Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE14BD1AB37E11F08AB4B07BDAE4EC9C.roa
File: AE14BD1AB37E11F08AB4B07BDAE4EC9C.roa (raw, json)
Hash identifier: zAkafKE6p0/QcdhAIg3QBOj0gS92rWklrY/H8pyX9xs=
Subject key identifier: 7C:99:31:C9:A9:55:24:89:C2:83:96:24:FF:37:1F:55:C9:15:8C:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A598
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE14BD1AB37E11F08AB4B07BDAE4EC9C.roa
Signing time: Mon 27 Oct 2025 21:48:32 +0000
ROA not before: Mon 27 Oct 2025 21:48:27 +0000
ROA not after: Tue 02 Dec 2025 21:48:27 +0000
asID: 984
IP address blocks: 154.90.133.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107928 (0x1a598)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 27 21:48:27 2025 GMT
Not After : Dec 2 21:48:27 2025 GMT
Subject: CN=68ffe8b0-1912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7d:79:2b:6b:65:01:d7:6e:ea:a1:c3:f8:01:
42:52:3e:ea:c3:c9:86:24:e1:83:7e:3f:7d:5c:51:
57:e4:c8:fa:c6:be:d2:97:7d:c5:06:5b:6f:24:c3:
23:96:d1:86:64:3e:be:15:1e:14:5c:7d:d6:c6:98:
d6:1d:a1:ab:18:fa:d4:bf:50:07:cd:14:db:7b:de:
7f:57:33:7b:67:80:4d:d7:3a:78:56:99:1e:29:32:
6d:8e:03:b4:0a:21:0e:d0:0e:64:bd:37:c8:4a:27:
ea:61:0d:d1:8a:fa:44:f5:f4:50:f6:6c:25:ad:ac:
24:7d:3c:ac:d1:6a:b0:01:89:d8:84:2e:c9:dd:fe:
3c:9a:f6:af:bc:b9:f3:bd:ef:49:78:e5:99:70:ce:
13:f5:ba:ff:a2:10:22:3d:ec:8e:48:bd:71:bc:21:
57:71:f9:1a:ff:df:bf:fe:42:f0:4b:4b:43:4a:db:
a1:be:d0:ca:c1:67:70:1d:36:a7:b3:c5:0b:08:44:
ce:ca:45:28:aa:b8:d0:61:cc:f3:1c:44:ee:53:95:
cd:d5:99:a5:2a:37:ad:66:f2:63:d1:41:f8:ff:0a:
37:f8:93:bf:f6:2e:c5:09:66:6d:f9:4a:53:9e:fd:
78:cb:dd:da:26:14:93:ca:51:16:57:74:1d:db:02:
e5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:99:31:C9:A9:55:24:89:C2:83:96:24:FF:37:1F:55:C9:15:8C:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE14BD1AB37E11F08AB4B07BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.133.0/24
Signature Algorithm: sha256WithRSAEncryption
11:1a:a2:51:c6:d1:9a:32:78:d5:18:55:05:a1:d8:b0:00:75:
f4:95:88:64:6f:5a:6a:5e:7e:8c:84:2f:95:a4:7b:56:db:3f:
3e:49:0e:d4:fe:57:04:d8:90:23:78:22:b1:69:26:84:ed:e1:
3e:e5:8f:e2:f0:d4:3a:de:d9:45:47:8d:fd:9c:8f:ec:9f:81:
67:81:44:dc:00:56:a7:cd:48:06:4a:7c:ce:14:92:f7:b5:40:
1f:42:f2:c1:dd:56:a0:7d:9a:59:75:62:60:64:63:2d:f2:c7:
82:59:d0:56:be:b7:52:0e:7e:fa:2d:d7:97:09:de:c4:fc:fc:
c8:26:c8:ad:df:82:ca:7e:cf:55:96:04:75:4c:25:c1:e2:19:
00:af:ea:c2:c5:e4:0b:2b:a4:19:44:ef:90:a1:14:44:00:31:
9f:df:44:37:2d:9f:55:6a:7b:c2:52:40:bc:4f:f6:86:b5:ed:
d7:a8:d2:58:12:02:b3:a9:dc:36:3f:1d:c2:f2:ba:24:bc:7f:
57:a2:5f:ed:0a:3d:a7:ec:e0:b0:42:c7:51:a8:0c:7d:d3:7c:
ad:7b:cf:2d:09:e7:57:dc:9a:8f:72:4e:db:44:67:99:65:74:
18:85:3a:fd:32:41:90:66:a6:e6:5d:c4:a9:c4:dd:94:2f:2a:
0b:11:f8:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 21:02:12 2025 by rpki-client