Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69CB7FE6B95411F0A83F5EBFDAE4EC9C.roa
File: 69CB7FE6B95411F0A83F5EBFDAE4EC9C.roa (raw, json)
Hash identifier: agrNSrCPSjP0E7/YTNgqXpH2qzg7xJN1/6Jcg6AoocI=
Subject key identifier: 38:B7:93:B9:F1:CD:8E:C8:71:D6:43:0A:A2:B3:4A:1D:B4:06:57:CA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A75F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69CB7FE6B95411F0A83F5EBFDAE4EC9C.roa
Signing time: Tue 04 Nov 2025 08:01:06 +0000
ROA not before: Tue 04 Nov 2025 08:01:01 +0000
ROA not after: Tue 11 Nov 2025 08:01:01 +0000
asID: 62240
IP address blocks: 154.194.37.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108383 (0x1a75f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 08:01:01 2025 GMT
Not After : Nov 11 08:01:01 2025 GMT
Subject: CN=6909b2c1-616e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bd:26:14:bc:f2:15:3b:6d:fd:13:3a:6f:74:
6b:b2:aa:34:68:53:08:0e:19:20:ea:fc:1c:40:b0:
32:a1:c4:eb:d7:c6:30:d5:14:fb:01:1b:d9:16:c9:
79:6a:66:ee:2c:28:cf:51:1f:82:d2:23:9e:d3:fa:
b1:66:8b:f2:6e:88:67:dc:da:97:2a:45:1b:e9:5b:
c3:3b:5c:db:9f:b3:30:d2:03:40:7d:96:a7:46:c6:
c9:7a:fb:12:9e:25:69:9e:ae:53:3a:63:50:db:37:
fb:28:40:7c:dd:08:cb:17:2f:8d:83:af:17:01:05:
b3:5d:9c:ac:c8:79:d8:4e:44:85:4a:d1:a5:b5:87:
87:0c:7b:1c:39:12:22:4d:e6:65:60:95:e9:91:15:
9f:30:1f:fd:cf:8e:19:6e:7e:44:58:0e:12:92:0d:
84:95:80:fb:ca:f1:9a:d6:c2:a9:71:51:a8:28:56:
85:c0:ce:ae:f9:b1:06:5c:a3:1b:97:d6:d3:4c:cf:
10:b8:4f:cf:64:b9:90:26:18:2f:0f:b5:08:5e:07:
3f:1a:ec:60:0e:48:ef:6e:6a:83:e0:23:eb:ea:49:
2c:91:b2:1c:bc:e4:a3:03:19:d9:2d:ed:42:a8:0d:
8d:ae:ef:ed:19:72:96:43:5b:30:8b:ed:6d:6c:e4:
2f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B7:93:B9:F1:CD:8E:C8:71:D6:43:0A:A2:B3:4A:1D:B4:06:57:CA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/69CB7FE6B95411F0A83F5EBFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.37.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d8:1d:b2:73:56:5d:35:fb:be:d8:89:ea:90:e3:25:6d:d5:
77:df:3a:bf:f4:91:4f:74:9b:de:8a:c3:7c:3c:30:b5:24:e1:
e1:2d:60:7a:bb:af:d2:ba:26:da:7c:41:a0:9e:40:07:94:f7:
f9:2e:c2:2f:c8:7b:07:03:09:d1:08:eb:c1:94:89:13:10:9b:
76:2b:62:cd:3b:12:bd:10:1f:22:4f:0a:a4:12:e4:eb:ba:18:
a2:e8:d4:4a:71:37:d6:7d:85:f2:24:17:1e:a3:c4:14:60:28:
ed:c7:23:51:77:d4:89:7d:83:bb:cc:c8:8e:23:ca:06:6d:fe:
f4:d1:52:fd:1d:a8:31:cd:c9:42:13:96:91:19:11:88:47:8e:
3f:38:2e:d0:60:43:d0:aa:92:8b:9f:64:b4:0b:ca:eb:77:04:
de:34:00:f0:60:38:50:0c:e4:72:22:44:d7:73:83:47:62:bc:
50:25:62:7e:75:9a:26:d3:7e:79:98:d4:9f:d6:18:0f:d3:1a:
56:b3:b2:2c:d1:ae:ea:ca:3f:02:85:9f:92:fa:e3:80:44:bb:
cf:9f:a7:a9:a0:ea:38:18:12:20:ad:fc:8e:00:45:15:38:4e:
73:e7:a2:c7:17:3d:9e:30:14:90:ed:9e:a3:8c:20:c5:df:02:
84:66:60:e0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAadfMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMTA0MDgwMTAxWhcNMjUxMTExMDgwMTAxWjAYMRYw
FAYDVQQDEw02OTA5YjJjMS02MTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx70mFLzyFTtt/RM6b3Rrsqo0aFMIDhkg6vwcQLAyocTr18Yw1RT7ARvZ
Fsl5ambuLCjPUR+C0iOe0/qxZovybohn3NqXKkUb6VvDO1zbn7Mw0gNAfZanRsbJ
evsSniVpnq5TOmNQ2zf7KEB83QjLFy+Ng68XAQWzXZysyHnYTkSFStGltYeHDHsc
ORIiTeZlYJXpkRWfMB/9z44Zbn5EWA4Skg2ElYD7yvGa1sKpcVGoKFaFwM6u+bEG
XKMbl9bTTM8QuE/PZLmQJhgvD7UIXgc/GuxgDkjvbmqD4CPr6kkskbIcvOSjAxnZ
Le1CqA2Nru/tGXKWQ1swi+1tbOQvcQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDi3
k7nxzY7IcdZDCqKzSh20BlfKMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82OUNCN0ZFNkI5NTQxMUYwQTgzRjVFQkZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIlMA0GCSqGSIb3DQEB
CwUAA4IBAQBS2B2yc1ZdNfu+2InqkOMlbdV33zq/9JFPdJveisN8PDC1JOHhLWB6
u6/SuibafEGgnkAHlPf5LsIvyHsHAwnRCOvBlIkTEJt2K2LNOxK9EB8iTwqkEuTr
uhii6NRKcTfWfYXyJBceo8QUYCjtxyNRd9SJfYO7zMiOI8oGbf700VL9HagxzclC
E5aRGRGIR44/OC7QYEPQqpKLn2S0C8rrdwTeNADwYDhQDORyIkTXc4NHYrxQJWJ+
dZom0355mNSf1hgP0xpWs7Is0a7qyj8ChZ+S+uOARLvPn6epoOo4GBIgrfyOAEUV
OE5z56LHFz2eMBSQ7Z6jjCDF3wKEZmDg
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:30:59 2025 by rpki-client