Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7250D888EDF11F0B8967BCDDAE4EC9C.roa
File: B7250D888EDF11F0B8967BCDDAE4EC9C.roa (raw, json)
Hash identifier: ww7ZhTj2/cu94jRssi0l13dIqlMFjumbavRXbBOVZH8=
Subject key identifier: 49:54:14:33:03:4D:FF:48:33:42:27:F3:AF:57:BF:96:36:B6:C6:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019F4D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7250D888EDF11F0B8967BCDDAE4EC9C.roa
Signing time: Thu 11 Sep 2025 07:19:57 +0000
ROA not before: Thu 11 Sep 2025 07:19:48 +0000
ROA not after: Tue 16 Dec 2025 07:19:48 +0000
asID: 142002
IP address blocks: 154.83.26.0/24 maxlen: 24
154.83.27.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106317 (0x19f4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 11 07:19:48 2025 GMT
Not After : Dec 16 07:19:48 2025 GMT
Subject: CN=68c2781d-f982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:db:40:3d:c5:f4:a2:04:b7:17:f8:e6:98:e7:
b7:64:59:02:96:2f:8e:27:c7:c9:9b:dd:bf:be:ab:
8f:fe:18:6b:b8:bd:16:1a:ae:81:37:47:3e:ae:c9:
99:d3:b2:e4:d4:8b:ec:3b:0a:06:a1:a7:79:99:3d:
c4:74:0b:4f:bd:ba:47:00:a4:0e:d1:e5:7c:e6:01:
42:05:4b:94:d5:4c:8e:91:4b:04:8c:22:a9:13:02:
d2:d4:d5:4d:cf:a3:dc:f0:24:61:cb:f4:23:40:71:
d3:a4:3f:87:a3:d9:e2:63:f6:47:58:af:ba:ad:be:
f2:8e:c2:bf:f2:77:30:c7:c5:5d:0e:16:81:33:db:
92:a1:4b:0d:54:56:47:08:46:21:d4:e9:a0:00:ac:
80:78:73:4e:94:9b:e0:4b:1d:05:e2:ee:87:84:63:
09:9e:c8:b8:b5:08:9e:57:16:f5:99:2f:5f:47:d3:
58:71:86:c9:fd:66:ed:6a:23:a6:47:09:36:e1:90:
5c:7a:fb:a5:4a:27:4d:79:10:0e:9d:9f:87:96:14:
fd:fd:af:1e:01:8e:31:c8:70:d0:9a:6c:62:f6:83:
6f:08:a2:8d:58:20:82:ab:fd:4e:63:0d:b6:61:5d:
ac:01:e6:28:27:90:88:0d:f5:43:9c:e8:6f:7f:10:
8f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:54:14:33:03:4D:FF:48:33:42:27:F3:AF:57:BF:96:36:B6:C6:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B7250D888EDF11F0B8967BCDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.26.0/23
Signature Algorithm: sha256WithRSAEncryption
58:62:3a:6b:ed:ff:4a:52:7f:ae:a4:77:da:d5:6b:c5:84:45:
4c:7d:d3:a5:4a:b7:3b:76:9e:2f:b2:f2:92:6d:7f:d1:30:e4:
19:c7:61:bb:52:89:96:c1:e8:10:1f:b3:4e:21:d0:cb:20:a4:
fc:33:ca:4d:2d:72:f8:c6:8e:a7:26:61:8e:13:a0:c3:c2:f2:
b1:2b:2b:32:3e:85:08:cd:b3:5c:e6:57:17:a8:54:58:a8:bf:
be:b4:69:60:e1:e2:4c:33:c2:34:30:ac:1a:fa:fe:9e:6a:c9:
12:66:30:03:78:b9:fa:93:e3:d4:24:a2:bf:1e:12:24:d1:b6:
19:52:a0:02:50:62:42:b2:ff:6c:a6:c7:f2:8a:a4:7f:79:87:
04:40:55:0c:d0:cb:fe:4c:39:72:f2:1c:ff:bf:8f:a5:41:48:
6f:88:a6:a8:57:fc:af:55:f8:d1:f1:b2:78:60:32:8c:7c:57:
78:f5:a9:9f:bb:20:24:dd:57:8f:c8:32:46:08:a4:94:e4:14:
6b:db:77:63:16:7d:aa:bd:64:e8:8a:05:78:3d:57:2c:01:bb:
5a:14:df:02:7d:d1:4d:b8:65:39:ae:9e:8a:66:3d:1c:55:fd:
2c:b3:65:13:72:b2:34:60:0e:fa:53:26:90:b5:46:39:04:09:
06:64:d4:65
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAZ9NMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwOTExMDcxOTQ4WhcNMjUxMjE2MDcxOTQ4WjAYMRYw
FAYDVQQDEw02OGMyNzgxZC1mOTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvNtAPcX0ogS3F/jmmOe3ZFkCli+OJ8fJm92/vquP/hhruL0WGq6BN0c+
rsmZ07Lk1IvsOwoGoad5mT3EdAtPvbpHAKQO0eV85gFCBUuU1UyOkUsEjCKpEwLS
1NVNz6Pc8CRhy/QjQHHTpD+Ho9niY/ZHWK+6rb7yjsK/8ncwx8VdDhaBM9uSoUsN
VFZHCEYh1OmgAKyAeHNOlJvgSx0F4u6HhGMJnsi4tQieVxb1mS9fR9NYcYbJ/Wbt
aiOmRwk24ZBcevulSidNeRAOnZ+HlhT9/a8eAY4xyHDQmmxi9oNvCKKNWCCCq/1O
Yw22YV2sAeYoJ5CIDfVDnOhvfxCPUwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFElU
FDMDTf9IM0In869Xv5Y2tsbjMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNzI1MEQ4ODhFREYxMUYwQjg5NjdCQ0REQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBmlMaMA0GCSqGSIb3DQEB
CwUAA4IBAQBYYjpr7f9KUn+upHfa1WvFhEVMfdOlSrc7dp4vsvKSbX/RMOQZx2G7
UomWwegQH7NOIdDLIKT8M8pNLXL4xo6nJmGOE6DDwvKxKysyPoUIzbNc5lcXqFRY
qL++tGlg4eJMM8I0MKwa+v6easkSZjADeLn6k+PUJKK/HhIk0bYZUqACUGJCsv9s
psfyiqR/eYcEQFUM0Mv+TDly8hz/v4+lQUhviKaoV/yvVfjR8bJ4YDKMfFd49amf
uyAk3VePyDJGCKSU5BRr23djFn2qvWToigV4PVcsAbtaFN8CfdFNuGU5rp6KZj0c
Vf0ss2UTcrI0YA76UyaQtUY5BAkGZNRl
-----END CERTIFICATE-----
Generated at Tue Sep 16 05:44:49 2025 by rpki-client