Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B87D041087E111F0A575CDB9DAE4EC9C.roa
File: B87D041087E111F0A575CDB9DAE4EC9C.roa (raw, json)
Hash identifier: PZ1+PDS2rzGiVf/0HBI88y2gBA2IFkaZTEIPw19O3RM=
Subject key identifier: 3F:B3:39:04:C6:08:66:F7:9E:FE:B4:6D:5E:B5:EB:65:2D:49:AE:A0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019BE9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B87D041087E111F0A575CDB9DAE4EC9C.roa
Signing time: Tue 02 Sep 2025 09:46:38 +0000
ROA not before: Tue 02 Sep 2025 09:46:33 +0000
ROA not after: Wed 08 Oct 2025 09:46:33 +0000
asID: 14315
IP address blocks: 154.196.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105449 (0x19be9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 2 09:46:33 2025 GMT
Not After : Oct 8 09:46:33 2025 GMT
Subject: CN=68b6bcfe-1e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8d:8b:8a:a1:a5:63:f9:54:51:50:67:55:ba:
ad:6f:88:a5:f6:f6:e2:3f:34:89:ce:0d:8d:b2:de:
42:12:64:53:79:1f:53:12:aa:12:2b:76:c8:60:6d:
cc:0d:a6:ab:83:40:1a:94:7b:6d:3f:df:81:38:a5:
22:2c:d0:e6:fc:f9:bf:a5:5c:e1:22:29:b0:4f:e7:
5b:c0:e8:44:8e:7f:f5:49:8b:bf:34:b7:67:7d:67:
0a:fe:c5:2a:10:5c:d3:81:fd:d3:3a:e4:bd:e6:50:
12:8d:bb:ee:a0:5a:4f:4a:46:c8:73:06:af:ae:f8:
bd:0c:b7:85:49:fc:89:16:d4:07:7a:12:21:a4:bb:
ec:f0:63:ad:30:fc:1b:b9:71:80:82:fe:a6:3a:e4:
1e:f9:c5:e7:bc:5a:22:b2:9d:86:c0:bf:30:1e:ec:
79:c4:72:11:93:60:21:1b:f4:25:c0:11:2e:16:bd:
ae:61:8e:06:06:ab:3d:1c:34:31:c3:77:5b:01:41:
c3:37:fb:c7:67:b2:4a:d4:26:28:3a:af:53:6f:cf:
a3:3f:e7:56:b3:18:fa:62:8c:5f:1b:e4:2d:ea:63:
07:c2:ce:de:96:58:c5:14:74:d9:99:88:fc:98:17:
19:d2:61:56:a5:70:d4:92:ae:6d:dd:b4:55:c3:79:
06:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B3:39:04:C6:08:66:F7:9E:FE:B4:6D:5E:B5:EB:65:2D:49:AE:A0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B87D041087E111F0A575CDB9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.8.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:b4:d7:63:c1:c1:cf:ab:3a:91:52:88:d0:31:01:db:a2:54:
bb:8f:6b:b2:35:a5:90:8c:72:5b:cc:1e:c3:ac:21:ef:a2:a9:
1d:fa:7f:4b:e7:06:bf:ec:0b:a5:f1:75:09:be:30:64:95:8b:
84:2d:fe:62:aa:7d:21:2f:90:6c:1f:41:69:62:c2:31:1c:f2:
40:6e:eb:1f:5e:9a:b7:b0:f9:76:42:4e:7d:14:4c:88:84:eb:
61:3f:ad:21:c2:c9:a6:cb:09:fb:5d:d5:5d:55:43:07:68:73:
53:81:33:70:31:95:4c:07:03:a9:0e:1f:b6:c0:c6:57:c6:2e:
4f:99:c9:ac:d4:8a:74:4b:b1:cf:a8:59:45:67:3b:b6:7d:4c:
b3:db:9a:fe:4e:f3:0f:ec:09:c1:94:b3:b5:d1:44:53:78:de:
06:41:f0:55:fc:da:6f:8a:1e:bb:33:1c:2f:f3:9f:dc:f8:b5:
fc:35:87:b5:94:44:82:d5:55:63:4f:cf:6f:82:9b:ae:5b:a3:
3d:c5:34:48:b7:1b:01:b1:7d:aa:a3:89:d6:b9:4d:51:d6:46:
c8:a7:33:3e:50:65:97:d5:d3:18:19:1e:d8:59:f3:6d:94:44:
e0:0c:9a:43:ee:74:79:0d:19:0b:3f:61:b6:cd:04:4b:31:e6:
67:99:9a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:48:28 2025 by rpki-client