Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E362C6F493AA11F0BD7D8ED3DAE4EC9C.roa
File: E362C6F493AA11F0BD7D8ED3DAE4EC9C.roa (raw, json)
Hash identifier: FpZVYtCE3HBKSyZkoCK2FqTTn21qlomr6o1h9CbTy5c=
Subject key identifier: E3:4F:0C:18:79:76:02:D6:EA:BB:27:2A:D1:31:10:A1:18:1E:68:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019FE0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E362C6F493AA11F0BD7D8ED3DAE4EC9C.roa
Signing time: Wed 17 Sep 2025 09:44:22 +0000
ROA not before: Wed 17 Sep 2025 09:44:17 +0000
ROA not after: Mon 06 Oct 2025 09:44:17 +0000
asID: 271988
IP address blocks: 154.88.160.0/20 maxlen: 24
154.88.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 21 Sep 2025 00:06:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106464 (0x19fe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 09:44:17 2025 GMT
Not After : Oct 6 09:44:17 2025 GMT
Subject: CN=68ca82f6-98b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:dd:80:1c:5d:a6:fc:4a:9f:c5:a9:a3:02:b2:
1b:7d:8d:c1:c3:6e:48:2a:74:9b:7e:d1:8e:45:b8:
c9:83:5c:50:80:c5:71:db:ad:2f:ea:84:c5:63:9d:
c2:81:5d:51:21:39:24:5f:22:a9:9f:17:b0:1b:15:
3d:47:9b:09:8a:52:64:15:b9:20:28:41:54:f6:ed:
5d:2f:63:c5:9e:86:61:ab:80:35:94:67:a8:32:1e:
5f:57:98:ba:d3:26:7f:73:55:db:5d:25:72:85:14:
01:2b:af:6a:fd:ff:c5:86:5c:e8:c1:4e:a9:34:7a:
29:3c:35:de:03:82:b2:6a:8a:c3:59:b6:f8:7c:3f:
9e:66:11:4d:dc:dc:e8:c7:33:08:9a:c8:d7:da:2d:
c9:70:be:27:7e:ba:57:6b:ca:3e:27:ae:c4:0e:49:
bd:3c:bf:d2:61:76:51:3c:1a:39:0b:2c:ee:69:d2:
6e:33:a2:71:bb:74:e1:1e:37:9c:25:6f:28:00:76:
66:fa:17:ca:63:4f:a2:a6:63:7d:b0:6a:d8:2c:22:
c3:bf:cd:bd:cc:7b:a6:52:75:62:ed:72:2e:89:bf:
55:a5:cb:40:b3:29:9d:f1:74:8e:fc:2d:b5:ed:2e:
20:17:30:8b:a2:41:30:37:c8:cd:ff:05:cd:45:58:
32:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4F:0C:18:79:76:02:D6:EA:BB:27:2A:D1:31:10:A1:18:1E:68:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E362C6F493AA11F0BD7D8ED3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.160.0-154.88.179.255
Signature Algorithm: sha256WithRSAEncryption
9c:57:27:91:8c:0c:be:be:4e:8b:e0:22:bf:27:ff:cf:fe:10:
48:e6:36:6d:6d:2d:fd:11:b3:a1:aa:47:6f:f5:2f:67:a5:b7:
9a:0b:d8:0c:36:59:cf:71:bd:a0:52:cf:88:e6:42:b3:c2:db:
01:af:2c:bf:ee:35:ba:65:0d:ac:81:e4:2e:5d:25:ef:46:2a:
04:9c:35:25:c5:b6:98:a6:19:67:d8:0d:3d:8c:b2:eb:9d:15:
63:2c:eb:32:00:34:81:84:d8:85:d3:0a:6b:24:7d:44:64:22:
7e:95:cf:a0:7f:7e:a5:37:b5:8c:cf:ab:e6:8b:11:8e:30:2a:
8f:a4:61:b2:a5:91:eb:05:a4:92:0e:d9:9c:7e:71:c5:69:c6:
c3:ea:21:49:a2:4e:67:5d:65:05:29:13:96:6e:2c:2b:cb:bd:
24:a3:c5:d9:57:ec:9e:29:26:2a:b7:70:c6:90:57:36:7b:65:
94:db:00:b1:09:2a:2f:ea:b4:cc:0b:fc:2e:47:95:3f:ad:79:
f4:d2:01:ea:43:c4:29:61:3f:37:41:5a:8e:61:20:30:2c:01:
48:9d:23:b7:7b:18:f6:c5:24:5c:2d:70:5c:28:55:0c:3a:45:
ee:a9:38:08:f0:49:54:3d:df:a8:b9:d0:c5:aa:34:a4:db:de:
c0:6e:a8:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 15:10:29 2025 by rpki-client