46:7a:b7:3d:e6:43:02:2b:2e:de:46:
6f:99:5b:1c:76:c5:8d:64:15:10:25:a3:ae:f3:e2:d3:86:8e:
f2:d9:7b:25:e1:1a:ba:e1:8d:05:68:2a:ec:e3:eb:03:77:26:
45:17:c6:e9:1a:96:b7:c9:3c:fa:e8:5d:a9:dd:6f:eb:38:64:
c4:56:99:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:05 2025 by rpki-client