Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D3A77E6688CF11F08E4DDAB9DAE4EC9C.roa
File: D3A77E6688CF11F08E4DDAB9DAE4EC9C.roa (raw, json)
Hash identifier: huckSnsAhyBxdUmc6asdMXaULKIZMH8Q6z7TSg/7qv8=
Subject key identifier: 0A:34:69:5E:53:B4:CE:92:90:D2:41:4B:C2:EB:AB:4B:BE:3A:86:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019D2E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D3A77E6688CF11F08E4DDAB9DAE4EC9C.roa
Signing time: Wed 03 Sep 2025 14:11:04 +0000
ROA not before: Wed 03 Sep 2025 14:10:58 +0000
ROA not after: Tue 30 Sep 2025 14:10:58 +0000
asID: 17561
IP address blocks: 154.82.154.0/23 maxlen: 24
154.82.156.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105774 (0x19d2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 3 14:10:58 2025 GMT
Not After : Sep 30 14:10:58 2025 GMT
Subject: CN=68b84c78-d189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ae:37:f4:97:e6:26:97:a7:68:e9:22:c4:df:
57:69:3a:14:5b:67:db:97:21:55:ca:2b:46:61:ea:
52:79:16:ea:c9:dd:d0:bb:6f:b4:7a:57:b7:6e:75:
fe:af:84:36:59:25:a8:98:cf:fc:1d:e2:d1:a2:6e:
ec:19:55:30:89:8a:32:d4:6c:16:58:b7:2f:dc:5d:
3a:2c:1f:06:d6:5d:3b:4b:e3:6d:59:f7:96:00:1c:
3f:de:66:b3:8e:25:5c:0b:e9:3e:f7:13:00:2b:a8:
e4:0a:62:75:af:55:75:f7:a9:ad:e1:3d:78:d6:2c:
19:e7:1a:87:70:eb:d1:c7:ee:84:1a:0d:cf:26:73:
1d:10:0c:a9:dd:39:60:4c:7b:9c:aa:ae:ca:8d:88:
95:e8:75:e9:8c:f4:ca:c5:c1:e4:a2:a3:38:03:b9:
96:99:be:e4:17:dd:9a:53:2b:9f:56:3c:52:ce:b7:
64:81:30:88:13:b0:26:f9:66:70:b8:4f:22:63:53:
d3:27:f1:e4:ab:17:6b:f6:ce:5c:bc:9e:74:e1:0b:
c6:81:17:20:2e:c3:b5:13:f0:39:c8:fc:94:88:98:
f2:0e:29:81:01:ee:f3:05:54:6d:54:8f:65:46:81:
09:ec:24:9d:3a:20:38:81:1b:9f:af:61:fb:74:79:
35:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:34:69:5E:53:B4:CE:92:90:D2:41:4B:C2:EB:AB:4B:BE:3A:86:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D3A77E6688CF11F08E4DDAB9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.154.0-154.82.157.255
Signature Algorithm: sha256WithRSAEncryption
9b:4f:55:19:2b:17:b2:be:05:59:df:9b:ba:b8:7a:51:4f:18:
5e:37:0e:a6:a4:33:90:a4:0c:7e:4c:60:74:c0:f5:88:6e:d6:
60:10:a2:b2:2a:ec:e4:fd:bb:fe:23:26:b6:8e:22:3f:05:5d:
18:cb:87:62:cf:be:d4:b5:7b:e5:70:93:84:0b:7c:de:98:85:
54:4f:e5:9d:58:62:3c:9a:1f:d3:da:c4:0c:71:f0:5c:70:c1:
8f:44:fb:fe:b7:3b:ed:46:55:f3:d8:50:4e:a9:5d:b8:bb:52:
18:5a:7a:37:4d:d7:88:56:3d:99:90:76:29:06:f6:26:c7:ee:
38:a4:65:db:9d:2e:8f:62:7c:09:e2:c3:7c:bb:dd:98:39:e7:
65:14:51:6c:01:a8:b8:87:da:d5:b8:16:4a:6f:01:b5:eb:6c:
71:37:74:a7:73:7a:6f:cd:b7:90:a5:0c:27:d1:84:5e:85:03:
5c:11:63:e7:d3:c6:5b:49:06:f8:9b:aa:29:b4:0c:fc:02:4d:
36:51:d2:75:a3:c4:65:8f:bd:dd:46:ea:2b:e8:44:e4:be:6a:
7b:bc:b4:89:bb:b6:4e:24:49:a4:fb:d1:8c:34:55:a0:d1:47:
f2:02:7e:9e:45:0c:b2:72:8e:3d:46:fb:ba:40:4c:24:00:e3:
0d:76:47:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:37:45 2025 by rpki-client