Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B72B7B4B38E11F0808AC6D9DAE4EC9C.roa
File: 0B72B7B4B38E11F0808AC6D9DAE4EC9C.roa (raw, json)
Hash identifier: 8t+DE2v94NFNRAJLXV8KWQ2P6SzZnn9JtjwkhYFsNtU=
Subject key identifier: F7:DF:7E:7C:32:FC:22:BA:74:18:BD:60:48:56:42:28:D1:63:86:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A5B8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B72B7B4B38E11F0808AC6D9DAE4EC9C.roa
Signing time: Mon 27 Oct 2025 23:38:31 +0000
ROA not before: Mon 27 Oct 2025 23:38:25 +0000
ROA not after: Sat 03 Jan 2026 23:38:25 +0000
asID: 138915
IP address blocks: 154.93.84.0/23 maxlen: 24
154.93.93.0/24 maxlen: 24
154.93.100.0/23 maxlen: 24
154.93.104.0/23 maxlen: 24
154.93.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107960 (0x1a5b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 27 23:38:25 2025 GMT
Not After : Jan 3 23:38:25 2026 GMT
Subject: CN=69000277-63dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d4:fa:25:09:41:4e:15:b2:da:1e:a4:8e:17:
e1:18:39:fa:8f:3a:31:4c:11:0c:f2:86:13:1a:be:
f6:f4:14:fe:fc:89:f8:ce:c5:7c:2d:42:9f:55:23:
c5:f7:f3:d3:c4:4c:8f:99:a8:56:e6:4a:0e:1c:4e:
6b:c8:5d:b7:29:9f:21:36:04:ad:76:c5:74:ca:7e:
e1:5f:ff:ed:9f:bc:95:db:3a:66:25:9a:3b:a5:9b:
4c:ab:d6:dd:00:87:06:87:81:7d:df:2f:63:86:f9:
10:67:5f:21:e6:85:51:4a:2f:ba:7d:f9:b7:ec:68:
51:8c:06:7a:47:0e:ff:a7:1b:6e:ce:46:93:d0:7b:
db:b4:0b:e7:1e:c5:1a:c2:ba:9f:c7:5d:81:9e:9f:
e7:d3:09:a8:38:5d:44:08:2d:0b:60:40:37:dd:81:
87:b9:d6:80:d2:b6:d6:cf:73:cb:cc:b3:b8:26:25:
5e:21:62:9a:72:dc:f4:55:bc:6c:b7:d6:0a:55:1b:
a6:23:d2:4f:5c:6e:3c:55:ea:86:8a:dc:8f:59:a9:
96:7f:3c:d2:55:83:4b:98:a7:c3:6f:65:76:03:5c:
29:5c:f8:c4:e4:55:5a:70:86:97:73:d9:9f:7a:c3:
7c:e4:94:d6:6e:34:1e:4b:fc:8d:93:69:cf:da:b9:
6c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:DF:7E:7C:32:FC:22:BA:74:18:BD:60:48:56:42:28:D1:63:86:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B72B7B4B38E11F0808AC6D9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.84.0/23
154.93.93.0/24
154.93.100.0/23
154.93.104.0/23
154.93.127.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:d8:2a:8f:5d:0a:5c:32:d3:1a:e7:72:4e:30:4b:d9:c2:9c:
20:13:79:62:6f:da:de:a6:c8:0d:d2:99:99:ec:ba:6c:4c:16:
8c:7f:b6:78:e1:9b:c5:0a:b9:f7:f9:d1:b2:b6:05:bf:69:b3:
f3:a6:77:c6:cf:f9:e7:67:c0:2f:be:80:cc:05:1c:35:a0:ed:
b9:6b:1e:25:ea:71:a7:f1:17:8b:a2:04:14:e5:59:e3:78:4b:
64:71:eb:65:d8:19:24:b0:03:1f:21:72:08:e0:c4:8e:56:5f:
9f:bd:93:7c:6f:a8:2f:52:d2:8a:ae:8b:fd:a8:db:ac:4a:ec:
03:82:8c:cb:41:f6:32:3c:d6:56:45:83:4b:b2:70:6a:08:4c:
17:4a:b3:d8:f9:23:04:5c:2d:a4:50:4d:c1:a6:d2:aa:3a:e0:
62:5a:86:a5:d0:4b:e2:24:3d:d4:96:17:42:ce:f4:62:74:a0:
f4:4b:5d:91:42:2a:2c:7c:e1:ec:f0:3b:dd:4d:00:3f:df:92:
ac:48:ab:15:ed:78:0e:e9:5e:fa:d8:d2:87:8b:98:71:b3:55:
ca:d9:be:45:ee:f2:7a:fa:ed:07:07:65:a6:96:14:2d:ad:01:
1d:62:5d:b0:6c:a8:1c:c6:e7:73:26:6c:40:33:3c:05:9e:4c:
bd:54:4d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:49:09 2025 by rpki-client