Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4FC7B3C8CAE11F0B0DAEEDCDAE4EC9C.roa
File: B4FC7B3C8CAE11F0B0DAEEDCDAE4EC9C.roa (raw, json)
Hash identifier: u29PJDJjkdDjxE/gw/29cZ0Tn4buaZs4ZcZG93DBLUg=
Subject key identifier: 02:0C:EA:9C:7B:55:0E:C4:FA:2A:05:0D:B9:34:DE:96:AD:86:15:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019ED9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4FC7B3C8CAE11F0B0DAEEDCDAE4EC9C.roa
Signing time: Mon 08 Sep 2025 12:24:04 +0000
ROA not before: Mon 08 Sep 2025 12:23:58 +0000
ROA not after: Sat 15 Aug 2026 12:23:58 +0000
asID: 55967
IP address blocks: 154.85.32.0/21 maxlen: 24
154.85.40.0/22 maxlen: 24
154.85.44.0/23 maxlen: 24
154.85.48.0/21 maxlen: 24
154.85.56.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106201 (0x19ed9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 8 12:23:58 2025 GMT
Not After : Aug 15 12:23:58 2026 GMT
Subject: CN=68becae4-eb3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:20:db:bb:ae:8c:7c:f5:de:de:d5:28:b4:70:
12:96:e8:df:d1:a1:b7:7f:f3:6b:f4:8f:5b:b6:c6:
30:9b:d7:10:1e:d3:11:e9:47:b1:4b:0f:2c:04:b9:
e8:24:b6:f9:60:6e:68:4e:87:82:fa:e6:d2:b1:1b:
c7:94:71:f1:b0:67:45:69:c0:85:15:06:a6:2a:1e:
76:ce:41:34:1d:9d:ea:a3:b0:62:f5:6e:44:9b:99:
83:ca:4d:04:51:bc:30:45:49:75:81:36:97:83:2d:
f9:c0:27:26:67:9d:02:69:35:74:33:10:f5:e2:96:
6a:be:10:a0:79:81:e9:9e:97:7e:8b:a5:b9:0f:46:
b0:f0:b3:5e:94:f5:21:73:ff:d0:7c:0a:f7:b9:36:
9f:4f:bf:95:0a:34:83:f6:d9:dc:7b:fc:f8:de:ed:
0b:b4:ca:96:21:31:c1:41:51:ba:52:99:62:47:bf:
10:a2:c8:7e:b4:95:2d:64:89:a8:af:37:17:d7:d2:
7a:f1:cd:47:7e:55:23:ec:56:eb:07:81:4a:c7:2c:
a7:6c:b9:08:fe:74:53:35:9f:26:34:eb:46:26:4e:
8a:67:4f:6e:ab:47:9b:e8:a3:16:db:99:c1:67:e5:
bb:4c:dc:59:90:3f:ba:6d:28:f9:d0:d9:e9:6a:ce:
24:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0C:EA:9C:7B:55:0E:C4:FA:2A:05:0D:B9:34:DE:96:AD:86:15:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4FC7B3C8CAE11F0B0DAEEDCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.32.0-154.85.45.255
154.85.48.0/20
Signature Algorithm: sha256WithRSAEncryption
3d:ea:c2:ea:60:57:d4:af:04:16:06:52:dd:9f:58:b0:2e:34:
5b:2b:bd:82:c8:2e:46:a0:44:64:14:bd:08:99:e3:ec:5b:57:
a7:3d:0e:11:a3:93:7d:f7:a7:ea:e3:f8:ab:6c:85:95:c9:b3:
64:bf:b5:5b:bb:c8:b4:88:05:48:95:20:09:e3:eb:e3:03:36:
7b:7d:72:e0:48:71:e7:4e:2f:53:e2:fa:b0:c9:8d:77:42:3b:
7d:47:4a:d8:4f:09:5f:66:1d:8b:ca:6f:ec:94:5d:e5:8f:f4:
29:64:9b:99:96:23:ac:fd:db:5b:f3:0c:e0:01:ae:44:1e:ce:
77:e8:be:89:5b:18:3a:d6:ec:bc:ba:90:da:13:4a:70:95:b7:
89:d0:21:09:c5:4c:bd:57:4f:38:fb:f5:a1:55:9c:77:1a:6c:
db:4b:f1:71:80:c5:d2:64:df:bb:e8:03:b1:54:fe:f4:3b:cf:
67:77:96:d2:07:b7:99:0d:39:64:c9:ee:ef:88:de:e0:56:0c:
75:f1:ce:a9:51:26:cc:28:02:0a:ed:15:38:45:5e:0c:5d:15:
5c:d9:ee:12:98:29:79:95:f8:e3:49:ee:42:84:b1:f6:5d:12:
9b:9a:a9:08:bd:a8:ab:48:00:fe:b3:74:a4:69:ee:58:e2:28:
d0:b6:e7:d0
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgIDAZ7ZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwOTA4MTIyMzU4WhcNMjYwODE1MTIyMzU4WjAYMRYw
FAYDVQQDEw02OGJlY2FlNC1lYjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6SDbu66MfPXe3tUotHASlujf0aG3f/Nr9I9btsYwm9cQHtMR6UexSw8s
BLnoJLb5YG5oToeC+ubSsRvHlHHxsGdFacCFFQamKh52zkE0HZ3qo7Bi9W5Em5mD
yk0EUbwwRUl1gTaXgy35wCcmZ50CaTV0MxD14pZqvhCgeYHpnpd+i6W5D0aw8LNe
lPUhc//QfAr3uTafT7+VCjSD9tnce/z43u0LtMqWITHBQVG6UpliR78Qosh+tJUt
ZImorzcX19J68c1HflUj7FbrB4FKxyynbLkI/nRTNZ8mNOtGJk6KZ09uq0eb6KMW
25nBZ+W7TNxZkD+6bSj50Nnpas4kxwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFAIM
6px7VQ7E+ioFDbk03pathhU1MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNEZDN0IzQzhDQUUxMUYwQjBEQUVFRENEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBAWaVSADBAGaVSwDBASa
VTAwDQYJKoZIhvcNAQELBQADggEBAD3qwupgV9SvBBYGUt2fWLAuNFsrvYLILkag
RGQUvQiZ4+xbV6c9DhGjk333p+rj+KtshZXJs2S/tVu7yLSIBUiVIAnj6+MDNnt9
cuBIcedOL1Pi+rDJjXdCO31HSthPCV9mHYvKb+yUXeWP9Clkm5mWI6z921vzDOAB
rkQeznfovolbGDrW7Ly6kNoTSnCVt4nQIQnFTL1XTzj79aFVnHcabNtL8XGAxdJk
37voA7FU/vQ7z2d3ltIHt5kNOWTJ7u+I3uBWDHXxzqlRJswoAgrtFThFXgxdFVzZ
7hKYKXmV+ONJ7kKEsfZdEpuaqQi9qKtIAP6zdKRp7ljiKNC259A=
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:59 2025 by rpki-client