Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B58D5E14997D11F0AE0B937ADAE4EC9C.roa
File: B58D5E14997D11F0AE0B937ADAE4EC9C.roa (raw, json)
Hash identifier: wIvNq6bpDBN8xlLjENwwt12Wq6zRArt3gebn2qmUT/E=
Subject key identifier: A7:47:BE:6C:CA:32:F6:7C:05:1E:7B:22:72:37:B0:B7:2E:EB:A9:B9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A0BC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B58D5E14997D11F0AE0B937ADAE4EC9C.roa
Signing time: Wed 24 Sep 2025 19:36:05 +0000
ROA not before: Wed 24 Sep 2025 19:36:00 +0000
ROA not after: Fri 31 Oct 2025 19:36:00 +0000
asID: 14315
IP address blocks: 154.194.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106684 (0x1a0bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 24 19:36:00 2025 GMT
Not After : Oct 31 19:36:00 2025 GMT
Subject: CN=68d44825-0b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ef:f6:92:87:e1:e9:89:3e:b7:2d:04:fe:f9:
2c:47:10:e9:93:4f:9a:34:5a:ae:df:94:4b:8d:0f:
fd:af:2e:27:cb:47:2d:d4:0d:69:8d:9b:9d:00:0c:
57:ed:ed:4e:0f:36:04:5a:05:83:33:70:2d:49:5a:
99:6a:21:2f:8d:ce:b7:80:e4:ef:2e:58:12:08:e1:
67:b9:15:16:27:48:98:3e:81:b1:a3:7c:46:cf:3c:
99:28:b8:6f:c1:af:af:64:1f:a8:63:7e:14:db:93:
13:aa:8d:e1:2f:3a:c6:9c:e5:92:6f:b8:c5:9f:b1:
18:5b:7b:ab:9b:6b:2f:7e:6a:2b:cf:7a:c8:f2:21:
5c:9e:a3:b1:43:33:15:8f:e6:42:31:26:fc:16:08:
de:c6:19:10:d4:81:65:2d:2b:39:9b:b7:95:b3:d3:
55:2f:d4:47:22:15:a5:db:aa:76:1a:8f:93:91:4d:
76:25:89:2e:58:21:13:41:20:89:aa:89:88:c8:e7:
fa:38:bb:22:f7:79:be:ef:cb:53:93:86:cb:a3:29:
cd:0d:d2:40:23:96:73:0c:e1:7f:b5:95:0a:ad:08:
82:79:e9:c3:0a:55:d8:26:74:a7:93:6f:c8:f4:b0:
58:93:51:f8:93:dd:69:3c:c6:1b:85:f1:65:64:4e:
81:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:47:BE:6C:CA:32:F6:7C:05:1E:7B:22:72:37:B0:B7:2E:EB:A9:B9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B58D5E14997D11F0AE0B937ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.50.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:37:99:43:72:13:fe:94:c3:9d:87:e3:80:2c:ca:c4:4d:68:
d4:7d:da:ec:be:71:e8:24:69:76:47:7d:0f:94:12:88:16:dd:
04:85:89:f5:a4:02:2c:a0:00:9c:73:a5:d9:1d:81:a5:fa:58:
80:2d:93:28:a0:20:1f:bf:3b:c1:f2:27:88:41:c9:67:cf:08:
e5:00:ac:41:e8:0e:23:44:30:81:ab:ad:9e:d4:ff:0f:1b:32:
bd:a7:46:68:ad:b1:00:d1:8a:9c:e9:35:16:e4:dc:d8:69:04:
82:79:b9:3a:75:cc:20:09:a6:1f:e4:ec:67:02:4d:63:47:07:
4a:53:d1:4f:d0:ea:bc:c2:b9:df:af:59:3f:6b:59:79:6a:70:
3a:d8:e2:34:ad:1f:18:1e:a4:54:6f:19:3b:af:47:c7:dd:a7:
bb:c0:2f:1b:8f:5c:a8:6e:76:59:79:8b:32:51:3e:10:9e:66:
d7:4e:78:7e:dd:b4:c9:95:10:7f:d8:ef:59:67:98:2a:9f:76:
3b:88:85:d5:d4:ac:e0:55:27:bc:9a:77:07:ca:cf:7c:a1:9b:
b3:23:55:0c:14:9f:e7:05:31:b7:62:e5:d9:e8:a0:a3:5c:fd:
ef:8b:58:33:4f:91:fe:01:f9:e6:0f:34:8e:c2:1a:96:df:2f:
8a:90:a2:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:01 2025 by rpki-client