Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2FDEA04B4DE11F08E5AD5A6DAE4EC9C.roa
File: E2FDEA04B4DE11F08E5AD5A6DAE4EC9C.roa (raw, json)
Hash identifier: 5j3T7zGkzoKb0xF4Ab4nsDN7tFuZsBQsqptsb1HlXBU=
Subject key identifier: 09:68:C8:8F:36:D1:32:02:87:51:04:8F:7B:3E:C0:7A:F7:70:69:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01A66A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2FDEA04B4DE11F08E5AD5A6DAE4EC9C.roa
Signing time: Wed 29 Oct 2025 15:49:44 +0000
ROA not before: Wed 29 Oct 2025 15:49:39 +0000
ROA not after: Sat 06 Dec 2025 15:49:39 +0000
asID: 202656
IP address blocks: 154.222.1.0/24 maxlen: 24
154.222.12.0/24 maxlen: 24
154.222.13.0/24 maxlen: 24
154.222.14.0/24 maxlen: 24
154.222.15.0/24 maxlen: 24
154.222.43.0/24 maxlen: 24
154.222.44.0/24 maxlen: 24
154.222.45.0/24 maxlen: 24
154.222.46.0/24 maxlen: 24
154.222.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108138 (0x1a66a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 29 15:49:39 2025 GMT
Not After : Dec 6 15:49:39 2025 GMT
Subject: CN=69023797-2a2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9c:b2:2b:5c:e9:8d:17:bf:c0:42:2d:a1:62:
02:18:db:90:ac:c9:1a:c7:18:3d:d0:55:ac:51:02:
33:84:42:c0:f6:dd:ce:76:10:c1:67:2e:f6:14:f9:
cd:24:ad:8e:5f:23:40:18:31:6a:b9:06:99:30:ea:
82:98:c8:de:f8:2e:15:07:c0:fb:4a:97:e1:dd:89:
d8:21:27:8a:df:48:46:14:7f:dc:8a:a9:3a:ac:23:
42:26:75:a9:0b:83:8d:93:cd:f1:30:44:0c:75:36:
c8:1f:64:e6:ae:05:bd:86:41:d0:ea:66:d5:38:15:
e8:cd:59:36:f0:10:53:98:58:a4:06:1a:47:e5:04:
a4:01:d1:15:90:a3:84:d7:12:65:37:7b:6b:fc:bf:
fd:56:49:56:2c:48:b8:c9:a5:ce:cc:00:8e:bf:fd:
1b:6f:ad:2b:47:de:59:a1:c5:7d:20:1c:d1:31:3b:
24:0e:41:7a:f5:fa:14:ad:68:7b:c2:40:99:28:9d:
06:05:a8:d3:aa:a2:68:25:f6:96:b5:38:6e:2c:ad:
a1:d6:dc:c1:d1:63:a2:d0:95:d5:f9:ac:21:84:db:
aa:fa:55:6c:20:09:d1:78:1e:bf:a8:5c:97:01:d1:
ef:5c:43:04:e0:6e:c2:e5:34:08:44:5e:6b:f9:95:
3e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:68:C8:8F:36:D1:32:02:87:51:04:8F:7B:3E:C0:7A:F7:70:69:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2FDEA04B4DE11F08E5AD5A6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.1.0/24
154.222.12.0/22
154.222.43.0-154.222.47.255
Signature Algorithm: sha256WithRSAEncryption
35:68:94:26:78:82:46:77:e1:a5:ab:0b:19:e4:58:84:a0:af:
73:59:ee:1f:60:6a:90:b5:83:bc:a0:9a:8a:e6:e1:2d:88:38:
91:91:74:85:e7:74:d4:60:3c:df:c4:3b:5b:18:0a:65:dc:5a:
30:73:aa:93:25:f1:9c:72:e4:6c:5c:13:43:85:90:28:12:8e:
ae:fc:89:bc:2d:1c:02:f2:b6:b0:21:3b:9a:17:b5:a4:7d:13:
1d:c0:ee:2e:16:85:bc:b7:9f:51:6f:e1:da:5d:c1:f8:c8:04:
cf:c3:d7:53:aa:4b:44:74:12:33:df:08:59:17:ad:b8:c2:5d:
01:f0:16:79:75:05:30:f2:2a:27:d3:24:e4:99:91:37:b3:43:
b3:99:db:11:d7:4d:1e:c0:77:81:b3:aa:3c:f4:60:5b:56:b5:
b2:cf:dd:d1:17:6d:6c:b4:80:2e:61:c8:b7:57:6d:df:f3:ec:
29:0d:9b:4c:9e:cd:b6:0a:66:56:23:84:c8:9e:09:f6:b4:fd:
2f:e0:c9:35:5d:79:b2:7b:79:1d:83:8e:c4:66:96:98:62:85:
52:be:71:00:bf:af:b4:63:03:dc:96:ec:89:3d:54:49:5c:bf:
30:36:89:2d:53:7b:e0:82:d9:84:b3:1f:eb:2c:1e:98:77:b9:
a3:21:8f:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 12:31:00 2025 by rpki-client