Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC0890C8B35811F0BD302792DAE4EC9C.roa
File: DC0890C8B35811F0BD302792DAE4EC9C.roa (raw, json)
Hash identifier: F8nzbppZCpBcKb9a6edX+vyQGp3RfGDkS5kIz3kh5bs=
Subject key identifier: 13:CD:C6:B9:63:19:2D:7D:0F:96:DB:EB:F6:3A:AB:79:76:9F:57:DC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A55B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC0890C8B35811F0BD302792DAE4EC9C.roa
Signing time: Mon 27 Oct 2025 17:17:48 +0000
ROA not before: Mon 27 Oct 2025 17:17:43 +0000
ROA not after: Mon 01 Dec 2025 17:17:43 +0000
asID: 62240
IP address blocks: 154.194.33.0/24 maxlen: 24
154.194.119.0/24 maxlen: 24
154.194.120.0/24 maxlen: 24
154.194.121.0/24 maxlen: 24
154.194.122.0/24 maxlen: 24
154.194.123.0/24 maxlen: 24
154.194.124.0/24 maxlen: 24
154.194.125.0/24 maxlen: 24
154.194.126.0/24 maxlen: 24
154.194.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 Oct 2025 09:04:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107867 (0x1a55b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 27 17:17:43 2025 GMT
Not After : Dec 1 17:17:43 2025 GMT
Subject: CN=68ffa93c-04a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:ec:2d:3e:ac:15:f5:62:b4:93:41:71:32:7b:
e5:2b:ad:0d:49:d6:bc:f9:82:23:44:07:99:ed:72:
a8:f9:8a:3e:f3:4d:db:d5:dd:b1:8f:ce:e1:68:9f:
78:cc:06:57:75:38:5a:e7:ea:56:02:83:b7:1f:17:
2f:6a:7f:e9:02:0e:fa:4e:f9:bf:3c:69:d6:ca:95:
4b:00:cf:c6:f5:d6:40:3f:1d:ab:5c:ba:93:15:e3:
db:80:18:fa:b5:15:ca:a5:ec:47:87:5b:63:36:eb:
2d:07:00:96:7f:95:38:1e:cf:dd:a4:ae:3b:33:0d:
c8:83:95:2a:77:f9:09:9d:0f:70:44:00:27:cc:67:
ca:61:15:20:63:0b:1d:cc:84:13:43:6e:2d:6e:71:
74:c8:29:ba:1d:23:4a:37:a5:2d:44:bc:14:2d:e4:
32:31:cc:55:76:91:16:13:8d:dc:2c:b0:57:6c:f8:
e5:9e:c8:22:31:02:3e:0e:d3:54:11:38:30:ac:ea:
15:5b:b5:6e:71:3c:d0:ad:6f:21:0b:b1:60:d5:b0:
10:a8:d0:f4:d1:1f:c4:84:1e:12:6d:96:8a:b7:f3:
ad:7a:f2:94:b7:9d:1c:ad:be:28:a6:b1:c3:54:5f:
2d:5c:b0:82:6f:3b:6d:c6:a4:be:f4:d5:d4:38:e5:
e8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CD:C6:B9:63:19:2D:7D:0F:96:DB:EB:F6:3A:AB:79:76:9F:57:DC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC0890C8B35811F0BD302792DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.33.0/24
154.194.119.0-154.194.127.255
Signature Algorithm: sha256WithRSAEncryption
91:e2:55:74:79:35:cb:9c:96:78:77:73:f1:32:0b:16:f0:47:
11:53:74:a9:ce:71:78:04:03:43:e2:b4:bc:68:75:b9:fd:3d:
69:a4:88:bb:4d:85:13:a3:58:26:74:79:52:3f:13:6f:f6:0c:
59:8b:60:8a:f3:1c:0d:55:28:9c:8b:a2:68:f4:4c:0e:d7:41:
4c:6f:18:67:a9:7d:6f:62:78:04:1a:4a:e2:c1:fb:e3:c6:a0:
d6:02:20:f5:7f:b9:6e:a2:37:ac:4c:7e:93:2d:47:c0:b4:9a:
b6:27:d2:cf:a1:fb:5e:78:4d:6c:72:f2:db:85:b0:52:0b:e6:
b0:b6:ca:b8:aa:5f:0d:01:46:58:ca:37:1d:23:61:2f:3b:72:
fd:6c:b2:af:81:2a:8d:09:c8:88:e8:99:fd:f9:c9:04:a0:54:
59:99:7a:b0:65:0e:fd:60:19:f6:7f:dd:0f:c7:19:e8:fd:c4:
2a:d6:5f:9a:a1:d1:7f:d5:97:0d:79:e2:7c:3a:48:6c:b9:6c:
39:50:d8:2c:4a:13:6f:e0:14:13:ed:55:16:60:37:3f:66:0e:
3e:ed:f3:c8:26:76:07:b4:d6:cd:3b:12:86:a5:92:9a:99:59:
8e:ff:5e:cc:34:6e:d5:f1:79:46:85:68:95:d9:b2:de:60:75:
d1:17:e9:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 17:04:47 2025 by rpki-client