Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8E3DFF892CF11F08A1B64C9DAE4EC9C.roa
File: A8E3DFF892CF11F08A1B64C9DAE4EC9C.roa (raw, json)
Hash identifier: UKcoxxg3IWSrczEO4yf/6RGZOVhDv//JLbmEc5n9myc=
Subject key identifier: FD:A3:CB:1D:18:C3:69:A4:55:11:58:7F:20:78:4A:88:F9:33:57:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019FD3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8E3DFF892CF11F08A1B64C9DAE4EC9C.roa
Signing time: Tue 16 Sep 2025 07:35:04 +0000
ROA not before: Tue 16 Sep 2025 07:34:59 +0000
ROA not after: Thu 23 Oct 2025 07:34:59 +0000
asID: 133180
IP address blocks: 154.83.4.0/24 maxlen: 24
154.94.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106451 (0x19fd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 16 07:34:59 2025 GMT
Not After : Oct 23 07:34:59 2025 GMT
Subject: CN=68c91328-f9d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:af:47:8f:59:fa:ee:02:1b:03:67:dd:e7:1e:
74:78:ff:02:07:63:6d:58:ad:75:8d:82:5f:06:1f:
8d:66:7d:f1:e3:87:18:14:5f:e1:bd:15:ee:d6:23:
08:fd:ab:22:65:ce:40:61:6e:ec:0e:a8:af:90:d8:
03:4f:60:96:51:8e:a3:cb:a1:0f:37:79:5a:31:8d:
6d:6d:7e:8f:91:f3:01:29:ef:f9:0f:cb:4c:d0:8a:
74:26:52:b1:40:41:34:8d:ee:aa:0d:7b:42:76:20:
9b:b4:a1:62:26:5f:fc:61:6f:93:5b:8c:d7:3b:12:
f0:67:1a:24:88:4a:e6:66:11:d8:44:72:14:6c:45:
12:67:91:2b:07:01:a0:eb:34:1c:d8:1e:bd:55:25:
c5:41:e7:f5:f8:71:55:19:bc:ff:2a:7b:69:ab:1a:
63:ed:e2:86:8c:4e:06:0a:4f:16:74:f7:61:be:29:
c8:a6:6c:e6:bb:50:d1:26:4a:23:70:ca:9f:05:bf:
e3:42:ca:0e:96:16:21:ae:cd:87:c4:d8:5e:70:13:
bb:08:21:2e:ad:21:62:3a:bc:67:93:4f:aa:8c:e8:
4c:1a:21:04:e0:4e:39:68:4f:f4:26:35:fe:95:07:
73:3c:72:8f:17:10:b5:23:2e:88:9e:47:9e:9e:ed:
eb:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:A3:CB:1D:18:C3:69:A4:55:11:58:7F:20:78:4A:88:F9:33:57:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8E3DFF892CF11F08A1B64C9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.4.0/24
154.94.16.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:d0:e0:b4:be:b9:0d:77:bd:7d:7c:94:65:b1:c3:9d:70:d7:
c8:a0:07:df:48:a2:e6:49:2d:e0:d8:7f:2d:30:de:7e:a1:19:
ff:0f:c0:70:d7:5a:e9:25:6d:51:b3:f3:81:4b:b1:90:71:60:
89:30:36:ee:45:87:2e:bc:8a:d3:21:ab:19:8c:58:72:30:c7:
cd:55:05:c6:4b:ae:fb:db:45:d9:1e:c7:dd:24:b3:a9:1d:bb:
a9:85:25:72:cb:be:24:2a:17:38:7a:5a:93:8b:44:26:41:d1:
fa:a3:69:08:8a:9f:65:4b:9d:1a:84:3f:8f:e7:df:23:43:01:
51:39:47:25:8a:73:4a:8c:d4:37:39:af:1f:ad:15:c3:80:3a:
d7:4d:ea:33:5f:34:71:87:82:d1:af:07:02:cf:15:c4:be:ca:
fb:8b:49:a1:9b:bf:8a:c8:1d:7d:8a:6b:01:41:2a:4c:73:e8:
11:71:30:6f:32:8d:19:36:ac:73:64:0d:15:b5:9a:1b:32:8a:
df:3e:3b:b7:96:8f:9c:b0:8e:5c:9d:52:94:75:37:8f:4e:03:
89:48:6d:43:69:7f:75:8e:37:17:03:97:ee:fb:83:d5:13:e4:
72:58:cf:39:fe:8d:28:bd:38:ca:d6:5e:6e:ec:a7:20:fb:c7:
8c:b6:48:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:46 2025 by rpki-client