Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F7341DD8889011F0A174D1A5DAE4EC9C.roa
File: F7341DD8889011F0A174D1A5DAE4EC9C.roa (raw, json)
Hash identifier: nEO3tXRrC5bS8CyC+8VlE4625rFO+a+rzqFW4AXG9ik=
Subject key identifier: FF:15:AD:56:0F:0D:07:7A:6A:2D:97:1A:F3:F4:6A:8B:DB:B3:D0:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019C88
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F7341DD8889011F0A174D1A5DAE4EC9C.roa
Signing time: Wed 03 Sep 2025 06:41:06 +0000
ROA not before: Wed 03 Sep 2025 06:41:01 +0000
ROA not after: Mon 29 Sep 2025 06:41:01 +0000
asID: 59187
IP address blocks: 154.221.32.0/22 maxlen: 24
154.221.32.0/23 maxlen: 24
154.221.32.0/24 maxlen: 24
154.221.33.0/24 maxlen: 24
154.221.34.0/23 maxlen: 24
154.221.34.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105608 (0x19c88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 3 06:41:01 2025 GMT
Not After : Sep 29 06:41:01 2025 GMT
Subject: CN=68b7e301-7a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:51:7f:06:3e:78:9f:15:07:cb:07:35:48:19:
66:be:7d:9d:55:88:fe:41:41:67:45:51:ee:16:f1:
3c:c8:02:62:01:28:95:5e:c4:bf:2a:08:71:4f:d2:
fe:8a:17:9c:7e:63:42:d4:9b:0e:a8:15:a1:5b:9a:
b7:37:73:22:f8:01:29:f5:9f:4b:41:7f:59:80:42:
b6:ac:ef:8e:9f:c3:9c:d1:d0:9f:4e:5e:3b:1c:52:
68:1c:de:09:8b:96:8f:72:3e:e7:df:49:fe:9b:4e:
d1:cf:09:ae:10:59:87:bd:b3:de:e5:db:c0:e6:cd:
58:fd:a2:2d:6b:08:45:f9:1f:1d:97:62:1e:12:99:
d6:d9:b9:dc:d6:cb:ed:a5:17:85:e7:37:1b:20:c4:
48:5b:9b:a6:c8:ba:a4:f0:f7:de:dd:21:62:fe:96:
37:9e:08:6e:18:31:a0:f5:e3:1a:dd:99:79:7b:7a:
65:15:47:16:97:a7:c8:53:51:22:fb:4e:85:8b:04:
28:cb:2d:67:8e:ac:ef:06:59:b8:79:52:01:89:18:
4c:2f:76:8b:41:c5:c0:e2:08:f1:c7:19:c6:b3:dc:
94:b1:1d:6b:71:09:95:a3:d8:d4:ed:47:73:3f:36:
e3:ac:be:b1:22:52:d3:45:53:89:e0:08:17:71:02:
51:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:15:AD:56:0F:0D:07:7A:6A:2D:97:1A:F3:F4:6A:8B:DB:B3:D0:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F7341DD8889011F0A174D1A5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.32.0/22
Signature Algorithm: sha256WithRSAEncryption
35:91:4a:1c:82:8d:85:78:9d:e7:18:84:54:a7:c2:cd:1c:aa:
19:8b:c4:d1:cc:aa:26:75:a3:60:23:9c:b4:91:bb:e0:96:ec:
4e:26:94:2f:66:cb:27:e9:46:12:eb:1b:fe:a1:bf:3d:18:a6:
2e:38:f4:4d:4f:36:d3:98:e8:3c:b0:8b:77:2f:ea:9f:4e:a3:
16:57:53:cb:c6:c8:33:67:7c:25:13:dd:4c:57:97:4e:34:28:
3c:42:35:9c:88:b8:9d:ed:ff:8c:e6:cb:78:f0:b7:6f:ec:9e:
44:e0:a3:78:b5:99:2a:57:08:f3:34:35:d3:fe:9d:69:8a:39:
b9:7f:4e:53:78:dd:34:ea:89:17:06:76:91:c4:d3:b8:d2:21:
31:8c:4c:03:17:c1:42:c4:6c:f3:7d:5e:52:ea:8a:52:24:c7:
ba:b8:d2:51:2b:c3:79:33:55:00:51:84:17:dd:4a:41:37:c4:
ad:9d:6d:42:75:57:ad:98:18:29:dd:8d:89:aa:1d:ea:47:c9:
a8:3f:bb:8e:29:0b:77:af:e9:19:40:6f:10:d1:d9:67:2f:44:
03:46:82:a0:ad:7e:4e:fa:5a:84:86:f0:fe:71:06:fa:ba:58:
13:da:33:0a:a8:8b:cd:32:3e:f0:07:01:10:09:2e:5a:95:d4:
3a:dd:45:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:32:15 2025 by rpki-client