Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7035F0893E611F0B54FF1CFDAE4EC9C.roa
File: E7035F0893E611F0B54FF1CFDAE4EC9C.roa (raw, json)
Hash identifier: GZ+LXjymrKGjU3Dy/pUsDRUnD+pDWUG7oKd3cyzvrdc=
Subject key identifier: 7F:20:B3:91:D6:1E:D4:D3:1A:F0:6D:9D:E1:64:C6:D4:79:BF:B9:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019FEA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7035F0893E611F0B54FF1CFDAE4EC9C.roa
Signing time: Wed 17 Sep 2025 16:53:58 +0000
ROA not before: Wed 17 Sep 2025 16:53:53 +0000
ROA not after: Tue 17 Mar 2026 16:53:53 +0000
asID: 328608
IP address blocks: 154.88.36.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106474 (0x19fea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 17 16:53:53 2025 GMT
Not After : Mar 17 16:53:53 2026 GMT
Subject: CN=68cae7a6-0cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:9f:c7:64:b4:f8:d0:c4:69:5d:cf:53:57:8e:
20:46:90:e1:3a:a9:86:eb:bc:82:45:1b:ac:70:8f:
b1:34:51:0a:c1:e2:60:80:e5:1f:3e:df:e2:47:9e:
36:ad:4b:2e:5c:72:61:70:e3:57:e7:8a:38:6b:11:
ed:9e:ef:85:6e:da:e1:52:e2:7b:e4:87:1f:bf:6f:
de:70:de:69:13:cd:cb:16:7c:f6:74:78:f0:61:ef:
ca:34:0f:cd:31:b8:8b:64:b5:47:3f:c9:35:f5:58:
6b:82:a0:73:ec:e4:ff:5d:cc:04:ab:25:9c:6b:b5:
61:fa:b0:3a:d3:07:58:29:68:0d:0d:48:96:96:58:
2d:d4:51:dd:d4:e6:ac:0c:af:fa:f0:4e:17:a9:71:
40:43:e1:fb:93:82:af:c1:5c:4d:e7:2b:c8:39:a5:
9d:2e:e4:9d:3b:81:be:df:af:e8:f5:42:a0:b7:c3:
3a:41:e3:44:6f:66:fd:6e:89:24:cd:ed:52:6b:d8:
22:81:54:1d:4f:c0:ce:72:7d:f1:b1:90:25:c3:c9:
1f:e5:23:77:a9:4e:d5:99:4e:af:96:e6:7c:f0:29:
74:1a:ea:af:ef:4f:f9:41:a5:57:09:12:e5:10:18:
10:08:ad:b6:ec:a3:e3:ff:a0:08:a0:64:7d:f7:30:
4f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:20:B3:91:D6:1E:D4:D3:1A:F0:6D:9D:E1:64:C6:D4:79:BF:B9:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E7035F0893E611F0B54FF1CFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.36.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:ef:91:72:9b:50:41:57:61:82:ca:68:b3:a4:4f:cd:fb:27:
61:97:ec:a7:cc:d3:82:6b:f8:9c:15:f8:57:38:7b:0a:83:9f:
89:8c:0e:e2:25:a4:bd:b5:bd:b5:fc:2d:3b:13:4c:eb:52:33:
09:8e:d1:1d:2c:84:2e:37:4e:1b:4f:45:78:06:d7:f3:bc:df:
e6:30:7b:19:d3:67:61:cd:7e:d0:dc:c7:9f:90:78:b0:43:1b:
ed:d2:88:a4:05:69:44:bb:83:7b:a0:4d:4b:0f:27:ff:9d:3e:
3d:89:6c:3f:dd:f4:cf:1a:b2:b3:bc:8e:24:92:9d:cf:ce:6d:
62:e6:00:5c:22:cb:66:e8:53:35:6c:d2:77:20:35:ec:c5:f9:
c3:a6:3b:85:86:88:18:22:ab:e7:a1:f5:dc:5d:de:63:71:9e:
d2:34:e2:a2:da:c0:8d:7a:0e:08:16:ab:9e:32:f5:2b:67:30:
20:af:f8:11:fd:1f:69:be:7a:a4:16:05:f6:91:b2:84:0d:ab:
5d:57:82:87:17:3d:27:11:e5:1b:67:bb:da:db:72:dd:e3:9d:
aa:a9:b9:5c:b4:51:bd:12:78:50:4f:96:03:bd:d2:29:07:ca:
7e:d1:f7:ea:48:11:a7:6a:da:cf:e6:01:5c:3a:97:b0:ec:40:
b3:ae:32:89
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAZ/qMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwOTE3MTY1MzUzWhcNMjYwMzE3MTY1MzUzWjAYMRYw
FAYDVQQDEw02OGNhZTdhNi0wY2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA75/HZLT40MRpXc9TV44gRpDhOqmG67yCRRuscI+xNFEKweJggOUfPt/i
R542rUsuXHJhcONX54o4axHtnu+FbtrhUuJ75Icfv2/ecN5pE83LFnz2dHjwYe/K
NA/NMbiLZLVHP8k19VhrgqBz7OT/XcwEqyWca7Vh+rA60wdYKWgNDUiWllgt1FHd
1OasDK/68E4XqXFAQ+H7k4KvwVxN5yvIOaWdLuSdO4G+36/o9UKgt8M6QeNEb2b9
bokkze1Sa9gigVQdT8DOcn3xsZAlw8kf5SN3qU7VmU6vluZ88Cl0Guqv70/5QaVX
CRLlEBgQCK227KPj/6AIoGR99zBPNQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFH8g
s5HWHtTTGvBtneFkxtR5v7lqMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNzAzNUYwODkzRTYxMUYwQjU0RkYxQ0ZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmlgkMA0GCSqGSIb3DQEB
CwUAA4IBAQCq75Fym1BBV2GCymizpE/N+ydhl+ynzNOCa/icFfhXOHsKg5+JjA7i
JaS9tb21/C07E0zrUjMJjtEdLIQuN04bT0V4BtfzvN/mMHsZ02dhzX7Q3MefkHiw
Qxvt0oikBWlEu4N7oE1LDyf/nT49iWw/3fTPGrKzvI4kkp3Pzm1i5gBcIstm6FM1
bNJ3IDXsxfnDpjuFhogYIqvnofXcXd5jcZ7SNOKi2sCNeg4IFqueMvUrZzAgr/gR
/R9pvnqkFgX2kbKEDatdV4KHFz0nEeUbZ7va23Ld452qqblctFG9EnhQT5YDvdIp
B8p+0ffqSBGnatrP5gFcOpew7ECzrjKJ
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:48 2025 by rpki-client