Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/781D0C9AB04911F09AD8DED0DAE4EC9C.roa
File: 781D0C9AB04911F09AD8DED0DAE4EC9C.roa (raw, json)
Hash identifier: 1Vd98/2/sMSC440cI56KRl6SVYREUsPEi6uhyMXcYh0=
Subject key identifier: 31:CC:98:DB:A3:9D:98:35:F3:B4:3B:0E:7C:61:6F:2A:76:C5:8A:E8
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 07ED
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/781D0C9AB04911F09AD8DED0DAE4EC9C.roa
Signing time: Thu 23 Oct 2025 19:50:05 +0000
ROA not before: Thu 23 Oct 2025 19:50:00 +0000
ROA not after: Sun 30 Nov 2025 19:50:00 +0000
asID: 22724
IP address blocks: 102.177.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2029 (0x7ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Oct 23 19:50:00 2025 GMT
Not After : Nov 30 19:50:00 2025 GMT
Subject: CN=68fa86ec-2cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0f:f1:cc:73:02:8e:9a:ea:02:3b:b2:b5:99:
cf:e0:de:b8:6f:79:8d:6d:31:e4:b8:7e:20:c7:d1:
3c:f5:da:de:04:53:20:a0:06:06:1e:52:f5:e1:25:
13:47:7e:23:f1:3b:37:13:8e:e8:8d:58:99:9d:98:
08:92:fd:81:0e:9c:89:9c:71:68:0d:64:15:f5:71:
e4:ef:54:75:78:35:34:a3:1b:f2:4a:7a:15:cd:80:
e0:83:ec:d4:c9:d3:02:24:f1:5e:f4:26:93:bb:cd:
e3:2c:90:e0:2b:b1:9e:b7:24:d0:d6:45:1f:00:1f:
bf:77:1c:f8:b9:4c:bb:38:06:ff:a0:6e:9e:11:78:
6f:e8:85:23:77:3a:19:8e:0f:d2:82:e2:3c:61:4a:
06:0d:8f:7c:75:74:8f:a7:4c:e3:7d:e8:b7:23:5d:
54:72:96:1e:03:87:e8:91:fc:3f:06:9d:4c:24:31:
ed:ce:99:41:06:10:3b:74:8f:90:d0:c0:5c:e5:f0:
26:d8:f5:9b:5b:d7:e9:f4:ca:4b:b6:3f:32:6a:45:
0b:c6:39:78:d0:3c:39:94:50:43:ca:d2:9b:9d:65:
b2:58:0b:a3:f6:43:24:f5:6b:2a:c2:d8:c1:ba:1c:
42:38:44:dd:4d:e3:65:89:cb:d9:6c:99:cd:76:8d:
fe:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CC:98:DB:A3:9D:98:35:F3:B4:3B:0E:7C:61:6F:2A:76:C5:8A:E8
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/781D0C9AB04911F09AD8DED0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.167.0/24
Signature Algorithm: sha256WithRSAEncryption
96:95:e6:11:18:62:ae:5f:10:f1:54:ec:06:39:e2:b6:3f:7a:
4a:6c:64:bb:58:c2:2c:ba:80:bc:68:89:9f:8e:b8:c9:a5:7e:
1b:79:16:8e:6b:99:2b:07:66:6a:90:48:8a:30:bd:c9:c0:25:
27:94:e1:06:eb:a2:20:64:b9:54:40:55:78:98:2e:22:8a:77:
b4:55:b4:a7:e2:dd:78:bb:a6:bd:71:52:db:e6:82:33:aa:b3:
20:f1:a5:d8:44:d9:ad:8c:48:e8:42:9e:2d:8d:50:3f:d9:78:
ba:24:3e:28:02:b3:0d:74:0c:5e:c9:bb:68:f4:15:ad:30:75:
23:76:ab:50:e5:6b:87:5c:a8:ce:a8:87:00:97:b8:c2:23:e4:
03:e9:86:44:6c:26:37:6b:ca:d4:82:c9:4f:49:da:b0:5a:67:
d6:0b:62:f8:af:a3:05:c2:3b:61:d1:00:73:f5:7f:30:a7:fb:
9f:0e:1e:00:59:f2:f4:ca:b8:1b:56:17:36:90:86:5e:11:da:
9d:ee:2d:c2:ba:09:fe:81:6e:a8:0b:d0:0e:42:35:6c:6f:19:
7e:b0:8a:d8:d7:46:9d:7c:ad:f4:8e:73:c2:1b:db:b6:f0:bd:
2c:27:23:2d:20:65:6e:f0:5e:9c:94:18:2b:7b:bb:48:95:e5:
ca:ae:3a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 15:19:21 2025 by rpki-client