Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/505B2086B41111F0B1D181A0DAE4EC9C.roa
File: 505B2086B41111F0B1D181A0DAE4EC9C.roa (raw, json)
Hash identifier: +kNXIyaJvXSMghtSNxAtZpvxqAYU9+b3t9LnjVmKoJA=
Subject key identifier: E9:7F:5E:81:C8:01:CB:EB:D9:0F:1D:82:E4:1A:FB:26:6D:A3:10:B9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A613
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/505B2086B41111F0B1D181A0DAE4EC9C.roa
Signing time: Tue 28 Oct 2025 15:18:11 +0000
ROA not before: Tue 28 Oct 2025 15:18:06 +0000
ROA not after: Mon 15 Dec 2025 15:18:06 +0000
asID: 138915
IP address blocks: 154.205.128.0/24 maxlen: 24
154.205.129.0/24 maxlen: 24
154.205.130.0/24 maxlen: 24
154.205.131.0/24 maxlen: 24
154.205.132.0/24 maxlen: 24
154.205.133.0/24 maxlen: 24
154.205.134.0/24 maxlen: 24
154.205.135.0/24 maxlen: 24
154.205.136.0/23 maxlen: 24
154.205.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108051 (0x1a613)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 28 15:18:06 2025 GMT
Not After : Dec 15 15:18:06 2025 GMT
Subject: CN=6900deb3-dab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:68:e5:80:19:9c:e1:24:41:b2:cb:08:0e:f7:
a8:21:25:f2:f2:c1:52:23:d1:e4:0e:c3:14:93:fc:
7c:58:2a:2c:09:ff:6e:94:07:2e:f1:d8:7c:f3:0b:
d3:b8:d0:11:81:47:cb:fd:2d:d5:01:29:16:a4:b3:
f2:7a:54:3c:b9:ce:8f:c8:6c:93:48:42:be:de:c7:
e1:09:fa:fe:86:fa:61:49:5b:64:fb:c1:26:c1:82:
99:04:34:cc:86:b3:c3:b2:59:16:96:22:81:89:4d:
f2:4f:92:81:da:8d:2f:7e:88:26:b9:43:98:e9:f6:
6e:f4:e1:94:e2:78:00:c2:91:63:2f:eb:40:ee:87:
23:6e:b6:80:fc:fb:b3:91:6e:e4:d0:74:ae:20:95:
bc:1e:53:55:c5:5a:3e:49:e5:cd:b6:c1:a1:e8:41:
9d:da:38:eb:f0:d1:ed:37:1f:76:39:16:d4:57:47:
78:73:57:f6:7f:43:6e:fa:35:aa:eb:f2:fc:71:0d:
89:10:14:5d:2c:90:54:2f:0e:b5:8e:5c:6c:09:b1:
05:9d:ed:05:3f:96:e1:53:b7:6c:c6:bd:3e:56:59:
3f:c5:5e:3f:9a:6b:92:a2:e2:d6:6c:da:3b:fa:a1:
b1:b0:97:77:6f:c5:62:9a:25:b2:fe:ad:ea:5f:05:
a5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7F:5E:81:C8:01:CB:EB:D9:0F:1D:82:E4:1A:FB:26:6D:A3:10:B9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/505B2086B41111F0B1D181A0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.128.0-154.205.138.255
Signature Algorithm: sha256WithRSAEncryption
76:a7:aa:cf:fb:b9:f4:f9:1f:e4:0e:f1:7e:16:67:c7:fd:cf:
1e:71:87:de:b0:58:59:22:e0:ee:5d:8a:53:9f:2f:63:ae:57:
68:9c:57:e3:b0:bf:91:2c:a7:63:7c:5e:d7:19:54:26:75:ec:
c0:7f:dc:23:5d:64:f5:36:4a:0b:6e:2e:d8:9c:b7:05:90:e2:
65:f6:e0:4c:bb:2a:92:26:c2:3e:0e:35:20:b9:70:d0:81:19:
c4:78:25:d4:a5:77:51:92:5c:90:9f:93:b9:67:12:b1:5b:26:
69:80:3e:7e:a2:54:9f:06:9d:3d:ad:07:b6:fb:d7:16:86:3e:
73:07:33:1c:cc:80:9b:0b:16:7a:90:b0:3b:50:d6:61:de:20:
cd:53:4f:dd:87:f5:60:09:95:75:48:6a:60:5c:ac:df:d8:d6:
12:ef:5f:c3:9b:b7:94:f9:27:18:f2:3f:eb:6f:3f:94:41:34:
58:36:5a:d2:34:7d:ba:1c:58:31:04:97:43:d2:cb:1f:c2:14:
96:0f:de:e7:3d:63:21:52:6a:47:97:69:fc:83:f9:1d:10:4c:
1c:db:da:51:a2:d3:4b:d0:a2:bf:ba:ba:d4:06:0d:e8:2f:c0:
56:38:5b:3c:3f:0a:2b:d3:51:84:ab:e3:58:eb:0b:5d:e9:09:
16:99:0c:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 02:36:53 2025 by rpki-client