Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8263A43EB95411F0AFC863BFDAE4EC9C.roa
File: 8263A43EB95411F0AFC863BFDAE4EC9C.roa (raw, json)
Hash identifier: YDrhY1vNg755J4kxj4QYFqi6qw7mvy/ylfHP6OVB7d8=
Subject key identifier: EF:02:A3:74:F7:08:5F:47:38:A9:F9:7C:9C:6A:57:0F:01:87:12:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A761
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8263A43EB95411F0AFC863BFDAE4EC9C.roa
Signing time: Tue 04 Nov 2025 08:01:47 +0000
ROA not before: Tue 04 Nov 2025 08:01:42 +0000
ROA not after: Sat 06 Dec 2025 08:01:42 +0000
asID: 45194
IP address blocks: 154.84.192.0/24 maxlen: 24
154.84.194.0/24 maxlen: 24
154.84.195.0/24 maxlen: 24
154.84.196.0/24 maxlen: 24
154.84.197.0/24 maxlen: 24
154.84.198.0/24 maxlen: 24
154.84.199.0/24 maxlen: 24
154.84.223.0/24 maxlen: 24
154.84.244.0/24 maxlen: 24
154.84.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108385 (0x1a761)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 4 08:01:42 2025 GMT
Not After : Dec 6 08:01:42 2025 GMT
Subject: CN=6909b2eb-1d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:81:b9:2a:04:1c:99:67:57:a9:10:36:17:82:
46:6c:25:59:89:ce:36:f8:08:ed:05:d9:5e:cf:67:
2d:6e:14:b7:9e:2c:29:5e:7f:d3:19:e2:0f:8e:75:
1a:96:92:b9:5e:fd:e6:c6:02:f0:75:be:9b:86:f7:
ee:3f:52:15:98:e1:43:1b:c6:2f:96:a3:4c:8b:ed:
f4:d1:9f:04:ac:2d:64:df:1b:1f:f5:bf:88:9f:04:
33:60:ef:7c:73:a4:7d:90:8c:0b:a3:f5:d7:de:60:
8b:b6:ac:d8:7c:2d:00:d4:dc:d0:2f:c1:7d:19:ea:
df:38:95:a9:b6:d5:b9:7a:8b:83:45:2f:39:fd:75:
dd:84:0f:1e:32:d8:74:73:8f:91:d0:50:41:f5:a0:
e3:74:fe:6c:68:7f:75:19:30:39:d9:dc:78:09:3e:
fe:4e:77:74:77:c2:e2:88:6a:35:d0:0b:b0:f4:94:
9a:0c:05:d3:57:af:22:38:5c:76:04:81:d2:ba:a8:
82:27:53:4b:84:4a:45:a2:40:5c:ca:8a:1b:83:4b:
83:01:d7:ad:0e:1a:fb:a0:79:03:3d:91:54:8b:00:
a6:c1:6b:fa:0b:10:c1:86:b6:a8:6b:3c:fd:02:97:
05:2e:1a:78:15:57:9b:65:46:0b:1d:ba:31:8b:f8:
87:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:02:A3:74:F7:08:5F:47:38:A9:F9:7C:9C:6A:57:0F:01:87:12:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8263A43EB95411F0AFC863BFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.192.0/24
154.84.194.0-154.84.199.255
154.84.223.0/24
154.84.244.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:4f:8e:3f:89:16:7f:82:f1:9a:28:06:1e:69:06:94:04:e7:
37:42:5c:98:05:79:43:de:65:41:c0:79:60:ea:6a:6f:45:25:
f8:b3:d5:80:93:36:90:5f:ce:23:04:be:a9:9a:6a:50:9b:69:
f8:8d:64:a8:1d:bf:aa:77:b0:5f:56:ef:a7:8f:df:9c:35:c7:
e6:97:bb:9f:47:25:c0:5a:69:ed:f3:2c:6d:fc:86:ff:89:61:
39:55:aa:1a:70:38:ec:52:e2:36:c8:67:ac:6c:0a:cc:fd:8e:
3b:31:a0:d4:26:3d:44:ee:7e:a0:89:75:33:a7:74:70:62:c2:
50:be:29:23:3e:76:a8:53:4c:4a:bc:09:eb:49:59:a1:78:4f:
4f:19:05:65:65:ad:0d:04:70:42:f2:95:d8:fb:c0:3d:d9:d7:
b1:64:c9:43:c2:e7:38:ff:0d:ad:2d:e3:05:0b:32:13:1b:6a:
d5:24:d7:53:07:89:d9:a6:b9:a3:65:2b:39:3f:a9:ff:c4:e2:
36:79:96:0c:35:ee:7d:2c:55:a8:f9:79:c4:8d:e0:8a:a4:72:
3a:92:0d:9b:15:4a:b8:93:7c:10:8d:e2:a1:f2:f0:f6:e4:e4:
4a:31:3a:04:86:2a:ef:f3:d1:d2:58:b4:cf:59:47:75:78:cc:
5d:db:32:ec
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIDAadhMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMTA0MDgwMTQyWhcNMjUxMjA2MDgwMTQyWjAYMRYw
FAYDVQQDEw02OTA5YjJlYi0xZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0YG5KgQcmWdXqRA2F4JGbCVZic42+AjtBdlez2ctbhS3niwpXn/TGeIP
jnUalpK5Xv3mxgLwdb6bhvfuP1IVmOFDG8YvlqNMi+300Z8ErC1k3xsf9b+InwQz
YO98c6R9kIwLo/XX3mCLtqzYfC0A1NzQL8F9GerfOJWpttW5eouDRS85/XXdhA8e
Mth0c4+R0FBB9aDjdP5saH91GTA52dx4CT7+Tnd0d8LiiGo10Auw9JSaDAXTV68i
OFx2BIHSuqiCJ1NLhEpFokBcyoobg0uDAdetDhr7oHkDPZFUiwCmwWv6CxDBhrao
azz9ApcFLhp4FVebZUYLHboxi/iHjwIDAQABo4ICvzCCArswHQYDVR0OBBYEFO8C
o3T3CF9HOKn5fJxqVw8BhxJaMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84MjYzQTQzRUI5NTQxMUYwQUZDODYzQkZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAmlTAMAwDBAGaVMIDBAOa
VMADBACaVN8DBAGaVPQwDQYJKoZIhvcNAQELBQADggEBAC1Pjj+JFn+C8ZooBh5p
BpQE5zdCXJgFeUPeZUHAeWDqam9FJfiz1YCTNpBfziMEvqmaalCbafiNZKgdv6p3
sF9W76eP35w1x+aXu59HJcBaae3zLG38hv+JYTlVqhpwOOxS4jbIZ6xsCsz9jjsx
oNQmPUTufqCJdTOndHBiwlC+KSM+dqhTTEq8CetJWaF4T08ZBWVlrQ0EcELyldj7
wD3Z17FkyUPC5zj/Da0t4wULMhMbatUk11MHidmmuaNlKzk/qf/E4jZ5lgw17n0s
Vaj5ecSN4IqkcjqSDZsVSriTfBCN4qHy8Pbk5EoxOgSGKu/z0dJYtM9ZR3V4zF3b
Muw=
-----END CERTIFICATE-----
Generated at Wed Nov 5 13:59:12 2025 by rpki-client