Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B36159B46FC611F0ABED2CE2DAE4EC9C.roa
File: B36159B46FC611F0ABED2CE2DAE4EC9C.roa (raw, json)
Hash identifier: mGXBlfEQRgIhpaEJiPrI+llcgDkUpLVMxuziJp2utBA=
Subject key identifier: 25:A2:5C:D1:55:0B:AB:51:7D:DD:08:67:78:EC:FE:D7:86:27:29:D6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 019056
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B36159B46FC611F0ABED2CE2DAE4EC9C.roa
Signing time: Sat 02 Aug 2025 17:32:46 +0000
ROA not before: Sat 02 Aug 2025 17:32:41 +0000
ROA not after: Wed 10 Sep 2025 17:32:41 +0000
asID: 401696
IP address blocks: 154.94.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102486 (0x19056)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 2 17:32:41 2025 GMT
Not After : Sep 10 17:32:41 2025 GMT
Subject: CN=688e4bbd-55ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:9d:d1:49:ea:95:1b:72:d3:ae:0e:fd:5a:c1:
33:80:e2:af:8d:c0:77:1d:42:72:f6:f2:ca:ff:87:
a6:fd:ef:cb:b7:7d:0b:8f:15:9b:b2:76:43:b1:47:
16:c3:ab:c8:99:0c:fd:f5:8e:92:c2:99:80:f5:25:
7a:71:65:60:43:50:c4:a0:c1:79:9b:3b:9c:2d:8f:
6b:68:b5:86:31:37:9d:85:4a:70:5b:41:06:52:38:
21:90:9a:de:3d:33:ad:d7:96:64:de:c4:cc:2f:e0:
73:d5:7c:99:48:ee:50:9a:bd:77:86:3d:9c:86:a5:
f3:e1:5a:c8:b1:84:87:24:b9:70:0f:32:69:c1:c7:
e3:1d:e9:b4:3e:97:9b:89:92:cc:93:15:34:37:a1:
f6:b5:1c:5e:66:bf:23:ee:80:61:17:33:0e:3b:21:
7b:1a:61:28:c2:da:b9:9f:6b:15:d8:ab:48:82:da:
0b:41:dc:97:9c:e4:5e:b4:a0:71:91:26:fc:5e:91:
f3:23:be:e8:49:9a:f5:9e:45:2a:68:5c:c9:dd:42:
06:44:fc:65:98:6e:73:64:ab:61:e2:a3:9d:0a:be:
bd:5e:00:b8:de:15:3b:e8:87:82:2c:e9:01:3c:7b:
5e:7d:a4:91:12:02:14:61:ed:99:b3:0e:10:57:e0:
b0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A2:5C:D1:55:0B:AB:51:7D:DD:08:67:78:EC:FE:D7:86:27:29:D6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B36159B46FC611F0ABED2CE2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/20
Signature Algorithm: sha256WithRSAEncryption
05:d0:2b:28:32:34:22:11:8c:21:cf:14:b1:78:f6:90:7e:83:
41:8a:ed:c1:23:ff:f5:73:7a:34:49:f5:4b:0e:6d:f7:38:c6:
46:2b:fc:30:2f:85:40:9a:03:91:b1:83:ac:cb:c4:8c:41:fd:
3b:d6:4a:69:41:09:8e:53:6c:2f:7b:b0:2b:db:0b:4e:34:4c:
3b:0f:b2:c5:25:ed:42:5f:3c:9c:1f:94:a0:83:e4:f2:82:1e:
46:0c:21:6d:73:c9:ae:8f:00:fa:4f:fe:9d:b4:91:4f:4e:6b:
74:c1:91:8e:60:ab:71:7a:6a:5d:06:47:53:68:99:39:29:d6:
90:cd:37:14:10:9c:a0:a9:4d:9a:11:05:17:9f:7e:9a:06:d8:
49:f5:5c:71:41:df:07:52:49:94:0f:c1:99:74:96:50:30:6f:
28:42:57:34:12:27:00:a3:50:3d:29:89:80:91:5e:6a:7a:dc:
c6:be:a9:b1:ba:e0:97:19:82:d6:ee:41:1a:6e:9a:fb:0b:14:
8f:7c:fd:c3:8d:4c:40:ab:f6:13:e3:3e:10:09:85:8f:b6:47:
e3:52:99:42:01:36:f3:cb:f4:ba:24:1d:f8:2b:cd:d5:55:63:
a4:c3:8a:08:ae:45:b6:72:17:02:d5:f4:c4:dc:e3:b3:76:df:
6c:01:88:91
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAZBWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwODAyMTczMjQxWhcNMjUwOTEwMTczMjQxWjAYMRYw
FAYDVQQDEw02ODhlNGJiZC01NWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA9p3RSeqVG3LTrg79WsEzgOKvjcB3HUJy9vLK/4em/e/Lt30LjxWbsnZD
sUcWw6vImQz99Y6SwpmA9SV6cWVgQ1DEoMF5mzucLY9raLWGMTedhUpwW0EGUjgh
kJrePTOt15Zk3sTML+Bz1XyZSO5Qmr13hj2chqXz4VrIsYSHJLlwDzJpwcfjHem0
PpebiZLMkxU0N6H2tRxeZr8j7oBhFzMOOyF7GmEowtq5n2sV2KtIgtoLQdyXnORe
tKBxkSb8XpHzI77oSZr1nkUqaFzJ3UIGRPxlmG5zZKth4qOdCr69XgC43hU76IeC
LOkBPHtefaSREgIUYe2Zsw4QV+CwdQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCWi
XNFVC6tRfd0IZ3js/teGJynWMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CMzYxNTlCNDZGQzYxMUYwQUJFRDJDRTJEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEml7gMA0GCSqGSIb3DQEB
CwUAA4IBAQAF0CsoMjQiEYwhzxSxePaQfoNBiu3BI//1c3o0SfVLDm33OMZGK/ww
L4VAmgORsYOsy8SMQf071kppQQmOU2wve7Ar2wtONEw7D7LFJe1CXzycH5Sgg+Ty
gh5GDCFtc8mujwD6T/6dtJFPTmt0wZGOYKtxempdBkdTaJk5KdaQzTcUEJygqU2a
EQUXn36aBthJ9VxxQd8HUkmUD8GZdJZQMG8oQlc0EicAo1A9KYmAkV5qetzGvqmx
uuCXGYLW7kEabpr7CxSPfP3DjUxAq/YT4z4QCYWPtkfjUplCATbzy/S6JB34K83V
VWOkw4oIrkW2chcC1fTE3OOzdt9sAYiR
-----END CERTIFICATE-----
Generated at Mon Aug 4 07:56:08 2025 by rpki-client