Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC7222E46D1A11F097893A88DAE4EC9C.roa
File: BC7222E46D1A11F097893A88DAE4EC9C.roa (raw, json)
Hash identifier: enJWHBDFiX7JKQVg7GLUriPsY6Yv6vJyrOcTyfjtNfw=
Subject key identifier: 64:28:91:4C:38:F6:62:F3:D0:85:18:AD:29:C1:9F:60:FF:30:5E:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 018FF7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC7222E46D1A11F097893A88DAE4EC9C.roa
Signing time: Wed 30 Jul 2025 07:56:45 +0000
ROA not before: Wed 30 Jul 2025 07:56:40 +0000
ROA not after: Wed 27 Aug 2025 07:56:40 +0000
asID: 154086
IP address blocks: 154.82.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102391 (0x18ff7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 30 07:56:40 2025 GMT
Not After : Aug 27 07:56:40 2025 GMT
Subject: CN=6889d03d-b2e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:de:ce:ca:66:b6:0a:3c:55:86:5a:c5:3d:10:
43:b2:6a:e3:57:50:5e:f6:21:04:c0:36:a4:a4:18:
b3:cd:4c:42:ba:42:d9:89:47:35:e5:23:af:65:a9:
af:f7:30:57:76:c8:cb:0b:9b:77:66:5c:4a:dc:d3:
c5:d0:9d:7a:30:f3:a9:69:34:49:38:90:08:79:5e:
26:6d:48:50:3e:dc:a8:f9:68:b2:80:df:e5:4c:68:
54:2f:4d:c4:c3:38:6d:1a:0d:8e:c0:92:8c:c4:53:
e2:28:0a:fa:42:e4:87:ec:3b:67:0f:84:81:80:78:
64:d2:49:58:9f:33:52:2d:b2:b1:84:b8:61:0e:81:
26:6b:3c:8f:0d:71:17:03:cc:54:7a:23:c0:47:e3:
ff:9c:f0:7d:a8:8a:d5:22:13:0c:ff:8c:82:44:f4:
1a:70:ec:f8:ed:4d:ab:d2:71:3f:04:af:4d:bb:80:
a6:cc:88:9a:81:4e:14:8b:cf:47:79:bc:95:38:ca:
13:2e:74:b3:b1:48:6a:28:3d:7a:c8:96:42:c1:6b:
5c:d5:d2:d7:67:de:71:6d:40:ba:f5:7b:c8:48:91:
fa:71:cc:84:75:78:71:13:09:2e:35:39:b4:66:62:
b1:cf:50:40:df:83:21:b5:11:7c:3a:17:78:38:27:
25:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:28:91:4C:38:F6:62:F3:D0:85:18:AD:29:C1:9F:60:FF:30:5E:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC7222E46D1A11F097893A88DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.17.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:51:ad:0c:aa:ea:79:49:d1:96:04:36:2f:44:9e:de:d3:a9:
ca:cc:8f:40:bc:48:e5:c2:f9:af:6d:d0:0c:1d:42:60:1b:64:
7e:4a:8c:2e:26:4d:a1:a0:60:c8:5a:40:5c:ee:70:da:80:42:
a4:a4:f2:48:70:f4:da:ef:84:ec:de:89:dc:ea:a8:f9:87:99:
e6:90:c0:f2:5e:16:39:54:ce:30:2b:c3:ca:af:95:05:4f:f9:
9f:10:a6:0b:c3:2c:07:8c:33:31:13:a9:e1:15:7b:57:0e:88:
98:f1:52:90:dc:3d:39:74:4f:47:cc:1e:8f:a4:28:e8:25:89:
3b:49:ce:b9:29:53:08:9b:ab:db:7a:a8:9e:98:ea:c6:75:dd:
3e:73:bb:7b:24:05:ee:ef:66:b8:ba:b5:22:74:a5:74:f6:8a:
ab:a7:e6:39:a4:a5:d6:38:e4:e8:ca:0c:2f:68:c1:39:3e:99:
9c:ad:06:b0:71:7d:10:5a:91:00:76:a6:12:92:89:0c:0b:55:
75:bc:c3:34:38:ec:ff:89:e0:3c:46:f7:aa:b7:4d:51:3f:e3:
82:07:80:eb:31:a7:06:ac:fb:b1:4e:06:f0:1b:83:71:29:fb:
a0:4a:4a:6a:98:66:b8:10:4d:9e:a0:44:0d:20:d8:5c:95:31:
a3:96:e6:e5
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAY/3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNzMwMDc1NjQwWhcNMjUwODI3MDc1NjQwWjAYMRYw
FAYDVQQDEw02ODg5ZDAzZC1iMmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwN7Oyma2CjxVhlrFPRBDsmrjV1Be9iEEwDakpBizzUxCukLZiUc15SOv
Zamv9zBXdsjLC5t3ZlxK3NPF0J16MPOpaTRJOJAIeV4mbUhQPtyo+WiygN/lTGhU
L03EwzhtGg2OwJKMxFPiKAr6QuSH7DtnD4SBgHhk0klYnzNSLbKxhLhhDoEmazyP
DXEXA8xUeiPAR+P/nPB9qIrVIhMM/4yCRPQacOz47U2r0nE/BK9Nu4CmzIiagU4U
i89HebyVOMoTLnSzsUhqKD16yJZCwWtc1dLXZ95xbUC69XvISJH6ccyEdXhxEwku
NTm0ZmKxz1BA34MhtRF8Ohd4OCclJQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGQo
kUw49mLz0IUYrSnBn2D/MF5mMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CQzcyMjJFNDZEMUExMUYwOTc4OTNBODhEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlIRMA0GCSqGSIb3DQEB
CwUAA4IBAQBLUa0Mqup5SdGWBDYvRJ7e06nKzI9AvEjlwvmvbdAMHUJgG2R+Sowu
Jk2hoGDIWkBc7nDagEKkpPJIcPTa74Ts3onc6qj5h5nmkMDyXhY5VM4wK8PKr5UF
T/mfEKYLwywHjDMxE6nhFXtXDoiY8VKQ3D05dE9HzB6PpCjoJYk7Sc65KVMIm6vb
eqiemOrGdd0+c7t7JAXu72a4urUidKV09oqrp+Y5pKXWOOToygwvaME5PpmcrQaw
cX0QWpEAdqYSkokMC1V1vMM0OOz/ieA8Rveqt01RP+OCB4DrMacGrPuxTgbwG4Nx
KfugSkpqmGa4EE2eoEQNINhclTGjlubl
-----END CERTIFICATE-----
Generated at Wed Aug 6 11:17:54 2025 by rpki-client