Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F7F816F8842011F0A7AEBCB5DAE4EC9C.roa
File: F7F816F8842011F0A7AEBCB5DAE4EC9C.roa (raw, json)
Hash identifier: S9bhvZDJ6xR+5/v4Jgg66c7GUZG5M5+ysLKS1nsPsEE=
Subject key identifier: 40:78:75:D9:E9:0E:79:41:29:E7:C6:C5:57:3D:45:C3:04:F7:64:3E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0199EE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F7F816F8842011F0A7AEBCB5DAE4EC9C.roa
Signing time: Thu 28 Aug 2025 15:09:19 +0000
ROA not before: Thu 28 Aug 2025 15:09:14 +0000
ROA not after: Wed 01 Oct 2025 15:09:14 +0000
asID: 214238
IP address blocks: 154.81.193.0/24 maxlen: 24
154.81.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104942 (0x199ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 28 15:09:14 2025 GMT
Not After : Oct 1 15:09:14 2025 GMT
Subject: CN=68b0711e-d5c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b0:f8:34:02:6b:a3:dd:e3:9c:8a:22:49:7f:
e2:81:e3:64:5b:40:a2:a9:3c:87:bb:34:b8:37:56:
ca:5a:46:8f:96:01:8c:66:cf:aa:c0:b2:93:42:bb:
3e:77:93:5a:c1:26:23:2c:5e:6f:81:6e:b7:b9:0c:
e5:03:c2:f2:8d:cf:7c:b7:99:7a:7a:1a:28:05:ff:
40:33:a2:61:73:9d:68:49:9f:8e:d0:41:b6:14:f7:
f2:60:7c:6f:1b:40:cb:79:30:62:bf:8e:d8:63:64:
e5:c6:c1:b7:d4:85:73:50:6a:0f:28:2d:ba:14:5c:
46:da:a3:84:63:0b:21:00:a0:bb:64:e2:c1:5f:81:
43:84:c7:7e:4e:30:42:c1:86:0e:c2:21:fc:57:4b:
64:18:63:35:4e:31:39:5a:33:c5:c7:64:49:d7:d9:
d4:ff:5a:4b:95:06:fb:2b:a8:d2:27:77:ed:bd:fc:
74:f2:bb:e7:ce:c3:03:84:a4:92:97:d2:d1:37:ea:
34:66:66:03:83:fe:55:8a:30:e9:5f:e2:ef:9d:3a:
96:e2:10:41:e1:29:78:23:b3:7c:41:56:d3:63:4c:
e6:73:76:8c:85:a5:8f:c0:dc:a4:92:01:56:36:e2:
77:71:4b:3d:45:79:21:12:99:d1:6a:05:e9:41:ba:
eb:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:78:75:D9:E9:0E:79:41:29:E7:C6:C5:57:3D:45:C3:04:F7:64:3E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F7F816F8842011F0A7AEBCB5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.193.0-154.81.194.255
Signature Algorithm: sha256WithRSAEncryption
88:22:3b:b8:dc:29:4a:e8:8e:ba:3a:64:6c:51:18:70:1d:9a:
7f:bb:8a:a0:ba:2a:59:fe:e0:59:c0:69:f0:76:d0:a1:7c:9a:
d7:18:45:5e:39:8a:1c:15:ae:c9:ff:99:01:50:00:93:c9:73:
2a:15:c0:f1:a9:00:3c:57:b2:ec:01:fa:9c:96:bb:70:03:b5:
21:e1:7a:c2:86:0a:78:f6:d3:7a:1e:3a:96:32:a3:63:22:01:
20:de:47:75:42:65:ec:0c:55:8a:3d:2c:45:d9:de:fb:35:5a:
ec:ed:ce:22:07:d9:d9:92:8f:b7:ba:ba:2a:17:2f:56:38:26:
9d:ae:6e:eb:37:2f:ef:b9:4a:83:49:e9:c1:6d:ea:b2:87:a6:
27:37:18:bf:62:bf:f0:b9:de:c4:94:d6:1d:51:52:af:7b:75:
bb:b7:0e:2a:c0:07:9c:38:6a:17:a5:29:83:94:54:08:4b:88:
c8:64:06:97:ab:96:7f:65:ab:18:21:17:56:eb:6e:1d:95:85:
50:ab:2e:d9:b7:02:d5:14:9a:05:3e:05:f0:0f:de:f0:ba:04:
3e:13:10:f6:91:01:b7:1e:a9:a5:38:a6:37:f8:d8:fa:c4:7a:
5e:46:ab:58:16:f8:3d:01:6f:9d:07:3f:53:31:76:35:8c:cf:
a7:54:8b:f7
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAZnuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODI4MTUwOTE0WhcNMjUxMDAxMTUwOTE0WjAYMRYw
FAYDVQQDEw02OGIwNzExZS1kNWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArLD4NAJro93jnIoiSX/igeNkW0CiqTyHuzS4N1bKWkaPlgGMZs+qwLKT
Qrs+d5NawSYjLF5vgW63uQzlA8Lyjc98t5l6ehooBf9AM6Jhc51oSZ+O0EG2FPfy
YHxvG0DLeTBiv47YY2TlxsG31IVzUGoPKC26FFxG2qOEYwshAKC7ZOLBX4FDhMd+
TjBCwYYOwiH8V0tkGGM1TjE5WjPFx2RJ19nU/1pLlQb7K6jSJ3ftvfx08rvnzsMD
hKSSl9LRN+o0ZmYDg/5VijDpX+LvnTqW4hBB4Sl4I7N8QVbTY0zmc3aMhaWPwNyk
kgFWNuJ3cUs9RXkhEpnRagXpQbrreQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFEB4
ddnpDnlBKefGxVc9RcME92Q+MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GN0Y4MTZGODg0MjAxMUYwQTdBRUJDQjVEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACaUcEDBACaUcIwDQYJ
KoZIhvcNAQELBQADggEBAIgiO7jcKUrojro6ZGxRGHAdmn+7iqC6Kln+4FnAafB2
0KF8mtcYRV45ihwVrsn/mQFQAJPJcyoVwPGpADxXsuwB+pyWu3ADtSHhesKGCnj2
03oeOpYyo2MiASDeR3VCZewMVYo9LEXZ3vs1WuztziIH2dmSj7e6uioXL1Y4Jp2u
bus3L++5SoNJ6cFt6rKHpic3GL9iv/C53sSU1h1RUq97dbu3DirAB5w4ahelKYOU
VAhLiMhkBperln9lqxghF1brbh2VhVCrLtm3AtUUmgU+BfAP3vC6BD4TEPaRAbce
qaU4pjf42PrEel5Gq1gW+D0Bb50HP1MxdjWMz6dUi/c=
-----END CERTIFICATE-----
Generated at Wed Sep 3 18:29:59 2025 by rpki-client