Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B06BB1CEB36D11F0A5FBEF93DAE4EC9C.roa
File: B06BB1CEB36D11F0A5FBEF93DAE4EC9C.roa (raw, json)
Hash identifier: qZpvSeDXJr9OeWKte8ompNyyQMuoT2jF0icM0EGBjBA=
Subject key identifier: A7:1E:0B:9A:31:14:96:A3:D6:5C:68:58:3B:BF:49:BB:E7:11:4D:19
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A582
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B06BB1CEB36D11F0A5FBEF93DAE4EC9C.roa
Signing time: Mon 27 Oct 2025 19:46:54 +0000
ROA not before: Mon 27 Oct 2025 19:46:48 +0000
ROA not after: Mon 01 Dec 2025 19:46:48 +0000
asID: 44559
IP address blocks: 154.203.216.0/24 maxlen: 24
154.203.218.0/24 maxlen: 24
154.203.219.0/24 maxlen: 24
154.203.220.0/24 maxlen: 24
154.203.221.0/24 maxlen: 24
154.203.222.0/24 maxlen: 24
154.203.223.0/24 maxlen: 24
154.203.224.0/24 maxlen: 24
154.203.230.0/24 maxlen: 24
154.203.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107906 (0x1a582)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 27 19:46:48 2025 GMT
Not After : Dec 1 19:46:48 2025 GMT
Subject: CN=68ffcc2e-ded8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:de:2f:a8:5c:c4:57:36:4e:77:c9:5a:69:0c:
59:38:ee:2e:81:d9:08:13:81:93:72:81:8b:03:99:
da:e3:13:c6:92:ae:55:62:39:7c:d1:ea:ee:31:e6:
62:6d:3b:c0:83:f2:27:e0:1c:23:69:53:71:70:86:
66:67:a1:0d:23:7a:f2:78:bd:04:c7:dd:0a:cd:57:
4a:5f:14:27:75:3a:6e:35:6a:aa:c5:57:7e:2e:1e:
b6:b9:3f:5c:3b:3e:7f:2d:b3:36:09:f9:2e:4f:1a:
de:65:87:c5:c6:16:af:f8:33:87:27:67:21:2e:49:
30:99:a9:9b:2c:a4:13:69:6b:3b:69:3c:03:7d:ba:
44:cd:72:43:c4:e0:d8:91:23:07:94:ab:0e:b3:70:
60:55:e1:f3:f1:02:c4:79:69:ec:a5:6d:70:bf:24:
88:d0:9b:8d:2b:53:24:d2:ea:b2:60:e9:1a:11:44:
70:21:cc:38:17:76:e6:5a:2f:68:9e:e4:d5:96:b3:
9b:a0:4f:69:8a:19:54:36:2a:4e:3c:4b:cc:ff:7e:
a3:8d:03:0f:dc:1f:50:29:fe:60:98:fd:47:ef:d0:
85:57:07:67:84:8b:40:6b:47:3d:63:de:a1:a5:a6:
f8:a1:6e:82:1c:44:26:f7:9c:c9:77:54:f1:c0:e2:
ed:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:1E:0B:9A:31:14:96:A3:D6:5C:68:58:3B:BF:49:BB:E7:11:4D:19
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B06BB1CEB36D11F0A5FBEF93DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.216.0/24
154.203.218.0-154.203.224.255
154.203.230.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:92:f0:7b:b4:db:61:ac:d3:6f:1e:3e:91:0e:4d:88:8e:0b:
10:b3:8e:2c:92:4e:6d:65:72:64:e6:48:f5:6c:ad:19:1e:5c:
b6:55:2c:44:63:39:0e:e1:f0:dd:c1:e1:d7:b3:7a:d2:1f:4a:
97:cb:9c:1c:11:92:df:dd:d9:dd:b8:21:6a:48:5e:d2:16:22:
fb:dc:9c:b9:e5:45:10:9a:03:5a:a6:a2:aa:31:63:fb:37:9c:
b4:0b:db:32:00:45:89:a8:e7:c6:65:03:14:61:57:b4:ee:dd:
1e:6c:f0:d7:6a:ae:13:07:a0:26:ec:f6:16:08:86:c9:e0:e3:
76:26:99:60:6d:93:06:4c:2a:38:6c:b0:e1:5e:03:e3:eb:61:
1c:45:a8:c0:c3:87:a3:75:ee:9f:b2:02:dc:50:a7:f3:27:5c:
50:2e:14:37:cb:9e:7e:0f:f2:d9:56:82:f8:8e:08:9f:8f:72:
aa:a4:5e:84:83:09:d3:58:98:cc:44:9a:5d:9e:b6:3a:e2:7b:
34:bf:e2:46:28:e9:50:69:60:f6:bc:36:de:85:f6:03:00:6d:
63:16:29:3d:bd:c1:57:d3:b8:d5:e2:52:60:56:c3:03:0b:27:
7f:9e:07:33:97:a0:29:f7:a3:46:7f:37:47:95:fa:b7:21:7e:
31:77:c4:5f
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgIDAaWCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUxMDI3MTk0NjQ4WhcNMjUxMjAxMTk0NjQ4WjAYMRYw
FAYDVQQDEw02OGZmY2MyZS1kZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7t4vqFzEVzZOd8laaQxZOO4ugdkIE4GTcoGLA5na4xPGkq5VYjl80eru
MeZibTvAg/In4BwjaVNxcIZmZ6ENI3ryeL0Ex90KzVdKXxQndTpuNWqqxVd+Lh62
uT9cOz5/LbM2CfkuTxreZYfFxhav+DOHJ2chLkkwmambLKQTaWs7aTwDfbpEzXJD
xODYkSMHlKsOs3BgVeHz8QLEeWnspW1wvySI0JuNK1Mk0uqyYOkaEURwIcw4F3bm
Wi9onuTVlrOboE9pihlUNipOPEvM/36jjQMP3B9QKf5gmP1H79CFVwdnhItAa0c9
Y96hpab4oW6CHEQm95zJd1TxwOLt+wIDAQABo4ICuTCCArUwHQYDVR0OBBYEFKce
C5oxFJaj1lxoWDu/SbvnEU0ZMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CMDZCQjFDRUIzNkQxMUYwQTVGQkVGOTNEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQAmsvYMAwDBAGay9oDBACa
y+ADBAGay+YwDQYJKoZIhvcNAQELBQADggEBAD6S8Hu022Gs028ePpEOTYiOCxCz
jiySTm1lcmTmSPVsrRkeXLZVLERjOQ7h8N3B4dezetIfSpfLnBwRkt/d2d24IWpI
XtIWIvvcnLnlRRCaA1qmoqoxY/s3nLQL2zIARYmo58ZlAxRhV7Tu3R5s8NdqrhMH
oCbs9hYIhsng43YmmWBtkwZMKjhssOFeA+PrYRxFqMDDh6N17p+yAtxQp/MnXFAu
FDfLnn4P8tlWgviOCJ+PcqqkXoSDCdNYmMxEml2etjriezS/4kYo6VBpYPa8Nt6F
9gMAbWMWKT29wVfTuNXiUmBWwwMLJ3+eBzOXoCn3o0Z/N0eV+rchfjF3xF8=
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:50:18 2025 by rpki-client