Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B30201788D6A11F0A4D8AEA4DAE4EC9C.roa
File: B30201788D6A11F0A4D8AEA4DAE4EC9C.roa (raw, json)
Hash identifier: x1eZdRaGTMQEbPttqSwoiGK2kZYrTVrEgQ10orYtxwA=
Subject key identifier: 74:4E:B4:72:DE:9A:4E:49:7B:82:64:F1:2C:32:FF:56:5E:19:5F:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019F20
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B30201788D6A11F0A4D8AEA4DAE4EC9C.roa
Signing time: Tue 09 Sep 2025 10:49:46 +0000
ROA not before: Tue 09 Sep 2025 10:49:38 +0000
ROA not after: Thu 16 Oct 2025 10:49:38 +0000
asID: 22773
IP address blocks: 154.202.78.0/24 maxlen: 24
154.202.79.0/24 maxlen: 24
154.202.80.0/24 maxlen: 24
154.202.81.0/24 maxlen: 24
154.202.82.0/24 maxlen: 24
154.202.83.0/24 maxlen: 24
154.202.84.0/24 maxlen: 24
154.202.85.0/24 maxlen: 24
154.202.88.0/24 maxlen: 24
154.202.90.0/24 maxlen: 24
154.202.92.0/24 maxlen: 24
154.202.93.0/24 maxlen: 24
154.202.94.0/24 maxlen: 24
154.202.95.0/24 maxlen: 24
154.202.96.0/24 maxlen: 24
154.202.97.0/24 maxlen: 24
154.202.98.0/24 maxlen: 24
154.202.102.0/24 maxlen: 24
154.202.107.0/24 maxlen: 24
154.202.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Sep 2025 00:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106272 (0x19f20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 9 10:49:38 2025 GMT
Not After : Oct 16 10:49:38 2025 GMT
Subject: CN=68c0064a-05fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b8:1f:ce:58:b5:12:9e:87:22:ad:35:d1:28:
63:8d:75:24:ef:5f:33:fe:37:92:1f:b0:d0:9c:20:
a6:98:bb:b8:dc:4a:69:48:92:d2:41:57:43:a7:4d:
53:94:ee:d3:6e:2d:35:9d:c1:fb:e0:98:88:4a:dd:
9f:a4:19:e3:08:ea:af:b9:00:15:a1:99:87:85:a2:
56:35:1d:00:3e:ad:43:9b:b1:90:1e:d3:67:4b:a2:
17:3f:55:a1:c4:db:cc:37:3e:97:34:f1:5b:57:23:
a7:ad:43:4b:fc:6f:d2:34:ea:9b:42:cd:42:64:ab:
7b:53:40:33:fd:c5:ce:ab:65:7b:da:96:8d:1c:00:
b8:2e:92:7b:3c:dc:28:0f:4f:e2:91:cd:8e:1f:35:
79:bd:e1:10:2b:a1:a0:03:a2:cd:16:5a:08:77:bc:
f9:73:0e:4d:13:01:a2:54:fa:07:46:73:70:9e:42:
4a:b1:53:54:fc:df:89:16:90:5b:71:df:ae:a0:a4:
96:a0:51:39:5a:52:0e:8c:99:5f:2e:fd:ef:35:07:
27:21:95:6b:c7:78:d4:fc:3d:6c:f6:02:f7:1f:66:
b0:24:d4:84:8d:ef:a2:71:27:4d:ef:ee:8e:ff:0b:
5b:8d:57:8d:6f:42:bd:85:19:83:ca:e3:be:3e:f2:
88:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4E:B4:72:DE:9A:4E:49:7B:82:64:F1:2C:32:FF:56:5E:19:5F:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B30201788D6A11F0A4D8AEA4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.78.0-154.202.85.255
