Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0E0A908A5B611F0B8269FC2DAE4EC9C.roa
File: B0E0A908A5B611F0B8269FC2DAE4EC9C.roa (raw, json)
Hash identifier: vEKTr2UVcfT6/KFRa65sDhkiKvoiBH//XGg8RrHHOKk=
Subject key identifier: 12:F8:65:94:1C:17:05:52:3C:97:19:01:C8:80:81:47:25:8C:7C:C0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A33B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0E0A908A5B611F0B8269FC2DAE4EC9C.roa
Signing time: Fri 10 Oct 2025 08:54:12 +0000
ROA not before: Fri 10 Oct 2025 08:54:07 +0000
ROA not after: Wed 14 Oct 2026 08:54:07 +0000
asID: 133847
IP address blocks: 154.83.112.0/20 maxlen: 24
154.83.122.0/24 maxlen: 24
154.83.123.0/24 maxlen: 24
154.83.124.0/24 maxlen: 24
154.83.125.0/24 maxlen: 24
154.83.126.0/24 maxlen: 24
154.83.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107323 (0x1a33b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 10 08:54:07 2025 GMT
Not After : Oct 14 08:54:07 2026 GMT
Subject: CN=68e8c9b4-ab57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:22:dc:f0:7e:d7:4b:b9:9c:d4:cf:0d:67:b5:
9f:ce:23:9a:b4:83:17:f0:aa:1e:f9:52:29:ba:70:
01:35:10:88:f3:eb:60:35:3d:cf:3d:08:59:20:eb:
e2:3f:6d:40:96:a9:e9:2f:72:82:66:9d:89:63:c5:
91:9a:2d:5d:39:91:c6:25:96:db:45:fc:39:5b:64:
fb:f1:cb:b6:9c:50:d7:54:a0:8c:52:ae:1d:a7:0b:
69:a7:8d:ac:c4:a5:21:82:60:92:65:04:cb:64:c2:
f3:42:c5:ef:a4:8e:7c:97:c5:dc:eb:9c:3d:bb:74:
ae:2c:a7:ec:d7:78:39:8f:36:c3:6f:03:53:70:8d:
14:4f:77:28:8d:38:da:04:53:e6:9c:3b:a1:66:fb:
79:d1:82:ef:66:cb:b5:2c:3c:b6:78:ce:d4:76:fa:
15:40:80:0d:f6:fc:cb:04:6c:0e:cf:21:dd:ac:e1:
5c:f5:4a:73:f8:7c:eb:74:ea:52:1f:11:c3:d1:02:
a6:bc:07:e7:64:9a:03:7e:e6:48:96:54:1d:b9:34:
05:b4:0b:80:b1:2d:77:10:02:d2:7f:29:79:a1:a1:
62:72:e2:16:ab:17:89:1d:b8:6f:ee:05:b6:d6:34:
95:90:b0:42:42:f4:d6:c9:d7:89:bf:72:eb:d4:76:
22:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:F8:65:94:1C:17:05:52:3C:97:19:01:C8:80:81:47:25:8C:7C:C0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0E0A908A5B611F0B8269FC2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.112.0/20
Signature Algorithm: sha256WithRSAEncryption
01:17:1f:37:da:bf:af:7b:96:09:a0:8a:a3:af:42:87:c5:3e:
1d:e4:9b:f4:16:de:4d:4e:1a:5d:10:b1:22:e9:74:35:04:f3:
79:f1:52:fe:f2:4c:88:3a:0e:21:ea:31:19:4c:37:e3:c1:2f:
a4:a8:08:d9:be:e3:11:ec:a0:c6:fe:14:38:26:44:84:22:75:
a0:f7:9e:3d:da:9b:71:55:ed:74:87:2c:13:5f:94:22:8a:f6:
ba:8a:31:9a:b5:72:65:25:b9:b7:ad:be:de:3b:f8:e2:72:51:
ca:28:3f:c4:d0:52:5e:88:25:bd:b8:06:20:5d:32:b3:78:da:
99:3a:28:1a:78:df:20:a8:a4:af:7a:63:a3:e2:58:67:c2:6f:
25:28:23:a1:bc:10:ae:c1:74:65:0d:0a:dd:f6:c8:3b:c4:72:
81:f0:b5:47:14:fa:a3:21:dc:be:66:61:35:34:f7:5a:cb:04:
62:13:cf:62:41:73:9d:89:93:00:db:57:b3:3f:71:84:39:42:
94:34:d9:a4:28:05:a8:b4:4e:4c:fc:29:a7:da:70:c5:47:30:
75:2a:04:97:47:32:6c:c2:af:06:b0:51:ec:2c:e7:2b:7a:ef:
6c:e3:e0:23:e0:3a:f5:58:bf:0b:1d:2d:fd:5c:48:d3:4d:c9:
7a:f8:4f:f7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAaM7MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMDEwMDg1NDA3WhcNMjYxMDE0MDg1NDA3WjAYMRYw
FAYDVQQDEw02OGU4YzliNC1hYjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4iLc8H7XS7mc1M8NZ7WfziOatIMX8Koe+VIpunABNRCI8+tgNT3PPQhZ
IOviP21AlqnpL3KCZp2JY8WRmi1dOZHGJZbbRfw5W2T78cu2nFDXVKCMUq4dpwtp
p42sxKUhgmCSZQTLZMLzQsXvpI58l8Xc65w9u3SuLKfs13g5jzbDbwNTcI0UT3co
jTjaBFPmnDuhZvt50YLvZsu1LDy2eM7UdvoVQIAN9vzLBGwOzyHdrOFc9Upz+Hzr
dOpSHxHD0QKmvAfnZJoDfuZIllQduTQFtAuAsS13EALSfyl5oaFicuIWqxeJHbhv
7gW21jSVkLBCQvTWydeJv3Lr1HYiuwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBL4
ZZQcFwVSPJcZAciAgUcljHzAMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CMEUwQTkwOEE1QjYxMUYwQjgyNjlGQzJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEmlNwMA0GCSqGSIb3DQEB
CwUAA4IBAQABFx832r+ve5YJoIqjr0KHxT4d5Jv0Ft5NThpdELEi6XQ1BPN58VL+
8kyIOg4h6jEZTDfjwS+kqAjZvuMR7KDG/hQ4JkSEInWg95492ptxVe10hywTX5Qi
iva6ijGatXJlJbm3rb7eO/jiclHKKD/E0FJeiCW9uAYgXTKzeNqZOigaeN8gqKSv
emOj4lhnwm8lKCOhvBCuwXRlDQrd9sg7xHKB8LVHFPqjIdy+ZmE1NPdaywRiE89i
QXOdiZMA21ezP3GEOUKUNNmkKAWotE5M/Cmn2nDFRzB1KgSXRzJswq8GsFHsLOcr
eu9s4+Aj4Dr1WL8LHS39XEjTTcl6+E/3
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:40 2025 by rpki-client