Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/7514FC86B87011F0BD87C597DAE4EC9C.roa
File: 7514FC86B87011F0BD87C597DAE4EC9C.roa (raw, json)
Hash identifier: wCWDXqKbBGDC4R1YcR/DlqDK7b5Qulk61IYd/AsxWM8=
Subject key identifier: 40:B6:24:73:1A:D4:41:DA:DF:09:52:98:E3:42:D6:D3:88:90:EE:8D
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0807
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/7514FC86B87011F0BD87C597DAE4EC9C.roa
Signing time: Mon 03 Nov 2025 04:49:19 +0000
ROA not before: Mon 03 Nov 2025 04:49:13 +0000
ROA not after: Wed 03 Dec 2025 04:49:13 +0000
asID: 397423
IP address blocks: 102.177.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2055 (0x807)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Nov 3 04:49:13 2025 GMT
Not After : Dec 3 04:49:13 2025 GMT
Subject: CN=6908344f-20bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:99:ab:20:1b:2e:4b:db:f9:78:01:6e:28:2d:
9c:d4:d1:7b:a9:67:73:1f:bf:80:2d:b8:84:95:5f:
5e:32:cd:19:f8:d2:f6:3e:a3:8b:06:c9:98:ec:f2:
ba:6e:72:eb:b4:60:be:f0:0b:bf:71:56:46:2f:3a:
c2:8e:b3:e5:86:df:55:df:62:40:98:98:c2:ab:62:
f3:33:3f:b5:20:8e:4e:e0:f1:d6:95:ab:9e:95:a2:
03:d6:30:92:0d:90:35:73:7a:12:4a:2a:22:99:d2:
ec:2f:e1:28:db:08:27:4b:34:cd:17:c1:27:db:42:
2b:c6:88:5f:cf:9a:77:a3:a4:c6:6f:37:35:6d:ce:
c3:82:48:78:f1:7d:e1:d6:e9:e1:9d:7a:f2:35:f5:
d6:00:8a:d3:f2:27:34:04:0c:82:e8:9e:db:6c:7e:
ca:71:60:69:eb:a4:89:66:93:c9:b1:50:45:91:4d:
b8:ea:30:89:c2:84:e5:07:d9:e9:f6:25:01:2d:e4:
dc:3f:97:e5:d6:7b:13:79:a5:b3:1a:50:1e:77:cc:
b0:bd:f0:5c:7f:4a:ab:79:3c:22:2c:53:e2:7e:e7:
6c:ad:01:6e:f7:e5:da:fb:a1:15:3f:71:48:92:8a:
6e:2f:9d:22:e3:fb:d6:c2:4f:fa:c1:47:a2:a7:0f:
65:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:B6:24:73:1A:D4:41:DA:DF:09:52:98:E3:42:D6:D3:88:90:EE:8D
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/7514FC86B87011F0BD87C597DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.182.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:8a:8a:f2:c4:a0:e4:8e:23:d7:a7:05:dc:a3:df:22:09:c6:
bf:2c:d4:20:98:d4:6e:26:ce:f2:f1:f6:14:54:9a:e3:da:06:
9e:79:17:ce:31:cf:2f:77:00:4a:9a:a8:73:94:2b:14:7f:55:
95:20:0f:17:f1:01:16:aa:d2:8c:ac:71:45:82:29:08:47:e8:
7f:bc:0b:ad:8d:a6:f0:54:72:1e:99:8a:ff:88:e3:5e:8d:b3:
99:64:51:10:78:75:bc:c4:f0:01:38:0f:80:1e:5f:52:50:2c:
b6:c2:31:dd:a7:22:92:4c:96:18:33:e5:65:8c:0b:23:5a:ba:
a4:eb:29:21:e4:60:7d:18:c2:b2:5b:91:91:97:01:6e:b5:cf:
22:76:a8:87:78:5e:7a:16:57:80:29:c5:64:20:49:7f:be:c4:
aa:2c:62:7a:d5:96:94:cc:76:3a:c1:c1:d6:ac:2e:af:ea:b9:
55:46:bc:36:7a:c5:e9:24:cb:cf:bb:eb:26:b3:80:d6:21:9f:
1f:ec:e7:16:6f:7e:e8:58:5c:58:d3:7c:c6:8e:ac:f5:b3:ff:
e8:af:bc:75:c7:01:67:fe:37:ef:3e:19:85:3f:59:db:58:4c:
46:d6:fb:14:75:fb:a6:16:77:fe:c0:cf:00:3f:1d:03:5b:61:
fd:9c:ac:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:53:50 2025 by rpki-client