Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/352B670AB86F11F0866E818FDAE4EC9C.roa
File: 352B670AB86F11F0866E818FDAE4EC9C.roa (raw, json)
Hash identifier: rVyL6vY8r4oNNTgFTLADJWqRFDzyBHxCh/02CBg+5bs=
Subject key identifier: 14:80:1F:70:34:B7:0B:60:25:B1:7C:CF:29:0C:F4:10:1B:C9:82:9D
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0803
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/352B670AB86F11F0866E818FDAE4EC9C.roa
Signing time: Mon 03 Nov 2025 04:40:24 +0000
ROA not before: Mon 03 Nov 2025 04:40:16 +0000
ROA not after: Wed 03 Dec 2025 04:40:16 +0000
asID: 23470
IP address blocks: 102.177.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2051 (0x803)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Nov 3 04:40:16 2025 GMT
Not After : Dec 3 04:40:16 2025 GMT
Subject: CN=69083238-bcf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ae:df:21:68:86:89:86:24:da:a8:89:1e:88:
b1:77:34:f8:fe:84:12:22:1c:c6:d4:6b:f8:29:92:
3e:c3:90:e9:fb:01:2f:c3:b0:1e:3d:a1:8e:2e:74:
04:15:48:fc:39:46:f8:9d:4e:b4:6f:44:8b:5b:6f:
27:6c:96:58:12:d1:12:ec:69:68:5a:96:3f:a3:01:
d4:e8:b3:5d:59:8c:83:e3:61:94:19:50:1f:29:05:
8e:1f:b8:62:17:a3:56:b9:98:5f:1d:3c:92:d5:54:
da:35:6d:c4:0c:b2:dd:b9:d1:45:18:ea:ec:1d:a5:
18:f6:ae:84:e1:54:64:e8:29:f5:06:76:e9:e0:4a:
a4:5b:72:99:c8:2d:7b:59:a8:e5:ed:4a:7a:4f:4f:
29:63:d2:5b:6e:bb:aa:ea:02:df:2d:93:9e:57:cf:
eb:d2:9e:71:10:d0:fb:b9:fe:a1:bc:13:7e:34:85:
3e:0b:51:81:69:49:10:4e:82:46:b1:67:30:a5:fd:
f2:7b:2a:cf:09:ad:75:99:51:33:d4:c3:bc:89:bb:
52:b9:2a:31:9e:06:37:de:d2:e4:7f:d4:9f:99:72:
70:69:b0:60:25:b3:fc:17:4f:eb:cf:d8:08:51:77:
6f:35:34:5f:cb:f2:18:bb:85:d2:07:ca:21:08:73:
35:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:80:1F:70:34:B7:0B:60:25:B1:7C:CF:29:0C:F4:10:1B:C9:82:9D
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/352B670AB86F11F0866E818FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.182.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:fe:a5:ed:ae:0b:24:32:53:37:47:c7:96:f2:7f:c9:94:a1:
54:9d:30:50:95:a6:29:2e:44:69:08:4d:4e:1c:1e:b8:39:88:
49:a7:73:8f:97:fd:4b:ed:d6:17:ad:fb:e8:1f:e9:c6:2b:c8:
78:f3:d8:f3:b9:d7:48:3c:cc:36:b7:55:70:cc:39:a7:f9:a8:
ce:db:d4:94:85:fd:68:62:2f:6a:dd:58:24:8d:a1:0c:f4:06:
77:67:ce:46:d7:34:30:b6:33:60:cf:0d:d6:66:cf:c6:e2:60:
5c:34:dd:0d:80:9f:ef:14:1a:39:fa:88:65:4f:5b:3d:ab:c7:
cf:e8:40:69:d1:6a:7d:cd:1f:19:66:37:71:06:08:3d:6d:12:
ad:5a:34:65:bd:43:28:02:9c:78:b1:4a:58:d4:0a:eb:8a:79:
9d:52:37:6c:5a:2a:51:7d:f5:f9:cd:8e:59:7f:f0:dc:fa:97:
c5:24:b0:fc:ee:8b:54:bf:49:23:d2:b4:3b:d1:62:d7:e8:75:
f3:2e:00:bb:55:20:83:73:86:1f:09:81:44:b4:2f:80:e2:f4:
37:72:22:e8:7f:ae:5f:a1:79:c6:9b:4a:07:b2:5d:c2:4e:7a:
69:15:5d:f4:0a:b8:97:79:50:7b:5d:9a:13:d6:ea:6a:2b:fc:
1b:6d:49:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:04:39 2025 by rpki-client