Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/43B0C19E70A811F0BD8ABE9EDAE4EC9C.roa
File: 43B0C19E70A811F0BD8ABE9EDAE4EC9C.roa (raw, json)
Hash identifier: kpNIWqGT4YJ8C+vpdAQD9jq8+Ez+Gm5AkhIfWGQ3IsA=
Subject key identifier: 73:B0:56:08:26:D7:BD:DC:4E:D1:B6:EE:8F:8C:25:15:7F:78:89:A5
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0749
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/43B0C19E70A811F0BD8ABE9EDAE4EC9C.roa
Signing time: Sun 03 Aug 2025 20:27:25 +0000
ROA not before: Sun 03 Aug 2025 20:27:20 +0000
ROA not after: Tue 02 Sep 2025 20:27:20 +0000
asID: 23470
IP address blocks: 102.177.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1865 (0x749)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 3 20:27:20 2025 GMT
Not After : Sep 2 20:27:20 2025 GMT
Subject: CN=688fc62c-3583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f3:9d:88:1d:44:b5:ce:62:51:02:0f:c6:7c:
d0:c1:c1:64:fe:b3:ba:c7:ac:5d:64:71:8c:2e:a2:
1c:4a:b9:06:3d:ee:3d:a7:a3:d3:48:45:a3:ef:d4:
9c:1a:de:ab:37:97:b8:2b:d2:e1:18:19:60:6d:12:
2e:bd:ce:12:04:54:f9:c2:2b:ad:3a:c5:38:a3:55:
ee:ff:2e:71:8d:18:89:eb:5c:61:89:34:e9:33:2d:
37:60:65:ab:f3:ab:80:13:ca:3a:22:99:b1:99:2f:
29:04:db:0f:e5:25:ed:f1:0e:f2:77:17:be:3c:92:
35:12:d8:1d:ac:63:e7:09:71:88:44:f6:3f:67:2b:
b4:8c:28:28:c2:8a:ce:76:5a:2f:97:b9:eb:16:fe:
01:b6:b5:48:13:98:b6:c3:6b:c2:0b:89:10:16:e5:
14:f5:fe:2f:bb:ee:1d:1c:38:85:04:5b:55:e9:ee:
2c:43:33:a9:01:b3:f7:2d:3f:df:79:87:cb:6d:44:
f3:62:31:73:d6:23:7d:18:88:f5:b3:ef:1c:6b:58:
66:31:13:50:a9:30:49:e4:e9:e5:24:b6:f7:d9:35:
48:f5:a0:9a:06:77:69:9b:66:ce:dd:32:cd:32:35:
73:77:42:a5:a4:51:ca:fc:50:a2:43:e6:47:62:66:
a2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B0:56:08:26:D7:BD:DC:4E:D1:B6:EE:8F:8C:25:15:7F:78:89:A5
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/43B0C19E70A811F0BD8ABE9EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.182.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:5b:2c:17:cb:cf:76:2f:ce:99:99:dc:4b:1f:29:41:60:9c:
08:7a:e2:83:b6:83:ca:a7:fd:7b:22:9d:98:35:d8:82:1a:22:
43:61:f3:1b:0e:a9:8e:c7:db:7f:a9:b2:f8:03:c4:ce:98:b4:
06:01:4e:ca:01:79:36:dd:1a:e5:95:d6:9d:75:c0:38:ea:de:
74:40:0b:77:9e:b4:cf:b5:d8:d7:2b:56:8e:dc:a9:c5:e1:78:
74:b3:06:75:7a:f9:c1:0f:31:fb:91:af:ee:88:60:8b:2a:97:
ba:75:38:a6:4c:83:77:6a:d8:fa:44:fd:c6:e9:5b:25:75:37:
37:35:b4:9a:50:82:78:fc:51:b2:67:90:1a:df:24:a4:9a:fc:
0e:4d:d8:a2:8e:e6:f0:7d:b8:18:47:55:f9:be:0f:08:5c:31:
1c:34:33:e1:0f:9c:30:e0:aa:98:ff:51:66:d8:f3:94:85:24:
99:65:d4:de:18:3d:c4:71:d4:ad:b9:f9:a5:dd:27:40:57:44:
26:05:4c:c9:06:0b:7b:9c:7b:ae:d1:7e:ce:52:c7:13:aa:d7:
df:f7:59:a2:a3:e7:7f:f8:58:29:98:48:a3:38:61:82:f3:bc:
c9:a1:06:01:b7:93:e6:de:29:41:e1:23:c9:26:9d:da:71:dd:
be:c9:4c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:41:11 2025 by rpki-client