Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1ECC24C9F6811F0A3B707DEDAE4EC9C.roa
File: E1ECC24C9F6811F0A3B707DEDAE4EC9C.roa (raw, json)
Hash identifier: j9UK8XZd2kP8C3jpMAzCa4wftgfUo5DHJu9r98AFoZA=
Subject key identifier: 35:B0:E4:49:39:0C:00:6D:9F:AA:F9:35:02:86:FB:92:DF:C1:DA:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A1F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1ECC24C9F6811F0A3B707DEDAE4EC9C.roa
Signing time: Thu 02 Oct 2025 08:22:07 +0000
ROA not before: Thu 02 Oct 2025 08:22:01 +0000
ROA not after: Fri 07 Nov 2025 08:22:01 +0000
asID: 272092
IP address blocks: 154.83.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107000 (0x1a1f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 2 08:22:01 2025 GMT
Not After : Nov 7 08:22:01 2025 GMT
Subject: CN=68de362f-cdcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:69:02:89:e0:98:51:ca:4c:ba:8b:48:59:af:
df:e6:1e:ae:f9:9c:34:44:45:b7:c9:6d:04:00:ea:
97:f7:43:1e:66:7f:0f:99:ea:4c:2f:17:cb:30:64:
d0:4e:cf:15:f3:a2:b2:e7:1b:c1:ca:47:8f:eb:e3:
7d:15:99:b1:ed:96:6b:26:5b:d4:a4:f3:ac:92:75:
7c:d9:49:2d:d2:4b:5f:c6:79:7f:47:eb:bc:94:09:
0d:e2:fa:ea:06:bd:f9:21:a8:7f:22:6f:6a:70:5b:
83:00:d9:0d:9a:77:8c:41:a8:bd:7e:19:a0:16:f6:
8e:5f:67:76:41:5b:9a:ea:56:7e:cc:c3:ff:71:45:
ff:ab:7e:49:4c:f9:27:81:56:cd:64:64:ad:72:b3:
c9:46:25:36:fb:e6:9c:7a:d9:ed:4c:e6:be:8e:66:
ca:50:c8:70:90:10:da:c6:25:fe:5b:3f:f2:bb:5d:
d7:bb:0b:81:4e:8c:7c:8f:84:9d:78:1d:26:ad:15:
20:d2:43:94:8e:7f:ed:a2:bd:39:2c:71:d1:81:bd:
1d:47:82:df:1b:0d:e8:3a:03:d2:94:02:f4:cc:e6:
93:39:df:4d:72:61:f7:07:49:26:38:f4:c8:60:06:
99:ce:84:3d:46:8a:30:f8:c8:c9:5c:8d:de:10:e0:
74:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B0:E4:49:39:0C:00:6D:9F:AA:F9:35:02:86:FB:92:DF:C1:DA:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1ECC24C9F6811F0A3B707DEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.29.0/24
Signature Algorithm: sha256WithRSAEncryption
56:d8:a9:eb:0a:fc:14:86:1a:b8:d7:b6:28:d6:2c:2b:31:54:
96:be:e4:ef:b8:7a:8b:e6:d4:74:b0:e6:ec:f4:3f:60:98:b3:
d2:ec:72:78:d6:95:47:df:7d:7d:ad:0c:ea:ef:27:d3:8b:4e:
4f:1d:1b:73:c5:96:f4:1a:8d:46:15:89:ff:59:c7:49:33:32:
6b:67:be:c5:4d:bd:68:24:cb:df:37:7c:8b:21:16:3f:af:ba:
ea:1a:55:23:d9:6b:d6:53:d8:26:d4:8c:0e:56:eb:e3:90:a9:
bf:12:7f:c0:b4:03:96:96:d6:a9:96:d9:ad:77:e4:e5:3e:59:
2b:ad:ea:84:ed:00:46:43:af:b6:ec:70:3d:07:55:f6:7a:b8:
40:c5:ed:eb:83:6f:3e:3e:81:8f:d8:9f:66:5e:5a:07:cc:95:
72:39:85:63:29:c7:eb:f8:0f:f4:29:66:de:90:2b:53:a6:b5:
b1:cf:1d:26:71:d8:15:fc:92:20:a0:fb:74:eb:e8:bb:d8:cc:
a8:b8:92:35:38:68:23:29:de:3d:39:e3:0c:ef:c5:21:4f:6a:
24:46:ad:86:13:99:36:6b:a9:fa:79:85:3e:cd:66:45:1d:19:
2a:40:e8:b7:3c:b1:41:62:bb:13:47:8c:52:b6:90:14:e6:0e:
16:d5:b1:88
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAaH4MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMDAyMDgyMjAxWhcNMjUxMTA3MDgyMjAxWjAYMRYw
FAYDVQQDEw02OGRlMzYyZi1jZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu2kCieCYUcpMuotIWa/f5h6u+Zw0REW3yW0EAOqX90MeZn8PmepMLxfL
MGTQTs8V86Ky5xvBykeP6+N9FZmx7ZZrJlvUpPOsknV82Ukt0ktfxnl/R+u8lAkN
4vrqBr35Iah/Im9qcFuDANkNmneMQai9fhmgFvaOX2d2QVua6lZ+zMP/cUX/q35J
TPkngVbNZGStcrPJRiU2++acetntTOa+jmbKUMhwkBDaxiX+Wz/yu13XuwuBTox8
j4SdeB0mrRUg0kOUjn/tor05LHHRgb0dR4LfGw3oOgPSlAL0zOaTOd9NcmH3B0km
OPTIYAaZzoQ9Roow+MjJXI3eEOB06wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDWw
5Ek5DABtn6r5NQKG+5LfwdpfMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FMUVDQzI0QzlGNjgxMUYwQTNCNzA3REVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlMdMA0GCSqGSIb3DQEB
CwUAA4IBAQBW2KnrCvwUhhq417Yo1iwrMVSWvuTvuHqL5tR0sObs9D9gmLPS7HJ4
1pVH3319rQzq7yfTi05PHRtzxZb0Go1GFYn/WcdJMzJrZ77FTb1oJMvfN3yLIRY/
r7rqGlUj2WvWU9gm1IwOVuvjkKm/En/AtAOWltapltmtd+TlPlkrreqE7QBGQ6+2
7HA9B1X2erhAxe3rg28+PoGP2J9mXloHzJVyOYVjKcfr+A/0KWbekCtTprWxzx0m
cdgV/JIgoPt06+i72MyouJI1OGgjKd49OeMM78UhT2okRq2GE5k2a6n6eYU+zWZF
HRkqQOi3PLFBYrsTR4xStpAU5g4W1bGI
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:10 2025 by rpki-client