Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E783B56CB36311F08BBEC8D6DAE4EC9C.roa
File: E783B56CB36311F08BBEC8D6DAE4EC9C.roa (raw, json)
Hash identifier: xhtcT29qw7xGWVWs8MCUbhsjnLj+0ovHDSl+TLCALwo=
Subject key identifier: 0B:4F:7A:FD:54:99:E1:68:7B:A0:D6:A6:E1:D8:99:C7:D1:35:B9:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A575
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E783B56CB36311F08BBEC8D6DAE4EC9C.roa
Signing time: Mon 27 Oct 2025 18:36:55 +0000
ROA not before: Mon 27 Oct 2025 18:36:44 +0000
ROA not after: Mon 01 Dec 2025 18:36:44 +0000
asID: 62240
IP address blocks: 154.195.113.0/24 maxlen: 24
154.195.141.0/24 maxlen: 24
154.195.142.0/24 maxlen: 24
154.196.68.0/24 maxlen: 24
154.196.70.0/24 maxlen: 24
154.196.76.0/24 maxlen: 24
154.196.77.0/24 maxlen: 24
154.196.78.0/24 maxlen: 24
154.196.79.0/24 maxlen: 24
154.196.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 Oct 2025 09:04:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107893 (0x1a575)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 27 18:36:44 2025 GMT
Not After : Dec 1 18:36:44 2025 GMT
Subject: CN=68ffbbc7-8f0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:90:9b:4e:c9:4f:b9:14:f8:27:9f:72:a2:43:
07:5a:a4:70:10:eb:f6:92:44:a9:f4:52:e3:56:bd:
e1:05:d5:e3:f2:ba:bb:d2:82:c9:2a:16:13:be:40:
2d:87:87:fa:31:ff:cb:74:fc:d4:06:ff:7f:3a:9a:
65:50:2a:fc:22:72:cf:5c:f0:2b:9f:6b:bc:c1:94:
3e:41:7c:bb:7e:27:f2:fb:2f:8f:24:be:76:22:c5:
54:a9:41:9c:3b:12:da:16:78:15:c4:8d:f1:79:1c:
8a:b0:7e:e4:11:33:7e:2f:52:98:4b:ad:4f:6d:aa:
a7:c7:30:92:77:8c:d1:0b:fb:e0:a5:ee:05:21:f3:
c8:7f:95:e1:3a:aa:ac:59:73:93:75:60:6e:66:11:
f9:4e:6f:da:47:5f:84:12:7a:9e:62:9e:2a:2d:9b:
77:f8:a0:26:cc:88:e8:20:de:e4:2f:b2:3f:ac:fe:
a0:79:98:97:59:1f:db:99:8c:e4:d8:46:55:3f:de:
4f:09:dc:13:20:54:99:c7:64:2b:b3:05:94:37:b6:
4e:c1:64:0a:2f:61:83:19:62:ec:9b:5e:a7:7f:8d:
d0:87:4c:19:cc:7d:2b:cb:45:8f:30:e0:c7:98:e4:
87:d9:7d:d0:fe:b3:21:90:92:96:7f:de:01:76:8a:
fc:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:4F:7A:FD:54:99:E1:68:7B:A0:D6:A6:E1:D8:99:C7:D1:35:B9:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E783B56CB36311F08BBEC8D6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.113.0/24
