Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F120CE40A4F211F0ADCEB3CDDAE4EC9C.roa
File: F120CE40A4F211F0ADCEB3CDDAE4EC9C.roa (raw, json)
Hash identifier: b13H7pF2LpzLE7/McfrmC9GaFy4FN3u3wukoBqvv+0Y=
Subject key identifier: 8D:C2:2E:8B:7D:39:2C:C0:FF:19:23:A3:18:6F:78:E9:D1:CA:A0:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A308
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F120CE40A4F211F0ADCEB3CDDAE4EC9C.roa
Signing time: Thu 09 Oct 2025 09:32:59 +0000
ROA not before: Thu 09 Oct 2025 09:32:50 +0000
ROA not after: Sun 16 Nov 2025 09:32:50 +0000
asID: 22773
IP address blocks: 154.198.30.0/24 maxlen: 24
154.198.31.0/24 maxlen: 24
154.198.44.0/24 maxlen: 24
154.198.45.0/24 maxlen: 24
154.198.46.0/24 maxlen: 24
154.198.47.0/24 maxlen: 24
154.202.2.0/24 maxlen: 24
154.202.5.0/24 maxlen: 24
154.202.12.0/24 maxlen: 24
154.202.13.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107272 (0x1a308)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 9 09:32:50 2025 GMT
Not After : Nov 16 09:32:50 2025 GMT
Subject: CN=68e7814b-68a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:30:78:82:fb:dc:56:3a:dc:81:af:f3:b9:19:
04:3f:27:0b:7c:e7:7f:29:dd:90:eb:f8:d4:cd:e5:
33:b6:e7:1a:78:ef:4e:a5:86:1b:ba:6b:02:f4:2f:
f5:21:06:e2:51:ad:f5:3f:db:20:f6:61:41:a8:07:
06:e9:d7:f4:c0:16:03:d4:7e:79:f4:d7:39:b4:68:
58:6c:0c:31:d1:ad:85:aa:a1:8f:b6:21:93:59:4d:
60:9f:b6:87:00:f7:3c:8f:73:69:6c:9d:c5:15:d7:
df:27:7a:83:2c:63:76:64:08:4a:21:6c:7f:ba:f5:
7f:22:16:c1:dd:e7:1a:6e:42:59:1b:02:ca:0d:a8:
7b:76:18:f5:ab:17:92:d4:9b:d8:60:bd:9f:59:41:
95:ba:95:e9:ba:2a:a2:37:4b:e8:52:3e:11:63:b2:
48:db:ef:e7:27:5a:30:2d:b3:af:c6:b2:96:67:70:
81:fa:04:63:90:85:40:69:39:66:bc:94:03:66:38:
53:4e:08:25:83:a4:05:f2:d4:63:d5:80:79:2c:1b:
0c:16:6d:39:91:b4:b7:e8:6e:9f:4b:ff:41:3d:e1:
1b:8e:a7:e8:ae:20:1e:31:8a:17:92:95:f5:33:70:
8b:15:69:63:3a:e2:b8:54:a3:ec:41:2f:5d:6c:80:
55:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:C2:2E:8B:7D:39:2C:C0:FF:19:23:A3:18:6F:78:E9:D1:CA:A0:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F120CE40A4F211F0ADCEB3CDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.30.0/23
154.198.44.0/22
154.202.2.0/24
154.202.5.0/24
154.202.12.0/23
Signature Algorithm: sha256WithRSAEncryption
27:47:56:70:e0:fb:47:fc:e5:75:63:68:d6:ab:1a:6d:72:fd:
24:99:96:95:ff:8e:9f:5c:9f:80:d9:1f:d5:28:f1:fd:22:2b:
79:6f:a2:95:78:4f:d6:c3:2a:6a:fd:fd:a0:27:05:a7:33:fb:
36:c0:01:b6:ea:82:50:5f:47:95:b5:59:53:19:7b:5c:59:ac:
1d:f2:1c:0a:ff:a0:e5:0e:39:71:11:2f:4b:5d:43:18:81:e7:
98:c1:81:1f:79:79:c9:b2:b5:8a:c3:67:5d:47:95:25:8d:3c:
90:13:bc:d4:db:bd:87:86:1d:17:1d:ed:68:0e:d5:11:a2:f6:
92:7b:49:3c:1f:3a:9f:85:1d:b0:bd:53:87:2e:51:10:98:82:
fe:a7:24:9d:65:ad:95:de:75:0a:10:28:ab:3f:68:01:c2:3e:
9f:0d:ec:5c:69:86:55:f1:ea:5d:a2:1e:f6:06:81:91:38:35:
99:a3:9b:70:4b:8f:e9:09:c6:d1:cd:79:f7:53:e5:cf:bf:e6:
a8:2f:e9:94:34:1c:8e:b9:90:a6:3b:3c:de:dc:2e:46:40:a3:
c1:76:5a:85:3c:22:a6:5a:6c:60:4a:2a:9d:7a:af:45:c4:48:
ef:16:ed:03:e2:d7:67:1b:4f:cc:de:49:d7:26:67:1b:f2:da:
e7:9c:63:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:59 2025 by rpki-client