Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8ECE176B73111F0944F41C6DAE4EC9C.roa
File: A8ECE176B73111F0944F41C6DAE4EC9C.roa (raw, json)
Hash identifier: YHHZEgMy8uITcp4LgPrU6tJJQZkr9mTecJrowsN4d+I=
Subject key identifier: 85:1E:E5:DC:43:B3:82:BA:60:9D:89:B7:05:75:81:BC:DA:0C:D4:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A6D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8ECE176B73111F0944F41C6DAE4EC9C.roa
Signing time: Sat 01 Nov 2025 14:47:17 +0000
ROA not before: Sat 01 Nov 2025 14:47:12 +0000
ROA not after: Sat 15 Nov 2025 14:47:12 +0000
asID: 395793
IP address blocks: 154.200.55.0/24 maxlen: 24
154.200.56.0/22 maxlen: 24
154.200.56.0/24 maxlen: 24
154.200.57.0/24 maxlen: 24
154.200.58.0/24 maxlen: 24
154.200.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108242 (0x1a6d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 1 14:47:12 2025 GMT
Not After : Nov 15 14:47:12 2025 GMT
Subject: CN=69061d75-eb73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:80:5e:c1:64:d1:69:31:e7:c5:68:0b:26:9d:
37:03:ca:2f:f0:6a:e5:19:d8:1e:8b:7e:6f:e4:63:
0a:55:5a:e2:b3:06:05:8c:33:91:30:7b:f7:0b:b3:
3f:d0:b8:22:17:1a:ef:95:9e:88:f7:84:94:93:38:
48:1d:6d:51:73:a5:cd:43:cd:2a:86:3b:de:f2:f0:
d5:41:c4:31:4a:5e:36:03:d8:7e:dc:57:84:bd:3e:
ce:cd:10:10:49:58:63:44:cb:15:7e:62:75:a2:d5:
d2:a0:a3:da:cb:83:8b:56:9c:ec:76:42:71:79:25:
0a:29:92:38:35:ec:2d:d0:3e:8b:56:4f:a8:43:c2:
6c:46:a3:07:1e:70:a5:97:dc:5d:c2:ad:0a:4c:16:
5e:fe:e0:0a:34:a9:18:f8:9d:af:23:2b:9d:6b:bf:
b8:79:fc:67:ae:88:eb:60:dc:25:89:7f:7c:7b:db:
48:41:24:77:af:b1:30:18:cb:19:4d:b2:5f:40:0e:
d2:c3:ec:cc:5c:6b:30:0f:72:22:53:d8:68:dc:0c:
36:86:f0:ad:96:91:da:3c:f0:ec:2a:63:16:87:f7:
36:bb:91:83:56:a1:6e:ab:20:7a:9a:97:f2:18:c0:
92:73:ce:38:23:f0:a2:91:a3:a6:70:3c:cd:d7:45:
06:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:1E:E5:DC:43:B3:82:BA:60:9D:89:B7:05:75:81:BC:DA:0C:D4:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8ECE176B73111F0944F41C6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.55.0-154.200.59.255
Signature Algorithm: sha256WithRSAEncryption
55:4c:5f:df:14:0f:eb:7a:17:60:f0:48:4c:fc:96:1d:96:7c:
e6:87:d3:e3:97:33:cb:eb:f1:79:dc:cc:ae:d8:e0:fb:04:66:
99:b4:55:06:37:4b:0b:c7:2e:be:3a:c1:7e:37:c9:7a:55:72:
3a:e1:5b:84:e4:11:fc:32:0a:f6:d8:ec:b0:d8:e4:36:07:60:
a8:d3:ed:52:f2:77:69:69:87:9a:86:66:0f:7f:e9:65:a7:94:
aa:73:de:8d:fe:82:f8:f1:94:97:50:de:4e:11:a9:74:40:3d:
04:db:bc:b9:69:bb:6a:e9:04:3d:a2:02:38:88:dc:cd:7a:7e:
9b:69:cd:6a:bf:3e:ea:e1:a0:60:e7:36:bf:18:f1:83:f1:a1:
fa:b3:fa:fb:5d:70:b5:70:6c:93:18:bb:de:a7:ed:04:e9:f2:
69:8b:47:57:79:bd:40:48:55:76:c3:98:09:c1:71:52:94:36:
8e:10:eb:6d:18:86:58:11:87:a0:b8:81:d9:3b:c1:a9:96:c7:
f1:57:e0:27:c7:1a:cf:59:a0:e5:6b:d8:3b:fb:b3:a2:03:45:
77:98:c3:91:74:fe:1a:a6:a2:c4:7e:2e:ee:41:a2:27:ac:3f:
2b:aa:69:84:e8:9a:3b:96:6e:61:be:2a:9a:a2:80:18:f0:2d:
f2:bd:44:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 06:34:41 2025 by rpki-client