Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E531F3E6833411F089AE2EACDAE4EC9C.roa
File: E531F3E6833411F089AE2EACDAE4EC9C.roa (raw, json)
Hash identifier: GBB+JWxlxKFVI/n5bSMIMSoFoafmAzbBF3h23Tpyfv8=
Subject key identifier: 9E:19:35:3B:73:0B:48:FE:F0:EA:94:99:D4:E4:79:44:52:33:92:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01986F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E531F3E6833411F089AE2EACDAE4EC9C.roa
Signing time: Wed 27 Aug 2025 10:59:26 +0000
ROA not before: Wed 27 Aug 2025 10:59:21 +0000
ROA not after: Mon 03 Nov 2025 10:59:21 +0000
asID: 136907
IP address blocks: 154.93.100.0/23 maxlen: 24
154.93.104.0/23 maxlen: 24
154.95.72.0/22 maxlen: 24
154.95.96.0/22 maxlen: 24
154.95.100.0/22 maxlen: 24
154.95.104.0/22 maxlen: 24
154.95.108.0/22 maxlen: 24
154.95.112.0/22 maxlen: 24
154.95.116.0/22 maxlen: 24
154.95.120.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104559 (0x1986f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 27 10:59:21 2025 GMT
Not After : Nov 3 10:59:21 2025 GMT
Subject: CN=68aee50e-254e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:49:af:cf:2f:5f:6e:df:5b:f2:9e:5c:48:e6:
95:d5:c6:09:76:cb:73:6e:7f:6a:64:29:dd:09:f8:
41:0b:75:db:72:f1:35:89:16:6d:d5:45:d7:e6:fe:
01:5a:ed:0e:9b:27:98:4a:41:4f:ca:98:15:95:ad:
ad:f9:79:62:50:54:37:10:65:b8:ca:6a:e9:f3:97:
27:f5:e7:bc:c9:6b:0d:af:ea:73:52:65:99:70:e9:
97:c3:35:25:a6:fb:a8:62:f9:ba:01:c2:3c:3e:62:
08:d1:49:39:82:c7:3e:b8:87:74:26:4b:2c:de:39:
55:7e:3b:8d:76:9c:87:b2:36:f3:ee:eb:58:20:b2:
09:4e:49:3c:10:72:58:f6:04:15:ca:fa:e4:e8:07:
de:8f:fc:17:8a:cd:fb:46:8b:61:08:d7:d9:59:cc:
ee:bf:e5:16:23:c1:93:ab:6c:5c:6f:0e:8f:bb:0b:
cc:e9:37:03:7e:ff:ba:f1:44:af:7f:0c:6a:3c:53:
1d:38:05:00:f0:51:e9:c0:e5:e4:ff:ea:04:11:36:
24:60:33:dd:35:d3:e2:d3:71:46:f7:e0:28:67:cb:
3d:1f:43:7b:2f:4e:48:01:22:c8:1d:34:03:1a:be:
4a:8e:96:cf:5d:28:98:80:84:31:4c:e2:42:91:e0:
c9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:19:35:3B:73:0B:48:FE:F0:EA:94:99:D4:E4:79:44:52:33:92:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E531F3E6833411F089AE2EACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.100.0/23
154.93.104.0/23
154.95.72.0/22
154.95.96.0-154.95.121.255
Signature Algorithm: sha256WithRSAEncryption
78:db:ad:dd:eb:74:0f:85:41:18:09:7a:cd:87:63:2d:d4:f6:
17:6a:d6:07:31:02:7e:c9:1b:a5:ca:c4:08:90:cb:db:57:32:
77:ff:02:1f:8d:d6:e1:ef:26:97:8f:df:12:cd:1d:a7:75:a8:
8e:49:fa:c7:b9:ff:59:04:74:5d:d2:46:53:8e:29:5a:ff:1e:
b7:2f:62:1b:40:f1:5e:d6:39:71:d7:80:ce:e1:60:a1:cc:46:
7a:a7:5b:e7:99:e5:c1:82:7b:76:93:3c:f1:54:2c:c6:11:72:
dd:c4:ab:7e:75:3f:7e:ea:a3:2d:e1:3e:bb:c8:64:53:18:5b:
fb:7f:47:4a:66:36:f0:06:a9:83:fa:a0:a3:7e:9e:7c:97:7d:
82:59:5a:1d:3c:d9:e5:bf:65:f1:a9:3e:42:c7:0e:c4:7d:92:
cc:29:83:0c:d8:ed:fc:95:fc:50:c3:28:f8:1d:40:40:40:55:
e9:60:c6:fa:22:e3:01:bb:e3:f2:06:ad:1b:0d:8e:a3:cb:1f:
03:63:cb:72:d5:8b:9b:91:7c:f9:10:13:48:cf:b2:9c:ec:a1:
3d:60:d5:fa:af:e8:6a:58:8b:c3:12:70:43:d6:d8:0b:90:7c:
bb:11:54:11:af:0a:63:91:a2:83:e8:63:e6:bb:fd:ae:31:25:
09:40:75:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:30:35 2025 by rpki-client