Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE16074A9D7211F0AAAA0E9CDAE4EC9C.roa
File: BE16074A9D7211F0AAAA0E9CDAE4EC9C.roa (raw, json)
Hash identifier: L6tCTAYaQHZtfkS/FluDlnYheLsK56lDWLPM79VXfxI=
Subject key identifier: C3:DF:12:5D:95:84:DB:9D:A9:20:D3:2F:13:86:4B:0C:BE:4B:D8:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A183
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE16074A9D7211F0AAAA0E9CDAE4EC9C.roa
Signing time: Mon 29 Sep 2025 20:27:39 +0000
ROA not before: Mon 29 Sep 2025 20:27:32 +0000
ROA not after: Mon 03 Nov 2025 20:27:32 +0000
asID: 395793
IP address blocks: 154.200.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106883 (0x1a183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 20:27:32 2025 GMT
Not After : Nov 3 20:27:32 2025 GMT
Subject: CN=68daebbb-d98e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:66:6e:5b:76:de:db:cf:5e:ea:09:df:78:4a:
d6:0a:00:1f:59:c6:48:b2:79:fa:87:5f:a2:bb:5b:
8a:5b:d4:cd:3c:72:35:d1:c0:1b:91:2f:ca:f3:e8:
ea:56:f6:48:94:02:30:32:3d:0e:e4:52:15:de:92:
08:21:84:77:fb:92:1b:f5:bf:04:45:e4:2a:da:3e:
9a:77:ab:64:49:d3:c8:d4:ce:77:82:a1:38:74:33:
48:20:ff:91:94:95:e1:06:87:a3:75:1c:dd:2a:96:
c0:e1:69:0b:0b:15:4f:13:91:8b:09:91:99:b3:e5:
6b:90:b3:b8:fd:6d:02:2f:68:9c:c4:50:b2:b5:59:
15:2b:1c:dd:31:16:f0:ec:11:af:c3:f7:43:ab:c7:
83:41:c2:6a:cf:56:60:b8:5d:cf:ee:33:73:1f:41:
2c:25:37:55:e8:32:83:59:20:1e:43:74:66:a9:1e:
b0:13:68:aa:25:bd:82:a8:4c:ed:b2:fe:78:3d:5b:
46:f0:87:54:b7:a4:d1:cb:1c:1e:9a:47:16:fd:ad:
0e:56:08:29:f5:7b:a5:7a:c8:a9:e0:23:16:01:d2:
9f:0e:fc:1d:31:ae:e8:6b:bb:6d:c6:93:38:c4:9e:
e3:fa:cd:30:29:1f:dc:c0:00:95:1f:59:6c:81:59:
6d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:DF:12:5D:95:84:DB:9D:A9:20:D3:2F:13:86:4B:0C:BE:4B:D8:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE16074A9D7211F0AAAA0E9CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.63.0/24
Signature Algorithm: sha256WithRSAEncryption
26:e1:9c:61:8d:22:4c:ea:0d:c5:78:bc:0b:75:ce:6f:d2:2e:
58:55:c1:fa:8e:20:7d:94:25:61:1c:9b:88:42:fb:4b:9b:ee:
82:38:d2:bf:a5:aa:c7:c5:5a:7e:34:b2:2d:b1:4d:69:8e:d9:
4d:43:c7:8c:d7:21:b5:b8:13:0d:e4:86:e6:d6:8d:73:e7:ce:
d7:c9:09:5a:55:00:29:0a:a8:72:b8:f4:d6:8b:21:2a:43:11:
82:55:1b:08:72:7a:98:7c:c8:91:d2:15:3f:b1:79:f7:50:45:
47:b6:6c:c3:35:09:9c:ee:09:01:d3:65:86:f3:61:5e:e1:16:
e7:14:ab:39:36:31:c0:38:2b:bf:66:fd:dc:60:57:1d:dc:8d:
29:60:d7:a9:68:3d:a1:2f:f0:ba:21:bc:c8:ee:df:60:68:b2:
93:36:f0:5e:16:2a:32:44:fd:0f:af:35:d2:39:7e:bc:be:a5:
a4:2d:ff:b2:91:37:47:40:92:b4:44:3d:5e:60:67:d8:4e:68:
55:33:6f:b8:e7:4d:3a:60:d7:3b:92:a8:a6:fb:27:33:5b:ad:
80:68:c6:d6:b1:8c:61:a5:50:04:f4:db:dd:f7:11:71:29:f6:
de:db:39:12:83:70:ac:32:8e:2d:27:1c:33:37:bb:8b:14:fc:
d4:91:4c:81
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAaGDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwOTI5MjAyNzMyWhcNMjUxMTAzMjAyNzMyWjAYMRYw
FAYDVQQDEw02OGRhZWJiYi1kOThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0mZuW3be289e6gnfeErWCgAfWcZIsnn6h1+iu1uKW9TNPHI10cAbkS/K
8+jqVvZIlAIwMj0O5FIV3pIIIYR3+5Ib9b8EReQq2j6ad6tkSdPI1M53gqE4dDNI
IP+RlJXhBoejdRzdKpbA4WkLCxVPE5GLCZGZs+VrkLO4/W0CL2icxFCytVkVKxzd
MRbw7BGvw/dDq8eDQcJqz1ZguF3P7jNzH0EsJTdV6DKDWSAeQ3RmqR6wE2iqJb2C
qEztsv54PVtG8IdUt6TRyxwemkcW/a0OVggp9Xulesip4CMWAdKfDvwdMa7oa7tt
xpM4xJ7j+s0wKR/cwACVH1lsgVlt9wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMPf
El2VhNudqSDTLxOGSwy+S9hBMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CRTE2MDc0QTlENzIxMUYwQUFBQTBFOUNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsg/MA0GCSqGSIb3DQEB
CwUAA4IBAQAm4ZxhjSJM6g3FeLwLdc5v0i5YVcH6jiB9lCVhHJuIQvtLm+6CONK/
parHxVp+NLItsU1pjtlNQ8eM1yG1uBMN5Ibm1o1z587XyQlaVQApCqhyuPTWiyEq
QxGCVRsIcnqYfMiR0hU/sXn3UEVHtmzDNQmc7gkB02WG82Fe4RbnFKs5NjHAOCu/
Zv3cYFcd3I0pYNepaD2hL/C6IbzI7t9gaLKTNvBeFioyRP0PrzXSOX68vqWkLf+y
kTdHQJK0RD1eYGfYTmhVM2+45006YNc7kqim+yczW62AaMbWsYxhpVAE9Nvd9xFx
Kfbe2zkSg3CsMo4tJxwzN7uLFPzUkUyB
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:43 2025 by rpki-client