Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BB1A79DAB4CA11F0B01228ACDAE4EC9C.roa
File: BB1A79DAB4CA11F0B01228ACDAE4EC9C.roa (raw, json)
Hash identifier: Xm4IMEB4RHRlsobpyj0tcviIywp9aPi8NgUG/9a/d/w=
Subject key identifier: 35:47:0D:5C:8A:C0:D9:AF:7A:4E:76:9C:C3:7D:73:DB:FB:6D:7A:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A63A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BB1A79DAB4CA11F0B01228ACDAE4EC9C.roa
Signing time: Wed 29 Oct 2025 13:25:27 +0000
ROA not before: Wed 29 Oct 2025 13:25:21 +0000
ROA not after: Fri 05 Dec 2025 13:25:21 +0000
asID: 398993
IP address blocks: 154.90.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108090 (0x1a63a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 29 13:25:21 2025 GMT
Not After : Dec 5 13:25:21 2025 GMT
Subject: CN=690215c7-5f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0d:f6:d2:04:ae:29:7f:e0:b5:a2:46:d5:46:
cb:60:b2:1c:9e:d1:09:62:30:f1:41:a2:21:68:6b:
90:95:94:01:61:17:c2:65:d1:15:ee:dd:18:85:81:
b7:2b:92:27:65:27:92:b6:6c:5c:8d:e0:3a:2c:96:
42:6d:80:9c:af:eb:f5:1c:95:ea:49:c7:5a:6a:d9:
6f:f7:97:55:f7:9c:9b:d0:b5:f5:13:38:6f:e0:e0:
fd:4a:69:bc:5e:c3:dd:fe:74:1e:a8:fd:76:48:fd:
c9:52:d5:15:c7:e6:ca:9c:d3:1f:a7:7a:75:06:b6:
2c:76:5d:b6:4c:78:15:74:66:88:17:a0:fe:5e:4f:
9a:dc:14:e6:1c:65:22:07:4c:6e:46:ca:f1:42:63:
e9:9a:14:d0:c9:e3:2c:72:b5:ce:d3:16:56:8e:f5:
13:8a:d0:7a:1c:51:df:46:47:b0:1a:6e:ff:44:48:
91:e4:2e:45:11:7b:a2:4f:40:54:c3:7f:eb:a1:1b:
1d:c8:e0:38:40:03:ec:3b:fa:31:8d:19:d5:fb:ae:
45:94:1e:2c:14:98:3b:42:61:fa:cf:20:b8:55:bc:
8c:6d:84:24:0c:9f:a3:6e:d1:dc:3a:b2:2e:55:c2:
ef:73:7a:f6:1d:c5:27:0c:13:b6:98:bd:93:ee:e2:
fc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:47:0D:5C:8A:C0:D9:AF:7A:4E:76:9C:C3:7D:73:DB:FB:6D:7A:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BB1A79DAB4CA11F0B01228ACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.224.0/19
Signature Algorithm: sha256WithRSAEncryption
26:37:a1:99:d3:47:a1:3d:af:ee:78:fe:d1:79:99:99:4e:73:
b8:57:da:10:53:45:dd:78:d9:ca:09:46:fa:de:49:83:d0:97:
7e:cd:30:dd:58:95:25:da:38:00:60:82:43:b7:74:e1:45:9d:
5c:28:7b:c4:dd:a2:26:34:cf:37:ec:b2:f3:79:96:87:88:ba:
7a:58:be:ed:91:d6:3d:77:a7:f9:97:71:bb:82:fa:52:48:b4:
ea:82:9c:19:f6:9e:d7:1a:7c:0f:f3:f7:86:df:64:81:62:5d:
50:18:27:f6:9d:25:ab:b3:ad:93:71:03:34:f0:73:55:72:8e:
81:3e:6e:7e:ba:b3:03:0a:87:7b:7d:27:94:c0:64:2a:02:44:
d6:1c:2c:f5:93:2d:1a:02:02:76:75:ab:f1:81:3d:8b:bf:f6:
2e:c8:0a:00:6b:01:30:1a:7f:91:cb:b8:e0:cd:4a:c1:a9:64:
61:d2:07:0a:6b:54:fc:00:9a:44:a7:d7:f2:ed:49:c9:18:d8:
10:9f:cb:07:71:cf:13:8c:0d:dd:99:d4:eb:93:5d:1a:07:f2:
a0:08:82:51:71:46:52:68:9d:c5:12:26:35:7c:fb:f3:9b:7a:
e2:1c:69:b2:2e:f7:a8:80:f2:c7:35:54:eb:4a:0a:22:06:b8:
ed:32:a9:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:41:35 2025 by rpki-client