Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976EF8E0B76211F094E392F1DAE4EC9C.roa
File: 976EF8E0B76211F094E392F1DAE4EC9C.roa (raw, json)
Hash identifier: ogMJCHEPuJDFAzOHszqTKWsfdWCaZjv0xHbjKxdeRS0=
Subject key identifier: B7:B1:DB:84:5F:A0:94:6E:03:FD:14:F2:5A:30:C3:C3:C9:BE:66:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A6DC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976EF8E0B76211F094E392F1DAE4EC9C.roa
Signing time: Sat 01 Nov 2025 20:37:33 +0000
ROA not before: Sat 01 Nov 2025 20:37:28 +0000
ROA not after: Sat 15 Nov 2025 20:37:28 +0000
asID: 150706
IP address blocks: 154.218.6.0/24 maxlen: 24
154.218.7.0/24 maxlen: 24
154.218.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108252 (0x1a6dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 20:37:28 2025 GMT
Not After : Nov 15 20:37:28 2025 GMT
Subject: CN=69066f8d-e3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:31:71:4b:c9:8d:25:78:6d:74:6a:ac:58:98:
65:a0:cf:a1:12:63:a8:a9:ed:7c:93:ae:2a:00:da:
1e:7d:10:9c:8d:6b:e1:2e:42:cd:7e:6a:3d:07:f9:
30:30:47:34:50:7e:4c:4d:57:5e:77:29:65:2a:82:
74:77:9c:7a:5a:09:12:0e:74:b7:62:1c:73:be:78:
42:49:9f:ff:0b:8f:98:12:8a:ef:92:c9:45:8c:43:
e2:a7:63:40:8f:ca:b1:7e:c8:0b:1d:c1:b3:e9:ab:
55:0d:b8:84:c0:fe:4b:ba:d7:e0:26:64:47:62:e8:
fb:22:69:d6:0c:25:cc:d1:5c:39:3d:eb:61:0b:84:
7c:18:bf:c8:dc:5a:34:52:5c:b8:45:a5:65:0d:08:
0e:11:d7:07:a1:89:b7:d9:7f:cf:9f:d9:c5:9a:3c:
2d:be:88:58:3e:f7:d6:c6:6a:3c:90:54:22:5c:ab:
a7:fe:e9:37:ed:d6:c4:34:fc:54:4c:0c:e9:42:bc:
0f:72:7a:f3:64:e7:ce:fc:90:8b:b9:57:0e:6c:67:
8f:ae:cf:9f:53:22:b6:d9:02:40:76:30:e2:78:20:
31:44:87:f9:d9:ec:1a:e7:d2:7e:92:ad:77:fb:e7:
2f:c5:bf:8d:5b:c6:59:85:2e:1f:ba:bd:10:1a:26:
bf:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B1:DB:84:5F:A0:94:6E:03:FD:14:F2:5A:30:C3:C3:C9:BE:66:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/976EF8E0B76211F094E392F1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.6.0-154.218.8.255
Signature Algorithm: sha256WithRSAEncryption
73:05:de:dd:dc:79:73:a6:65:e7:d5:14:66:d6:29:ec:e6:a4:
31:44:44:da:24:12:34:08:80:d1:c1:39:bb:93:8d:01:9c:0a:
78:ab:bd:f9:d4:bd:de:51:eb:e1:25:57:03:72:e1:0d:fa:03:
5d:6c:de:61:e6:6c:6c:22:6f:6a:07:35:1e:1f:d5:88:8e:ff:
4f:ea:62:88:0b:d7:18:7c:1c:c1:8d:a4:31:9b:16:e0:7c:b6:
7e:68:68:9f:b0:f6:35:a5:7c:6a:4a:ba:f8:48:ec:25:fe:20:
a6:2c:76:60:01:5d:fe:ee:77:e7:bb:75:83:4e:e5:46:3f:bd:
3b:f3:10:79:e6:64:fe:6d:ef:17:90:bb:3d:fb:52:cc:28:70:
5f:c3:2b:13:03:d5:28:55:58:8e:0d:db:07:6d:6a:02:cc:32:
1e:35:6b:6a:32:fb:24:58:75:59:a7:0d:de:eb:ef:25:4f:6a:
fe:80:1c:38:72:30:8c:e0:cc:b2:75:42:6a:58:a8:eb:8b:df:
e4:f5:f3:2e:07:f2:c4:e0:17:9c:7a:73:9f:80:9d:7e:21:b0:
59:a2:59:ef:dd:4c:9c:51:d2:04:e3:46:ad:cd:d3:bb:6b:df:
fd:a3:01:57:f9:47:31:ba:86:d4:d2:24:f3:30:5e:79:24:b7:
50:f4:16:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 04:24:22 2025 by rpki-client