154.195.141.0-154.195.142.255
154.196.68.0/24
154.196.70.0/24
154.196.76.0-154.196.80.255
Signature Algorithm: sha256WithRSAEncryption
5e:b4:33:d5:37:ca:07:85:0c:6b:11:55:ec:1d:8e:51:ff:6d:
4d:60:0c:17:83:2a:3c:91:c5:d3:08:60:dc:c3:c6:d1:ed:2f:
1a:0c:56:d9:81:8d:02:ac:1f:f5:52:2c:5c:72:34:b2:2e:1f:
b9:38:48:a7:90:67:47:c6:5d:4f:47:0b:cf:24:28:dc:12:a5:
9b:1c:83:79:69:0c:bc:44:76:c3:9b:67:1e:4b:7c:3e:cc:61:
ee:e4:bd:4d:50:50:25:98:65:4f:b7:6a:39:e3:d6:42:2b:80:
e9:a2:7e:d5:9a:92:3a:bb:ce:23:5c:43:d7:42:03:ff:54:15:
cd:ce:de:e0:ba:c7:5c:44:c9:ec:a2:04:39:4e:3b:f4:08:50:
e4:10:61:af:0f:5c:0c:7f:7c:6d:2b:55:c9:81:a7:c0:0a:70:
9e:5d:f0:6d:c7:32:2f:0f:c0:6e:77:99:e2:ec:b3:06:ae:67:
37:60:ba:af:c9:51:98:6a:ae:16:5c:22:6a:ed:e4:6f:ed:61:
c9:8f:85:52:d2:7e:f0:37:df:9a:ad:7f:88:a9:0f:35:fc:70:
e0:f4:de:15:7f:b4:0e:5d:cf:78:07:75:b0:99:27:f2:04:ec:
0b:ea:07:af:64:d8:d3:d7:72:68:ae:8a:f2:a5:c3:e5:1a:84:
6a:aa:26:7f
-----BEGIN CERTIFICATE-----
MIIFrDCCBJSgAwIBAgIDAaV1MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMDI3MTgzNjQ0WhcNMjUxMjAxMTgzNjQ0WjAYMRYw
FAYDVQQDEw02OGZmYmJjNy04ZjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAupCbTslPuRT4J59yokMHWqRwEOv2kkSp9FLjVr3hBdXj8rq70oLJKhYT
vkAth4f6Mf/LdPzUBv9/OpplUCr8InLPXPArn2u8wZQ+QXy7fify+y+PJL52IsVU
qUGcOxLaFngVxI3xeRyKsH7kETN+L1KYS61PbaqnxzCSd4zRC/vgpe4FIfPIf5Xh
OqqsWXOTdWBuZhH5Tm/aR1+EEnqeYp4qLZt3+KAmzIjoIN7kL7I/rP6geZiXWR/b
mYzk2EZVP95PCdwTIFSZx2QrswWUN7ZOwWQKL2GDGWLsm16nf43Qh0wZzH0ry0WP
MODHmOSH2X3Q/rMhkJKWf94Bdor8QQIDAQABo4ICzTCCAskwHQYDVR0OBBYEFAtP
ev1UmeFoe6DWpuHYmcfRNbnpMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FNzgzQjU2Q0IzNjMxMUYwOEJCRUM4RDZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuAwQAmsNxMAwDBACaw40DBACa
w44DBACaxEQDBACaxEYwDAMEAprETAMEAJrEUDANBgkqhkiG9w0BAQsFAAOCAQEA
XrQz1TfKB4UMaxFV7B2OUf9tTWAMF4MqPJHF0whg3MPG0e0vGgxW2YGNAqwf9VIs
XHI0si4fuThIp5BnR8ZdT0cLzyQo3BKlmxyDeWkMvER2w5tnHkt8Psxh7uS9TVBQ
JZhlT7dqOePWQiuA6aJ+1ZqSOrvOI1xD10ID/1QVzc7e4LrHXETJ7KIEOU479AhQ
5BBhrw9cDH98bStVyYGnwApwnl3wbccyLw/AbneZ4uyzBq5nN2C6r8lRmGquFlwi
au3kb+1hyY+FUtJ+8Dffmq1/iKkPNfxw4PTeFX+0Dl3PeAd1sJkn8gTsC+oHr2TY
09dyaK6K8qXD5RqEaqomfw==
-----END CERTIFICATE-----
Generated at Tue Oct 28 17:04:49 2025 by rpki-client