Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/252C0196B88A11F0A706D9C1DAE4EC9C.roa
File: 252C0196B88A11F0A706D9C1DAE4EC9C.roa (raw, json)
Hash identifier: xgci3+q2tKwRKfVN9XoXqIUfVsIbX9ZgafnsSdb3oKs=
Subject key identifier: 14:4D:6F:0B:A3:07:3A:EE:E3:60:10:AB:49:8F:3E:49:C0:DA:C6:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A6F6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/252C0196B88A11F0A706D9C1DAE4EC9C.roa
Signing time: Mon 03 Nov 2025 07:53:12 +0000
ROA not before: Mon 03 Nov 2025 07:53:07 +0000
ROA not after: Thu 05 Feb 2026 07:53:07 +0000
asID: 9294
IP address blocks: 154.88.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108278 (0x1a6f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 3 07:53:07 2025 GMT
Not After : Feb 5 07:53:07 2026 GMT
Subject: CN=69085f68-a4f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9c:d0:c7:8d:78:02:35:e6:04:12:9b:14:02:
2a:32:e4:9b:97:fc:cf:68:8a:2f:9b:a8:d8:8b:06:
60:27:3c:8e:b8:ca:c8:86:13:d9:b6:f4:cb:45:ee:
30:9e:cc:0c:1a:36:4a:18:1e:79:b2:5a:a5:60:51:
cf:c8:8a:8c:0e:f3:14:9c:15:c9:85:b9:47:6a:3b:
59:6f:89:5f:80:86:20:2d:ea:5d:f4:67:e3:41:db:
83:81:f6:74:a7:62:1d:73:a0:bf:8d:ca:e9:83:50:
68:92:72:d3:43:89:24:e9:40:d5:00:04:89:51:b0:
e9:96:d4:e9:11:db:db:8e:b2:9e:d7:e2:38:29:ba:
04:bc:a5:65:9a:d4:5b:fe:fd:63:7f:33:6e:fe:49:
47:23:8c:c0:b6:73:65:bc:ed:c3:a3:47:d4:b5:07:
d6:87:fd:66:f2:3d:ab:bc:de:91:dc:4d:59:b3:cd:
65:67:4d:78:39:ff:aa:b5:44:98:d7:20:ce:2d:88:
9e:f1:f1:c8:03:78:c0:8b:62:c7:cb:96:1d:62:f2:
48:5b:42:73:05:82:d8:18:83:c2:d1:52:a2:ef:f8:
76:78:e0:9e:80:ac:72:a6:b6:cc:e9:cd:e9:e4:aa:
53:c3:6c:80:3c:35:a9:c2:78:4b:8b:bd:69:77:74:
8e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:4D:6F:0B:A3:07:3A:EE:E3:60:10:AB:49:8F:3E:49:C0:DA:C6:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/252C0196B88A11F0A706D9C1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.96.0/19
Signature Algorithm: sha256WithRSAEncryption
a0:6a:5c:77:8a:78:3a:57:8b:18:73:92:74:6e:f8:1d:eb:34:
c8:ed:42:99:41:ad:c6:9c:44:41:8e:74:28:15:ac:1b:72:5a:
27:18:d3:8f:a0:89:c3:62:31:38:f6:da:66:ac:82:3e:f4:04:
a1:94:5c:54:34:9e:e7:b1:68:5b:a0:bc:a3:b3:77:5a:5d:6b:
21:2f:e6:44:22:2a:0f:e3:c4:76:a6:66:78:1f:0e:86:ac:94:
cf:e9:de:d1:30:56:78:ad:85:71:87:1b:4a:fc:7f:ba:62:ca:
30:b3:ff:06:f2:fa:0f:5e:64:dc:d2:aa:a8:6d:e9:36:e6:2b:
48:18:75:e4:7b:15:4a:71:30:a0:fe:76:b2:25:27:47:d7:e6:
19:5b:47:5c:63:c7:59:32:47:b8:05:00:c9:19:55:b7:c4:eb:
58:52:ef:69:5f:7f:2e:09:c3:5e:44:1c:a3:ed:59:70:e3:3a:
db:48:32:54:a9:01:f6:1f:2f:20:60:39:e3:db:79:90:3c:b7:
fa:20:bd:87:0b:e0:bf:75:0e:e5:c0:ca:35:e1:ca:ec:17:96:
65:5a:f0:3d:ea:0a:65:2d:55:20:53:e2:98:5f:c5:3e:96:b7:
16:b1:fd:09:89:bb:7b:36:ab:e5:4e:ab:6a:7d:ed:23:58:bc:
39:30:58:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:41:38 2025 by rpki-client