Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9F32C206D3011F0AC3BF796DAE4EC9C.roa
File: E9F32C206D3011F0AC3BF796DAE4EC9C.roa (raw, json)
Hash identifier: paWbVgR9vnX95ezH/J5WBIhcuovgsDYdIMYqDvV5bok=
Subject key identifier: E9:46:95:A0:7C:C7:F3:97:E7:91:E8:DC:CF:D7:FE:AA:58:B3:3D:F4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01900D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9F32C206D3011F0AC3BF796DAE4EC9C.roa
Signing time: Wed 30 Jul 2025 10:35:30 +0000
ROA not before: Wed 30 Jul 2025 10:35:25 +0000
ROA not after: Mon 08 Sep 2025 10:35:25 +0000
asID: 14315
IP address blocks: 154.196.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102413 (0x1900d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 30 10:35:25 2025 GMT
Not After : Sep 8 10:35:25 2025 GMT
Subject: CN=6889f572-e292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7e:f5:ea:a8:8a:18:63:73:4a:8c:f6:a3:f1:
1a:8c:28:fd:0f:60:03:81:e9:44:8f:7f:e4:9f:7f:
f9:be:c4:77:11:89:99:8d:19:e3:dd:8d:2f:a0:8a:
a7:dd:68:fa:5e:d2:2b:bf:88:9f:de:19:02:18:cd:
34:29:b1:2d:86:1d:9a:7d:a3:a7:a9:7a:be:f5:80:
4a:69:c1:34:a8:c6:dd:26:0e:4d:b8:89:e3:bb:e0:
34:02:41:bf:73:83:69:a4:8c:b1:de:2b:1d:f8:c5:
06:30:55:52:b6:4a:4f:9d:d8:42:9f:c3:fc:44:02:
44:bc:1f:12:9c:6c:32:d2:f9:30:d4:50:ed:ec:1f:
f5:19:cd:74:a3:9c:8b:39:4b:f1:99:a9:1c:c3:b8:
51:fc:f8:32:ba:4c:44:ad:70:a1:62:49:fd:9c:9a:
18:3e:2f:91:a7:ed:5d:79:be:02:11:e7:5c:18:5d:
c8:92:48:82:e7:07:83:81:01:bf:66:26:6b:b9:a9:
1c:84:3c:01:c9:2c:fb:49:2e:8f:b9:d7:05:39:e2:
b7:c5:b0:8c:b9:4f:0b:75:bf:f2:df:b9:f1:68:37:
1b:a0:6e:ea:6b:76:00:dd:4f:b5:c7:7d:da:91:27:
49:13:0d:34:9d:f7:31:e2:76:3b:e2:d4:14:05:ed:
e0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:46:95:A0:7C:C7:F3:97:E7:91:E8:DC:CF:D7:FE:AA:58:B3:3D:F4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E9F32C206D3011F0AC3BF796DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.8.0/22
Signature Algorithm: sha256WithRSAEncryption
69:bc:de:a0:07:80:e4:4f:1a:21:29:a7:79:81:48:71:25:c1:
67:63:03:46:41:f2:85:81:70:4c:80:40:00:d4:fb:e8:e6:23:
43:d1:e5:e9:36:3b:8c:03:42:ec:4e:ae:dc:2a:7e:e0:a3:30:
42:1f:93:6b:15:a7:cd:cc:e8:79:bb:d0:d7:6e:6f:16:4a:38:
ba:14:48:58:df:5d:af:f2:19:76:56:b6:75:83:b6:33:6a:bf:
81:8b:33:13:79:70:7c:f1:9a:0c:79:16:9d:4f:73:4e:4d:d6:
7a:2c:db:18:62:a8:37:51:81:1a:8f:6a:87:0a:5a:8b:44:2e:
38:ce:02:dd:86:fe:ff:e8:ca:98:19:bf:17:95:1b:38:7e:15:
6d:47:56:6b:dd:02:00:09:e9:01:da:7b:d9:7b:b1:ac:98:a1:
8d:df:8f:0e:7c:87:28:c3:fc:67:dc:61:07:c9:7d:1c:c4:14:
70:de:af:76:6f:35:bd:51:64:a7:53:88:a3:57:25:0b:8e:58:
6a:1e:67:d7:cc:b8:a4:8a:04:8a:a9:b1:a4:56:41:a0:30:72:
b6:71:4e:49:61:de:0b:65:a3:9e:8e:70:a0:a7:f8:41:85:62:
02:b9:78:c5:3e:28:18:d8:f6:a0:b6:34:4f:0c:73:ad:06:9c:
e8:27:05:f5
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAZANMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwNzMwMTAzNTI1WhcNMjUwOTA4MTAzNTI1WjAYMRYw
FAYDVQQDEw02ODg5ZjU3Mi1lMjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0X716qiKGGNzSoz2o/EajCj9D2ADgelEj3/kn3/5vsR3EYmZjRnj3Y0v
oIqn3Wj6XtIrv4if3hkCGM00KbEthh2afaOnqXq+9YBKacE0qMbdJg5NuInju+A0
AkG/c4NppIyx3isd+MUGMFVStkpPndhCn8P8RAJEvB8SnGwy0vkw1FDt7B/1Gc10
o5yLOUvxmakcw7hR/PgyukxErXChYkn9nJoYPi+Rp+1deb4CEedcGF3IkkiC5weD
gQG/ZiZruakchDwBySz7SS6PudcFOeK3xbCMuU8Ldb/y37nxaDcboG7qa3YA3U+1
x33akSdJEw00nfcx4nY74tQUBe3gMQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOlG
laB8x/OX55Ho3M/X/qpYsz30MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FOUYzMkMyMDZEMzAxMUYwQUMzQkY3OTZEQUU0RUM5Qy5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmsQIMA0GCSqGSIb3DQEB
CwUAA4IBAQBpvN6gB4DkTxohKad5gUhxJcFnYwNGQfKFgXBMgEAA1Pvo5iND0eXp
NjuMA0LsTq7cKn7gozBCH5NrFafNzOh5u9DXbm8WSji6FEhY312v8hl2VrZ1g7Yz
ar+BizMTeXB88ZoMeRadT3NOTdZ6LNsYYqg3UYEaj2qHClqLRC44zgLdhv7/6MqY
Gb8XlRs4fhVtR1Zr3QIACekB2nvZe7GsmKGN348OfIcow/xn3GEHyX0cxBRw3q92
bzW9UWSnU4ijVyULjlhqHmfXzLikigSKqbGkVkGgMHK2cU5JYd4LZaOejnCgp/hB
hWICuXjFPigY2PagtjRPDHOtBpzoJwX1
-----END CERTIFICATE-----
Generated at Mon Aug 4 07:51:30 2025 by rpki-client