Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F2D5DC0B57811F0BD221CF0DAE4EC9C.roa
File: 8F2D5DC0B57811F0BD221CF0DAE4EC9C.roa (raw, json)
Hash identifier: ktt5VnU9e5X2xqdCTi3AXjBVAjawQmUClGCOqInXDhU=
Subject key identifier: 79:33:F5:54:4A:35:76:64:77:13:2F:8A:16:93:64:A1:37:13:8D:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A6AD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F2D5DC0B57811F0BD221CF0DAE4EC9C.roa
Signing time: Thu 30 Oct 2025 10:09:45 +0000
ROA not before: Thu 30 Oct 2025 10:09:40 +0000
ROA not after: Sat 03 Jan 2026 10:09:40 +0000
asID: 63139
IP address blocks: 154.94.79.0/24 maxlen: 24
154.94.83.0/24 maxlen: 24
154.94.84.0/24 maxlen: 24
154.94.85.0/24 maxlen: 24
154.94.121.0/24 maxlen: 24
154.94.122.0/24 maxlen: 24
154.94.123.0/24 maxlen: 24
154.94.124.0/24 maxlen: 24
154.94.126.0/24 maxlen: 24
154.94.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108205 (0x1a6ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 30 10:09:40 2025 GMT
Not After : Jan 3 10:09:40 2026 GMT
Subject: CN=69033969-1eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:33:b6:46:fb:56:91:d0:d3:22:db:83:29:b9:
a9:e4:fe:2e:a9:6d:0e:32:05:9a:81:80:4b:9e:b2:
97:5f:4c:9c:07:3c:ab:d9:91:df:80:1b:41:88:bd:
37:d7:e4:87:c4:d5:4b:63:1b:11:da:c1:a5:9b:f6:
95:b8:cf:ea:9c:4e:a6:c5:7b:8b:d4:4a:b2:35:05:
fd:ba:bf:12:9b:dd:bf:48:a8:22:76:62:c1:a9:13:
68:ca:83:91:a8:39:0c:0f:ce:94:94:bf:cf:f7:1d:
11:b0:d0:6b:23:52:d5:6f:15:40:fe:c2:f7:cc:09:
89:a0:7a:25:0e:d6:99:81:ee:1a:80:75:2c:80:5e:
4d:7b:db:72:c4:d1:ec:40:97:f0:75:ef:35:3d:96:
50:b7:10:75:49:5d:e6:45:ee:da:b6:58:d6:e3:53:
25:6b:ae:f6:8d:1f:47:a5:9a:9f:7c:33:ed:6a:ad:
c6:2d:72:1b:0b:b7:9e:74:ad:89:6a:86:ae:87:32:
6c:2f:1d:2a:07:7a:86:b1:dc:99:ec:14:2f:38:a3:
38:3f:c7:a4:07:7d:7e:a8:03:da:8d:0d:da:e8:4d:
68:d6:ea:a6:c2:13:f5:aa:f8:68:09:9d:d7:98:8e:
ef:23:5f:88:7a:db:5a:2e:bd:4d:1e:08:70:6d:42:
3e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:33:F5:54:4A:35:76:64:77:13:2F:8A:16:93:64:A1:37:13:8D:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F2D5DC0B57811F0BD221CF0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.79.0/24
154.94.83.0-154.94.85.255
154.94.121.0-154.94.124.255
154.94.126.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:80:04:94:95:c7:b8:17:88:b8:1b:08:ba:45:8a:51:fe:b8:
10:e7:d2:f5:e8:68:27:ad:2a:a1:a6:07:9e:4c:82:97:5f:96:
a8:3d:0c:8d:9b:b0:40:9d:0b:83:b4:1b:79:df:25:df:73:b4:
78:f4:3a:86:5d:99:de:84:10:c7:72:58:a0:15:f5:d7:64:0d:
68:97:8c:c2:d2:ac:3d:30:a3:85:04:b3:fd:75:3f:64:dd:82:
b6:57:bb:80:76:17:15:3e:5c:35:17:d5:86:6d:ac:86:96:22:
93:57:fb:39:81:ca:88:6f:7d:81:33:59:f2:87:e4:a6:f1:28:
27:50:0f:41:e9:9a:a2:f4:75:d1:1e:e2:6f:83:9a:5d:79:2b:
2d:79:a5:2f:9e:fa:ad:40:20:3d:bd:ee:62:9f:6d:2f:64:db:
0a:2a:35:ba:26:10:5d:e6:6e:22:08:67:1c:fd:09:1f:5b:14:
c1:68:02:44:f5:37:cf:a5:e5:fe:17:fb:26:96:8c:98:9e:1e:
5b:b8:00:cf:62:df:95:5d:c4:02:44:43:6e:61:6d:12:56:0e:
09:29:63:d5:8c:16:d1:98:b5:c1:57:20:1c:18:9f:dc:d5:65:
d7:2e:21:71:cc:d7:b0:55:31:a5:60:d5:9b:52:80:68:ff:ac:
8a:8a:3e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:29:33 2025 by rpki-client