Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFC11DEE832B11F091E9C8F2DAE4EC9C.roa
File: FFC11DEE832B11F091E9C8F2DAE4EC9C.roa (raw, json)
Hash identifier: 0yPID2t96A3JUUXOxxb4+ZY+rw3FaHIjcRcjbErTAnQ=
Subject key identifier: 80:ED:0B:65:50:27:E3:40:E8:D3:E0:BB:AD:E9:67:F2:B9:51:E3:50
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019863
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFC11DEE832B11F091E9C8F2DAE4EC9C.roa
Signing time: Wed 27 Aug 2025 09:55:45 +0000
ROA not before: Wed 27 Aug 2025 09:55:40 +0000
ROA not after: Wed 01 Oct 2025 09:55:40 +0000
asID: 395793
IP address blocks: 154.82.162.0/23 maxlen: 24
154.82.164.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 09:25:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104547 (0x19863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 27 09:55:40 2025 GMT
Not After : Oct 1 09:55:40 2025 GMT
Subject: CN=68aed621-ed8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e4:60:e3:1b:f0:d3:51:74:33:14:fe:ed:15:
13:e6:83:48:4f:7c:32:26:d2:33:6e:63:68:af:b9:
0e:42:88:9a:9d:16:8b:0a:0c:19:6c:af:6a:fd:76:
54:d1:e1:33:72:67:7e:60:a0:cb:60:ce:e5:ad:17:
23:bb:ef:a1:75:79:ce:56:ba:4b:75:1c:3a:4f:8a:
5e:f2:a0:ed:74:b5:8d:25:7c:1d:d8:9f:78:18:c1:
28:64:f6:5b:e0:ae:ac:a1:99:41:8c:1e:dd:13:99:
d6:74:1a:65:4e:91:11:75:5e:4f:e4:af:c4:43:5c:
5b:15:dd:cf:e5:a4:1d:e5:09:be:0e:bd:dd:b5:8d:
47:12:d2:19:61:95:cd:ba:3b:5d:fb:24:de:db:28:
7c:5f:17:f9:7b:14:5c:35:78:da:02:f5:a2:a1:b1:
cb:67:f5:74:47:0b:7d:6b:ba:52:44:13:3b:db:32:
5a:b1:8f:95:59:3a:0b:b6:3d:85:5d:4f:7a:dd:4a:
05:ca:3a:3e:79:41:60:9f:bc:fc:2e:29:a5:85:42:
c3:f9:df:b4:dd:fb:6d:0d:b5:02:8a:34:8e:62:04:
85:98:f3:a3:96:b8:fb:7d:83:94:43:fb:3f:18:4a:
9e:1e:6e:93:94:b5:2a:22:73:25:a2:e6:93:8c:d8:
e5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:ED:0B:65:50:27:E3:40:E8:D3:E0:BB:AD:E9:67:F2:B9:51:E3:50
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FFC11DEE832B11F091E9C8F2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.162.0-154.82.167.255
Signature Algorithm: sha256WithRSAEncryption
64:67:e6:58:2d:01:e4:c0:a9:a0:a0:02:fe:1f:e8:6d:d9:ee:
a2:74:61:39:f8:cf:13:6b:b0:86:9d:4a:e1:11:9d:6b:1e:c2:
49:fa:ed:e9:2d:b1:96:9f:d0:cf:71:37:17:35:3c:03:ff:2e:
94:14:47:17:e5:a3:73:32:f6:ec:3f:08:46:b8:af:6f:dd:a6:
5e:7a:2d:d9:7e:ed:b6:bf:3a:7f:e3:9b:cd:42:4e:c5:59:21:
43:d3:be:9a:86:b5:49:18:c8:3d:bf:57:87:55:43:e6:dc:f5:
44:48:d6:7d:47:45:6c:06:00:2f:58:e6:4d:1f:fd:52:a4:c7:
f4:c6:ad:45:e0:3d:c4:64:41:a9:be:6e:16:82:59:95:91:d0:
cf:fd:30:d3:37:6c:ee:1b:aa:ca:73:3f:11:2e:1f:81:6f:81:
8d:c8:fb:13:a5:0b:b7:25:68:13:83:df:f4:f7:c8:67:0d:d0:
88:ce:e3:28:82:1f:de:6b:07:ff:de:a1:9f:eb:fe:1c:1e:c0:
b7:e6:5a:6c:7e:3e:d5:1a:c5:29:36:32:13:61:8d:d8:39:19:
e6:15:29:be:98:b7:32:78:f9:44:0e:70:4f:92:74:85:45:c0:
ec:5a:8a:90:ce:4b:28:8b:d7:38:87:92:98:14:41:69:df:e4:
6f:eb:bd:ad
-----BEGIN CERTIFICATE-----
MIIFjDCCBHSgAwIBAgIDAZhjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODI3MDk1NTQwWhcNMjUxMDAxMDk1NTQwWjAYMRYw
FAYDVQQDEw02OGFlZDYyMS1lZDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5ORg4xvw01F0MxT+7RUT5oNIT3wyJtIzbmNor7kOQoianRaLCgwZbK9q
/XZU0eEzcmd+YKDLYM7lrRcju++hdXnOVrpLdRw6T4pe8qDtdLWNJXwd2J94GMEo
ZPZb4K6soZlBjB7dE5nWdBplTpERdV5P5K/EQ1xbFd3P5aQd5Qm+Dr3dtY1HEtIZ
YZXNujtd+yTe2yh8Xxf5exRcNXjaAvWiobHLZ/V0Rwt9a7pSRBM72zJasY+VWToL
tj2FXU963UoFyjo+eUFgn7z8LimlhULD+d+03fttDbUCijSOYgSFmPOjlrj7fYOU
Q/s/GEqeHm6TlLUqInMlouaTjNjlFQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFIDt
C2VQJ+NA6NPgu63pZ/K5UeNQMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GRkMxMURFRTgzMkIxMUYwOTFFOUM4RjJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAGaUqIDBAOaUqAwDQYJ
KoZIhvcNAQELBQADggEBAGRn5lgtAeTAqaCgAv4f6G3Z7qJ0YTn4zxNrsIadSuER
nWsewkn67ektsZaf0M9xNxc1PAP/LpQURxflo3My9uw/CEa4r2/dpl56Ldl+7ba/
On/jm81CTsVZIUPTvpqGtUkYyD2/V4dVQ+bc9URI1n1HRWwGAC9Y5k0f/VKkx/TG
rUXgPcRkQam+bhaCWZWR0M/9MNM3bO4bqspzPxEuH4FvgY3I+xOlC7claBOD3/T3
yGcN0IjO4yiCH95rB//eoZ/r/hwewLfmWmx+PtUaxSk2MhNhjdg5GeYVKb6YtzJ4
+UQOcE+SdIVFwOxaipDOSyiL1ziHkpgUQWnf5G/rva0=
-----END CERTIFICATE-----
Generated at Wed Sep 3 18:37:41 2025 by rpki-client