Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB0808A0832F11F0B602148DDAE4EC9C.roa
File: EB0808A0832F11F0B602148DDAE4EC9C.roa (raw, json)
Hash identifier: cHyQb/iihGA7h3aKNtpw03P2lbGjJNyE3g5Ulq2nksA=
Subject key identifier: CB:8B:BE:A5:7C:87:C0:6F:30:D7:C9:5D:C3:EE:CD:A2:07:20:0C:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019869
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB0808A0832F11F0B602148DDAE4EC9C.roa
Signing time: Wed 27 Aug 2025 10:23:48 +0000
ROA not before: Wed 27 Aug 2025 10:23:42 +0000
ROA not after: Thu 02 Oct 2025 10:23:42 +0000
asID: 214413
IP address blocks: 154.193.136.0/21 maxlen: 24
154.193.144.0/22 maxlen: 24
154.193.148.0/22 maxlen: 24
154.193.168.0/22 maxlen: 24
154.193.172.0/22 maxlen: 24
154.193.176.0/22 maxlen: 24
154.193.180.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104553 (0x19869)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 27 10:23:42 2025 GMT
Not After : Oct 2 10:23:42 2025 GMT
Subject: CN=68aedcb4-bdb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1a:de:93:31:a1:01:b8:05:ce:f6:3e:18:6e:
88:83:e3:fe:fd:45:6d:0a:68:04:1f:d6:47:f8:95:
53:73:ce:3f:6f:b1:8e:6a:c5:c3:75:e2:36:18:2a:
27:e5:6f:49:09:a6:cf:54:51:e0:91:54:40:d2:d2:
bf:46:c4:59:77:fb:e6:ae:77:04:98:43:45:a5:1f:
99:cd:d7:77:86:1a:2a:c6:c4:15:93:74:f3:dd:9e:
2d:f1:6e:7f:97:f0:d1:e6:45:60:e4:f7:54:a3:bd:
8d:3e:eb:20:43:f8:fd:66:07:02:e4:ac:2a:4a:96:
15:d6:0a:25:8c:49:1d:db:d8:2e:50:c2:9e:37:c4:
47:40:d9:11:31:93:db:94:34:27:8b:da:45:22:47:
d0:94:98:9c:77:a0:74:92:25:70:86:e5:7f:e2:a2:
fb:1c:a6:fa:b2:14:6b:87:1c:4c:9c:99:ee:60:b4:
9a:1b:af:6b:b7:ec:4e:20:0a:ed:f1:9c:92:57:e6:
04:9d:64:87:26:17:f4:61:74:6f:31:68:ed:8b:24:
b3:56:5d:3d:77:87:81:44:c1:bd:da:35:da:63:d7:
33:f8:03:5b:65:ee:67:56:56:a7:4d:38:31:ca:80:
d7:57:c3:f6:49:3a:bf:33:86:58:7d:6c:e5:28:41:
d5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8B:BE:A5:7C:87:C0:6F:30:D7:C9:5D:C3:EE:CD:A2:07:20:0C:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EB0808A0832F11F0B602148DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.136.0-154.193.151.255
154.193.168.0-154.193.183.255
Signature Algorithm: sha256WithRSAEncryption
bd:10:63:ad:97:ca:f1:cb:60:46:61:e9:b3:30:fa:1b:06:0f:
04:94:2c:60:81:9a:6e:d1:f9:d8:8e:eb:b5:d1:53:50:6e:61:
e5:85:fc:1e:c0:19:07:6a:f6:27:87:3d:66:a4:1f:30:56:c8:
c1:8a:42:ad:8e:d8:e6:55:5e:78:7e:ab:fd:f3:d3:bc:f2:49:
1a:98:d0:74:25:5c:5c:e2:dd:2e:88:5b:a5:ea:24:41:64:fe:
bb:04:b2:61:ba:3b:b3:0c:d5:88:6b:58:74:44:7b:9c:74:f8:
fa:62:56:86:30:a5:a4:84:a4:02:25:fe:1c:3f:fb:e8:8d:fc:
bc:52:5d:7e:c4:1b:c4:e3:32:e2:c2:9a:ff:05:5b:ce:e5:a6:
54:3f:58:a4:af:46:03:b9:bb:5e:5e:73:c9:d3:a0:a8:43:72:
52:ad:e4:84:6f:a0:4a:fe:bc:e8:82:8d:f1:1f:33:3f:8d:87:
f7:c4:08:fc:73:45:1b:00:0f:07:df:4f:c7:cb:0b:5d:d8:59:
ac:53:0f:19:3a:9d:0a:c2:07:27:05:a7:f0:d2:62:56:e3:cd:
18:e8:69:36:0c:bb:88:64:9b:41:b3:ac:95:32:cc:61:4e:b0:
f7:03:95:f1:33:05:e0:f3:b4:dc:e0:a5:6f:18:d3:26:23:a0:
e6:43:2e:8e
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Sep 3 20:48:25 2025 by rpki-client