Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6BA0CB6B4D511F0BFDC6BEDDAE4EC9C.roa
File: A6BA0CB6B4D511F0BFDC6BEDDAE4EC9C.roa (raw, json)
Hash identifier: 8dwOpa153b8ByiwvMTNYNjfD8lrgIahSxt/eMHUyxjo=
Subject key identifier: ED:1E:8D:03:62:A1:2F:E1:3C:61:0D:AD:FD:12:E1:83:38:29:71:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A652
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6BA0CB6B4D511F0BFDC6BEDDAE4EC9C.roa
Signing time: Wed 29 Oct 2025 14:43:37 +0000
ROA not before: Wed 29 Oct 2025 14:43:32 +0000
ROA not after: Sat 06 Dec 2025 14:43:32 +0000
asID: 44559
IP address blocks: 154.209.144.0/24 maxlen: 24
154.209.145.0/24 maxlen: 24
154.209.152.0/24 maxlen: 24
154.209.153.0/24 maxlen: 24
154.209.154.0/24 maxlen: 24
154.209.155.0/24 maxlen: 24
154.209.157.0/24 maxlen: 24
154.209.158.0/24 maxlen: 24
154.209.195.0/24 maxlen: 24
154.209.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108114 (0x1a652)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 29 14:43:32 2025 GMT
Not After : Dec 6 14:43:32 2025 GMT
Subject: CN=69022819-bb7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ea:ca:50:34:b2:1b:c2:83:1c:fb:7a:09:c0:
ab:54:55:b5:72:e0:df:4c:2b:68:47:eb:fd:a8:f6:
0b:75:ec:38:1c:66:4a:e0:94:3e:29:3f:15:8e:5d:
65:af:dd:1f:d8:89:05:52:a8:81:bb:36:8b:fb:17:
35:0f:0d:be:bd:c4:5c:e9:9d:f9:01:69:59:cc:37:
f2:c0:cd:83:83:37:20:37:ef:df:0f:a9:ab:0e:d8:
fd:40:1a:f6:e2:e5:fd:25:25:b9:2e:c6:9d:c1:a5:
90:4a:7a:ac:d8:24:08:d2:c1:84:84:6f:30:5e:b0:
58:a4:64:ed:42:52:d7:a0:44:30:f4:73:8a:75:ef:
42:52:5d:ce:25:8c:63:68:8c:6c:ab:12:dd:74:b5:
76:41:f1:62:f9:ac:d9:7a:fa:b8:3e:83:25:59:a0:
a8:aa:a4:9e:ff:00:b8:42:dc:df:9c:e7:06:ae:c3:
1d:a0:a3:06:3c:15:d8:6d:7e:04:3d:19:0b:44:7f:
de:1c:75:9a:93:06:df:f7:26:2c:c6:21:72:34:88:
81:c3:eb:75:a1:78:d2:c6:11:82:a3:ab:88:88:fa:
46:a5:aa:7a:68:98:bf:ff:07:ac:4b:d1:19:a6:58:
e0:04:d3:8f:6d:80:cb:b6:96:32:80:a2:9e:40:f4:
da:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:1E:8D:03:62:A1:2F:E1:3C:61:0D:AD:FD:12:E1:83:38:29:71:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6BA0CB6B4D511F0BFDC6BEDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.144.0/23
154.209.152.0/22
154.209.157.0-154.209.158.255
154.209.195.0-154.209.196.255
Signature Algorithm: sha256WithRSAEncryption
6c:43:f5:f2:21:90:85:5a:97:7a:51:9f:63:07:51:db:07:d8:
73:7d:df:87:67:e7:06:a3:24:27:71:63:5a:9e:37:d1:67:9b:
6a:24:d4:d7:d0:a7:ab:5e:62:22:a5:e5:18:8f:c4:5f:ed:18:
ca:10:2d:1a:9d:64:b3:5b:1d:b3:fd:32:b6:2c:60:65:73:2a:
1c:2c:b0:06:ca:2f:f9:b5:78:d1:35:00:ee:4a:23:8d:2f:cd:
4d:74:f5:96:59:02:7c:45:d4:9d:30:59:89:38:86:b9:18:15:
6b:29:51:d4:95:0b:e2:25:7a:37:70:a6:70:62:b6:f0:44:d9:
31:93:fc:73:de:ad:e7:77:8f:df:16:43:46:94:18:64:1a:3d:
79:f6:62:dd:40:0e:b0:df:8a:87:04:72:15:0b:e7:8f:71:95:
28:5e:06:7a:23:77:30:8e:ca:69:fb:e4:2f:3c:13:3c:1f:b6:
72:6e:17:de:28:0d:cc:3a:4a:0c:c7:19:43:7d:2b:d5:63:2f:
34:6f:90:3f:35:87:35:22:3c:3f:95:d2:92:6c:9b:81:e2:75:
48:a0:00:96:16:76:95:65:83:8e:ec:e9:ec:cf:e1:4c:b7:88:
1d:17:68:3d:d1:96:f6:81:4a:7e:ac:76:7f:87:5e:41:38:06:
8b:47:11:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:14:28 2025 by rpki-client