Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDAC4E0CB88611F0AF11CCACDAE4EC9C.roa
File: BDAC4E0CB88611F0AF11CCACDAE4EC9C.roa (raw, json)
Hash identifier: EtJpCzWC0lC6j1bJLlEv8WDIfp2hc4z2uzA09e/H0fg=
Subject key identifier: 8F:02:48:02:B6:B4:B9:99:12:4C:8E:C1:AE:37:1A:E3:C1:BF:22:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A6EE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDAC4E0CB88611F0AF11CCACDAE4EC9C.roa
Signing time: Mon 03 Nov 2025 07:28:50 +0000
ROA not before: Mon 03 Nov 2025 07:28:45 +0000
ROA not after: Sun 09 Nov 2025 07:28:45 +0000
asID: 9009
IP address blocks: 154.85.100.0/22 maxlen: 24
154.85.126.0/23 maxlen: 24
154.92.112.0/21 maxlen: 24
154.95.0.0/23 maxlen: 24
154.95.32.0/22 maxlen: 24
154.95.36.0/23 maxlen: 24
154.95.38.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108270 (0x1a6ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 3 07:28:45 2025 GMT
Not After : Nov 9 07:28:45 2025 GMT
Subject: CN=690859b2-c97d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:83:ce:01:75:4c:14:99:94:a2:16:9e:8c:8b:
21:eb:ea:ae:aa:e9:8d:8d:96:87:ec:a2:9e:5b:9e:
63:aa:57:f5:c0:47:f7:eb:d1:9a:77:a9:91:65:4f:
79:79:46:e1:7c:c5:9b:ef:b2:f1:78:0e:10:80:f9:
b7:af:21:1d:23:4f:88:03:10:a0:d4:93:06:20:1e:
6f:0f:a6:c4:59:3e:4a:31:a2:fb:87:27:ea:08:90:
c3:e8:b2:1d:be:83:b5:88:da:f3:89:89:26:36:a4:
e3:5f:14:94:53:a5:b2:d9:40:1f:0f:6e:9b:24:98:
d4:ea:4b:f8:ca:96:e5:a8:59:17:4c:6a:86:58:84:
63:e6:b5:fe:ec:a8:2c:41:7a:cd:ea:83:79:11:fa:
87:a2:7f:f8:cb:49:ba:e5:6b:78:8e:ac:05:6d:15:
8c:c4:36:f4:7a:69:cc:40:8f:a3:3c:05:c1:a7:93:
98:18:30:c2:83:3e:18:42:b2:5a:06:5c:5a:82:6d:
c7:db:35:73:8a:e6:cb:1b:b3:1f:39:bb:ab:aa:87:
ec:04:95:73:c6:c8:29:24:47:fd:21:c7:0f:93:31:
f3:82:54:e8:96:cd:c1:3c:be:5b:61:6e:45:57:0a:
f3:f0:b3:66:db:9d:05:33:6c:c6:f2:02:98:27:08:
08:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:02:48:02:B6:B4:B9:99:12:4C:8E:C1:AE:37:1A:E3:C1:BF:22:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDAC4E0CB88611F0AF11CCACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.100.0/22
154.85.126.0/23
154.92.112.0/21
154.95.0.0/23
154.95.32.0/21
Signature Algorithm: sha256WithRSAEncryption
7d:c3:a9:02:f8:87:42:0a:99:57:7a:c7:0a:d7:4f:5f:d0:a5:
59:7b:98:dd:f0:cc:39:6e:64:66:db:a6:74:bf:8c:61:d3:14:
b1:56:f0:6b:03:c0:8e:70:72:d8:b4:22:af:39:92:ce:c0:63:
33:5e:69:14:99:6e:bb:1c:f9:5e:f7:f9:24:66:e8:36:7d:e6:
dc:26:bb:e7:4c:32:cf:ab:bc:56:58:cf:67:ac:58:5d:d7:1a:
93:83:d1:32:98:c2:61:a7:05:d8:f1:c4:6c:d1:bd:cd:cd:21:
db:44:11:49:e4:dd:50:f4:9f:71:73:df:d9:d2:ca:82:ed:12:
c8:2f:ec:7b:72:2d:40:77:f0:a2:e2:d8:8a:6a:50:84:ad:cf:
37:e3:fe:08:4d:bc:55:40:d9:ce:fb:a5:44:ef:37:1a:cd:3a:
d9:12:6e:fa:b5:21:7b:2d:0f:af:80:98:9a:cf:bb:95:69:93:
7f:6c:78:80:9f:66:81:c1:dd:1c:28:6b:f9:88:61:fe:0d:e1:
d2:65:1d:86:f8:b4:b0:27:84:6e:db:da:69:ec:55:da:e9:8b:
e3:a7:78:e0:08:de:e1:50:a7:3d:29:17:a0:e1:73:4a:b2:2b:
4b:6e:16:dc:65:21:f2:98:da:72:85:52:ca:e4:b2:4f:6f:94:
70:ff:e0:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:58:59 2025 by rpki-client