Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/9CBB6A16B89F11F09D6125C8DAE4EC9C.roa
File: 9CBB6A16B89F11F09D6125C8DAE4EC9C.roa (raw, json)
Hash identifier: I4FvXIPXYma3akL8H7PqrYGF7Nxdgbnt/N+8Tv+Xz2I=
Subject key identifier: 42:45:A5:BC:F7:82:ED:D9:0B:B1:09:6C:16:76:B5:2E:72:92:D4:B3
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0809
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/9CBB6A16B89F11F09D6125C8DAE4EC9C.roa
Signing time: Mon 03 Nov 2025 10:26:52 +0000
ROA not before: Mon 03 Nov 2025 10:26:45 +0000
ROA not after: Wed 03 Dec 2025 10:26:45 +0000
asID: 397423
IP address blocks: 102.177.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2057 (0x809)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Nov 3 10:26:45 2025 GMT
Not After : Dec 3 10:26:45 2025 GMT
Subject: CN=6908836c-ab5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6e:b4:72:7c:61:91:51:af:b3:75:f0:c3:71:
8b:2f:de:e9:59:30:e7:27:87:9f:84:f6:b6:6f:ad:
58:c2:43:bc:9d:5c:c4:8e:a7:25:08:e3:23:28:26:
51:da:50:ef:52:71:e6:cb:15:c9:32:79:03:3e:d6:
df:ec:6a:53:2f:ce:79:88:62:97:c3:93:03:4a:52:
b7:28:53:17:6c:ee:ae:4d:63:3d:1e:7e:b0:43:fa:
ec:59:2f:32:ca:9f:01:df:8d:4d:51:79:5b:39:e2:
90:7e:1c:b5:d8:d6:75:fa:20:61:74:08:fc:69:66:
09:3e:8e:7d:f8:cc:86:24:96:2a:93:fd:6d:1c:89:
60:03:78:8c:1c:65:9d:00:2e:02:1e:1d:43:9e:5b:
89:4b:d7:fd:3d:be:9f:41:4c:6c:fb:92:be:ba:02:
3e:88:b8:40:fe:f1:5d:28:5d:d7:df:b3:79:3c:de:
4c:82:ca:52:29:19:12:54:25:10:46:6b:85:56:04:
d2:ab:d8:35:51:01:21:e0:b6:4c:26:e8:27:c3:3d:
af:91:da:21:f6:c2:fc:9d:7e:00:f0:8d:66:8a:16:
60:51:09:62:fd:e3:54:52:be:51:22:e4:f9:c3:08:
25:3f:4b:35:b6:d6:90:e2:b9:73:cc:4f:c9:d7:80:
c3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:45:A5:BC:F7:82:ED:D9:0B:B1:09:6C:16:76:B5:2E:72:92:D4:B3
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/9CBB6A16B89F11F09D6125C8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.181.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:d5:4a:bf:e8:89:b9:67:e0:6d:59:d1:9d:82:56:fd:dc:fd:
e3:48:2a:72:18:35:e2:09:64:ee:cf:8c:b0:b1:a9:f8:9c:6f:
a5:ce:1a:7c:09:b7:df:a0:b9:1a:54:c7:a5:9f:74:39:b0:e1:
d2:da:98:09:c1:98:6e:8e:b9:96:1e:39:da:a5:f8:43:96:e4:
c5:39:6c:88:b6:da:37:28:7b:ab:f3:58:69:d5:57:20:5a:bd:
b8:92:75:03:8b:a3:33:82:34:85:6a:51:f5:cc:bd:0a:2a:57:
8c:61:17:c1:d3:29:50:d7:c3:e2:cf:9f:58:73:1a:7f:63:81:
1d:df:17:50:3b:f0:bd:6a:ba:24:d8:a7:05:a0:ce:64:99:e1:
d1:40:7a:44:e5:8f:97:11:b4:d5:38:58:58:32:dd:ac:a1:c1:
d4:2f:8c:37:29:b6:cc:31:1c:b9:28:c4:17:3e:66:4d:ce:d7:
f7:f4:8a:da:25:3f:e3:e4:03:43:a5:a7:3e:b0:d4:a0:47:d6:
f3:2d:92:91:87:c7:50:c9:66:bf:b7:37:c3:9c:a0:7b:d3:bc:
bd:56:2e:11:82:46:67:f5:cf:d6:2a:2b:05:0d:79:b6:79:50:
e4:2b:12:09:0e:b1:f9:9a:ee:07:71:4d:35:b0:37:34:04:d3:
d3:1b:cf:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:36:12 2025 by rpki-client