154.202.88.0/24
154.202.90.0/24
154.202.92.0-154.202.98.255
154.202.102.0/24
154.202.107.0-154.202.108.255
Signature Algorithm: sha256WithRSAEncryption
4b:16:c8:74:4f:0b:8b:fb:2b:bc:2a:63:54:69:53:39:bd:c2:
9e:33:94:25:67:ea:48:07:1a:ee:72:62:59:fb:d4:e3:35:5f:
21:d0:94:c1:04:e1:fc:48:ee:b7:01:52:f2:2c:f1:61:15:ea:
ec:a8:d8:11:60:7f:16:a9:ec:a1:f8:9c:ba:7e:bb:b3:0d:58:
6c:4d:ee:ae:b9:a6:79:3d:44:a3:22:d5:82:d2:b8:fa:44:13:
c1:73:2b:80:43:91:1b:b3:84:28:bd:f3:5b:83:d4:59:f7:2f:
ff:82:73:bc:86:69:a9:a6:8c:08:d2:86:35:4d:57:c7:0d:5f:
d9:6b:6b:05:8d:86:ae:d0:a2:ca:ec:dd:48:97:90:80:3c:5f:
4e:03:bd:38:41:8d:2a:e6:e5:04:1c:30:47:40:50:6c:40:60:
3b:51:4f:ec:03:83:b2:a4:fd:0e:08:ff:b0:7b:31:a9:29:5c:
cb:2f:12:6b:24:88:7e:3d:36:f2:63:bc:1f:cf:1f:1f:1f:10:
2a:71:fd:f9:d1:d9:fa:02:a0:46:e6:41:79:50:fd:ab:9c:59:
9e:78:43:a4:2e:7d:93:6e:91:01:8f:24:93:d4:f9:49:41:6a:
c9:90:42:20:dc:e4:2f:68:38:49:9f:4c:88:a5:31:ff:6f:06:
9e:43:c7:d4
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIDAZ8gMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwOTA5MTA0OTM4WhcNMjUxMDE2MTA0OTM4WjAYMRYw
FAYDVQQDEw02OGMwMDY0YS0wNWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3bgfzli1Ep6HIq010ShjjXUk718z/jeSH7DQnCCmmLu43EppSJLSQVdD
p01TlO7Tbi01ncH74JiISt2fpBnjCOqvuQAVoZmHhaJWNR0APq1Dm7GQHtNnS6IX
P1WhxNvMNz6XNPFbVyOnrUNL/G/SNOqbQs1CZKt7U0Az/cXOq2V72paNHAC4LpJ7
PNwoD0/ikc2OHzV5veEQK6GgA6LNFloId7z5cw5NEwGiVPoHRnNwnkJKsVNU/N+J
FpBbcd+uoKSWoFE5WlIOjJlfLv3vNQcnIZVrx3jU/D1s9gL3H2awJNSEje+icSdN
7+6O/wtbjVeNb0K9hRmDyuO+PvKIQwIDAQABo4IC2zCCAtcwHQYDVR0OBBYEFHRO
tHLemk5Je4Jk8Swy/1ZeGV/bMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CMzAyMDE3ODhENkExMUYwQTREOEFFQTREQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8MAwDBAGayk4DBAGaylQDBACa
ylgDBACaylowDAMEAprKXAMEAJrKYgMEAJrKZjAMAwQAmsprAwQAmspsMA0GCSqG
SIb3DQEBCwUAA4IBAQBLFsh0TwuL+yu8KmNUaVM5vcKeM5QlZ+pIBxrucmJZ+9Tj
NV8h0JTBBOH8SO63AVLyLPFhFersqNgRYH8Wqeyh+Jy6fruzDVhsTe6uuaZ5PUSj
ItWC0rj6RBPBcyuAQ5Ebs4QovfNbg9RZ9y//gnO8hmmppowI0oY1TVfHDV/Za2sF
jYau0KLK7N1Il5CAPF9OA704QY0q5uUEHDBHQFBsQGA7UU/sA4OypP0OCP+wezGp
KVzLLxJrJIh+PTbyY7wfzx8fHxAqcf350dn6AqBG5kF5UP2rnFmeeEOkLn2TbpEB
jyST1PlJQWrJkEIg3OQvaDhJn0yIpTH/bwaeQ8fU
-----END CERTIFICATE-----
Generated at Fri Sep 19 00:04:30 2025 by rpki-client