Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6FC64FEB40511F083B32AD9DAE4EC9C.roa
File: C6FC64FEB40511F083B32AD9DAE4EC9C.roa (raw, json)
Hash identifier: SzGjPaidjVZqnT6VSAYK7KoItplF+nA/zaH21el/FKk=
Subject key identifier: 71:1D:5C:15:D2:08:6A:F8:BB:77:77:E7:72:AC:51:F2:B1:D4:98:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A5F9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6FC64FEB40511F083B32AD9DAE4EC9C.roa
Signing time: Tue 28 Oct 2025 13:55:36 +0000
ROA not before: Tue 28 Oct 2025 13:55:31 +0000
ROA not after: Wed 10 Dec 2025 13:55:31 +0000
asID: 138915
IP address blocks: 154.223.27.0/24 maxlen: 24
154.223.32.0/24 maxlen: 24
154.223.33.0/24 maxlen: 24
154.223.34.0/23 maxlen: 24
154.223.37.0/24 maxlen: 24
154.223.40.0/23 maxlen: 24
154.223.42.0/24 maxlen: 24
154.223.43.0/24 maxlen: 24
154.223.44.0/24 maxlen: 24
154.223.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108025 (0x1a5f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 28 13:55:31 2025 GMT
Not After : Dec 10 13:55:31 2025 GMT
Subject: CN=6900cb58-43c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:70:d0:d2:9a:d3:1a:34:69:88:d3:c0:c7:eb:
ca:2e:1f:85:64:93:47:b3:d0:17:8e:a5:72:24:0d:
21:cd:38:86:fa:8a:bc:4c:1e:c8:25:0f:10:64:b0:
9b:b2:73:b1:65:96:50:ec:72:22:0e:6e:1b:12:fa:
d8:79:d6:8b:d4:2c:22:df:aa:7b:b5:3e:cb:66:26:
ca:22:fb:f9:c5:8d:8c:67:ef:80:95:0d:21:db:de:
c6:79:7b:be:11:d4:2a:94:bc:c9:1d:d8:22:c9:56:
79:d7:6f:51:9c:b2:37:df:f9:dc:27:c9:44:3a:7c:
ac:2d:6f:2a:17:a4:f6:89:b0:50:05:9f:ef:26:f2:
ea:46:7d:63:2a:86:4f:06:0c:ae:f6:a3:11:3f:be:
4d:31:95:44:b6:62:8c:d3:3c:0a:cc:36:ca:0a:57:
08:43:fb:43:56:15:f7:0d:f4:2e:fe:89:6f:65:32:
a4:22:f4:e0:f6:f6:d8:4a:40:33:12:9a:84:8d:50:
bb:ed:5a:10:2b:ac:97:f6:2c:59:d1:47:34:20:65:
c0:51:a3:15:ec:54:e8:16:37:45:35:36:6f:1a:eb:
1c:86:74:36:84:a6:e5:7b:4f:7c:f6:f8:65:26:4c:
15:37:65:76:ed:68:8b:93:19:f3:64:61:37:93:2a:
2f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:1D:5C:15:D2:08:6A:F8:BB:77:77:E7:72:AC:51:F2:B1:D4:98:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6FC64FEB40511F083B32AD9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.27.0/24
154.223.32.0/22
154.223.37.0/24
154.223.40.0-154.223.45.255
Signature Algorithm: sha256WithRSAEncryption
aa:0d:45:9d:65:9f:25:54:7d:32:1a:13:35:ff:70:17:4f:74:
73:35:96:63:c6:65:e3:1f:59:41:fb:fa:d7:4f:cb:9a:a4:e5:
80:2b:c2:b1:f4:cd:4d:f8:84:7a:db:f0:92:1f:70:9f:35:77:
f3:c2:9c:45:af:ab:2e:1e:7a:19:64:39:a3:94:99:2e:21:5a:
ff:12:c9:ec:04:11:3a:7a:c5:c7:67:38:17:5e:d4:3f:37:38:
7e:0e:9c:a9:86:a0:3a:f3:62:82:1f:2b:28:bf:82:34:c7:71:
01:9f:3b:26:9d:cd:15:06:d3:c6:ea:c3:a3:e0:3c:1a:33:99:
06:56:15:7e:3a:8a:98:2b:aa:eb:d9:ec:d1:ad:cb:24:44:50:
10:a3:9a:c9:d4:51:47:eb:a4:3f:8a:69:ea:d5:0b:16:a9:05:
01:8c:38:9c:fc:18:c8:d0:46:d0:9e:71:fc:13:ec:be:ac:c9:
93:4c:b2:27:6f:73:d5:5b:82:98:43:64:a0:48:9a:06:97:34:
34:88:0d:d3:5d:5a:29:31:f4:9d:94:71:f8:18:5a:99:49:f1:
74:da:d2:41:a5:5a:1a:b5:18:0f:37:2e:53:0e:80:e1:a1:bf:
b4:d2:3c:39:10:b4:2b:f9:0e:06:b9:11:32:d0:87:69:52:94:
fc:b8:9b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 00:49:40 2025 by rpki-client