Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B372468E871811F095AAC895DAE4EC9C.roa
File: B372468E871811F095AAC895DAE4EC9C.roa (raw, json)
Hash identifier: OsvIwulGaYa6bBmyCiAAyyPEZMzjYBHmv+OOxk206aw=
Subject key identifier: AE:FD:E9:30:16:EF:D5:34:4F:9F:9A:96:3B:9F:EE:51:A2:F1:12:8C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019B4E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B372468E871811F095AAC895DAE4EC9C.roa
Signing time: Mon 01 Sep 2025 09:47:41 +0000
ROA not before: Mon 01 Sep 2025 09:47:36 +0000
ROA not after: Mon 01 Dec 2025 09:47:36 +0000
asID: 399077
IP address blocks: 154.91.67.0/24 maxlen: 24
154.91.68.0/24 maxlen: 24
154.91.69.0/24 maxlen: 24
154.91.70.0/24 maxlen: 24
154.91.71.0/24 maxlen: 24
154.91.72.0/24 maxlen: 24
154.91.73.0/24 maxlen: 24
154.91.74.0/24 maxlen: 24
154.91.75.0/24 maxlen: 24
154.91.76.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105294 (0x19b4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 1 09:47:36 2025 GMT
Not After : Dec 1 09:47:36 2025 GMT
Subject: CN=68b56bbd-91a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8d:35:57:c5:76:69:8d:84:c6:ce:42:54:76:
87:f5:6a:55:4c:11:1d:b5:fc:e9:03:86:08:e7:c8:
53:3f:5a:95:a6:9d:99:dc:bc:63:52:d7:86:d3:77:
68:31:b6:92:0b:3a:16:02:f0:73:74:86:dc:ce:66:
59:48:8c:b4:56:eb:0f:35:37:b8:9a:96:09:72:2c:
5d:9e:15:c1:5a:2a:36:7d:a7:96:d2:0d:da:a6:0e:
65:c4:2d:ce:3a:8e:a8:0c:7a:3b:90:2c:4b:88:e9:
cc:82:1b:49:e4:70:48:5d:52:23:d1:2e:84:9b:8f:
13:f7:67:0c:ab:bc:53:31:03:d4:5d:24:49:47:b3:
50:6c:56:0f:14:9a:71:78:c3:36:f2:78:d2:5e:8f:
46:91:a3:f3:13:b2:43:fc:11:02:13:d6:3f:21:7c:
da:f2:48:e2:59:73:b7:1c:dc:2b:49:10:ae:df:b7:
23:ec:15:8d:e1:28:0b:8a:00:2e:28:67:35:5d:d2:
c4:7f:b2:c4:69:7b:48:75:4a:ed:e6:6f:1b:b9:cc:
b7:0d:5a:ab:c4:ab:bf:f8:22:f1:c6:c9:5e:9a:fe:
ab:60:3a:af:8c:96:e4:a2:c1:f2:e1:76:31:1f:80:
81:5c:d5:ae:25:d6:4a:7c:4e:89:7e:45:ad:a8:88:
b8:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:FD:E9:30:16:EF:D5:34:4F:9F:9A:96:3B:9F:EE:51:A2:F1:12:8C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B372468E871811F095AAC895DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.67.0-154.91.76.255
Signature Algorithm: sha256WithRSAEncryption
18:b1:45:f8:85:92:0c:c7:b3:9e:60:be:83:a6:4f:62:1a:e7:
86:db:f3:17:cd:df:2c:c2:85:80:37:05:69:80:e3:9c:a4:4c:
27:5d:d5:43:a4:aa:10:f6:57:5c:50:d0:b0:29:c0:cc:78:f7:
0a:65:bd:27:65:d7:37:8e:57:08:56:e4:a2:7c:33:e0:e6:8e:
8d:ed:53:c2:de:07:40:2d:9b:28:86:f2:f2:92:08:7b:2e:c5:
e4:fc:49:f5:85:62:b3:53:d2:e5:3a:fc:7f:09:c0:9f:fd:14:
4f:2c:63:11:f4:4f:df:8b:a5:f6:0c:70:b8:f9:f4:6b:6d:be:
ad:b0:bd:c7:0b:1b:8e:a7:cb:e5:4b:34:4b:49:f3:23:f9:c6:
57:b7:d8:14:7e:10:a2:4a:47:0c:b8:0d:8f:4e:b4:4a:91:04:
b6:24:57:67:c1:cb:4e:03:42:a7:fb:16:40:c1:3c:74:ee:3f:
d1:f1:ba:17:71:16:f2:fc:90:90:b3:61:18:52:73:25:59:d8:
e6:6d:d8:9f:17:96:07:1d:ef:40:19:34:cc:a5:ff:4b:11:60:
45:fb:34:1b:70:6f:58:da:46:ee:17:69:8d:6d:7d:7d:1a:7d:
51:24:34:c7:11:3e:66:b4:0c:88:9d:62:c9:c1:e9:bd:6f:3f:
0c:26:da:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:36:22 2025 by rpki-client