Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFA0BABC9AAC11F092F620B5DAE4EC9C.roa
File: EFA0BABC9AAC11F092F620B5DAE4EC9C.roa (raw, json)
Hash identifier: HHmOXpz3y2r8iQOJU4ugN+6U4mhqsy4k5YB/AiRmNoM=
Subject key identifier: AD:33:F1:6E:8A:89:F1:3E:3D:D0:A0:AF:98:2C:D5:35:CB:27:63:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A111
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFA0BABC9AAC11F092F620B5DAE4EC9C.roa
Signing time: Fri 26 Sep 2025 07:46:40 +0000
ROA not before: Fri 26 Sep 2025 07:46:35 +0000
ROA not after: Mon 05 Oct 2026 07:46:35 +0000
asID: 22846
IP address blocks: 154.197.114.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106769 (0x1a111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 26 07:46:35 2025 GMT
Not After : Oct 5 07:46:35 2026 GMT
Subject: CN=68d644e0-dc7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6e:06:16:39:68:88:f1:24:0c:1b:8d:e4:89:
b6:6d:96:bb:b0:01:f3:5a:82:1d:03:3d:4f:d6:5a:
0f:3a:90:69:0d:ca:b7:6e:39:1e:e5:6e:cd:e5:e3:
0c:10:ab:ce:27:40:7b:79:ce:24:7f:3c:9b:ac:04:
b3:62:59:e3:71:a2:d5:29:e2:ef:47:23:c6:19:5a:
49:35:d1:8c:55:69:25:46:d5:f4:b6:e9:4e:35:a5:
2f:71:66:8c:da:6a:ef:de:65:67:ff:f0:96:b8:5c:
11:36:50:d3:40:f0:46:68:84:49:8a:d4:bb:6c:67:
11:0a:46:4f:43:70:65:f0:d7:86:94:c0:95:64:a1:
e9:21:28:0f:1a:cb:a9:76:9a:1e:80:b1:93:12:1b:
ca:4f:72:d5:57:5c:c1:10:14:25:51:2f:d2:d6:ef:
6e:b0:64:7a:f9:2a:74:cc:21:2e:7b:c9:1a:71:e8:
cd:4f:ae:06:b1:7a:51:98:64:95:40:00:e1:84:ec:
10:15:e3:52:87:dd:30:f8:4e:e7:42:fe:c3:6b:da:
5a:fc:40:7c:92:0a:3b:e1:01:fe:a6:a6:a3:19:42:
5d:09:7d:3f:6b:08:57:8c:4b:15:f8:1a:88:fa:c5:
91:16:d4:e4:ed:f5:5c:ba:f0:6a:cf:c6:51:31:d8:
ae:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:33:F1:6E:8A:89:F1:3E:3D:D0:A0:AF:98:2C:D5:35:CB:27:63:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFA0BABC9AAC11F092F620B5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.114.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:d4:64:05:37:df:f9:67:d5:eb:be:c1:f7:1c:bb:3e:a2:6c:
b4:da:41:03:5a:d7:27:69:4b:53:52:a1:9d:6b:50:40:b4:29:
ef:c4:f6:18:8e:20:b7:51:5b:8d:bd:93:b3:44:13:87:d2:99:
79:04:11:23:85:36:51:89:27:4e:07:f3:14:2e:00:b1:0a:30:
fe:1a:49:f7:e6:fd:1f:1c:ff:24:a6:42:de:60:75:1a:23:32:
55:dd:84:ac:af:35:1b:4e:67:e1:91:73:2f:3b:e8:98:e2:7e:
11:24:8d:1d:b2:09:ea:6a:8e:8d:4e:9a:66:bc:59:4b:f5:56:
45:33:e1:ab:0c:de:c3:2e:9d:b5:09:b6:3c:d9:dc:0d:b1:6d:
2e:ad:74:4d:d4:e0:0a:00:48:1f:91:15:84:ea:2d:34:72:b8:
e6:27:23:dc:22:b9:f2:b2:f8:03:f0:ce:bd:68:c5:1f:f4:b4:
b5:2c:4e:e0:21:0b:5f:4a:6b:7d:9b:4f:52:06:d1:a0:34:43:
c8:07:ff:71:21:cf:47:db:af:18:da:00:d5:0a:44:4e:6f:2c:
34:a5:2c:58:6b:27:74:7e:26:09:89:c9:3b:fa:82:a1:8c:8e:
7a:f7:06:66:b2:6f:61:e8:c7:6f:3e:28:c4:83:ae:9b:31:8f:
a8:d9:06:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:06 2025 by rpki-client