Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/A541AFB4B04911F08E6C9BD4DAE4EC9C.roa
File: A541AFB4B04911F08E6C9BD4DAE4EC9C.roa (raw, json)
Hash identifier: EdWWek2XxXrLkm6S2L7P3ZQrd79zFfZJ6ZWc+4FaF20=
Subject key identifier: 7E:72:90:F6:ED:AE:AF:9B:A6:D0:26:6B:12:43:56:91:C6:FD:52:80
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 07EF
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/A541AFB4B04911F08E6C9BD4DAE4EC9C.roa
Signing time: Thu 23 Oct 2025 19:51:20 +0000
ROA not before: Thu 23 Oct 2025 19:51:16 +0000
ROA not after: Sun 30 Nov 2025 19:51:16 +0000
asID: 22724
IP address blocks: 102.177.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 03:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2031 (0x7ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Oct 23 19:51:16 2025 GMT
Not After : Nov 30 19:51:16 2025 GMT
Subject: CN=68fa8738-6979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9e:8d:bf:e1:26:88:fa:13:f3:a1:75:4b:0b:
f1:1f:2b:30:b2:7d:87:56:27:6a:80:e3:38:7e:94:
f9:3c:07:dd:ed:18:6b:a2:e8:6e:6f:60:3d:b6:59:
07:f8:fe:ab:33:74:bc:2f:9e:d7:3b:22:99:e6:09:
9f:24:26:55:f6:d0:34:77:9c:78:1b:ba:5e:0f:6c:
90:a4:72:49:1e:1b:29:8e:1a:7c:ac:e4:c5:a9:8c:
64:4f:24:a5:e4:73:75:a8:b7:9e:25:2a:36:c7:67:
0b:52:a5:7e:18:55:09:d5:db:ea:3e:0a:f3:24:35:
9e:17:f1:56:da:43:7d:01:c1:38:fc:bf:ed:be:b0:
fc:f9:5d:aa:9c:dd:8c:d3:0d:7b:de:5e:d3:ed:af:
3e:ed:bf:2a:09:33:6e:a6:e6:93:cf:6e:5d:10:e6:
be:7f:6e:21:97:6c:b4:bc:aa:af:38:6e:96:d7:05:
6a:bf:ca:2f:f7:c8:d8:44:67:18:97:45:47:2f:4e:
c7:9b:5c:ac:4d:6e:4b:51:ae:10:6b:96:54:20:cd:
81:c6:c9:ee:2b:0b:26:ff:63:12:70:72:63:fd:f2:
ec:06:3d:7f:1d:cf:21:6f:b6:c4:04:d7:14:94:bd:
24:a9:6b:e9:61:4c:33:4d:ed:e0:db:78:92:ab:ee:
ec:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:72:90:F6:ED:AE:AF:9B:A6:D0:26:6B:12:43:56:91:C6:FD:52:80
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/A541AFB4B04911F08E6C9BD4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.168.0/24
Signature Algorithm: sha256WithRSAEncryption
80:b0:42:02:bf:be:29:ae:56:e8:0f:88:21:59:5d:25:f8:0e:
5c:35:a7:0a:9b:45:0e:6a:37:2d:2e:59:7b:9f:fc:68:0e:78:
e1:7e:d3:89:0a:a9:7a:06:69:a5:91:94:ff:d1:17:66:a3:17:
32:89:cf:75:f1:da:04:1a:e6:0c:70:ed:86:7e:19:33:13:26:
a9:b9:88:82:bb:c3:7c:8e:0f:d4:84:df:86:6c:4d:20:c1:92:
e8:d6:64:71:b7:08:f3:0e:a1:33:fb:03:17:34:e5:26:cb:1b:
02:4f:88:a8:13:cd:93:4d:0d:d8:55:06:4b:f1:6d:27:59:4c:
ac:48:c2:70:44:d6:bd:e1:a8:a4:8a:18:19:8e:03:05:c6:03:
89:75:62:a9:1a:5e:d1:94:21:e1:e2:41:ec:7e:6d:1a:3a:d8:
b1:90:44:65:b9:5c:96:3a:42:e6:8c:3b:b6:99:c0:e9:4d:eb:
eb:c0:b6:84:15:42:18:31:54:9d:ed:1c:47:9c:0f:4f:01:b7:
ba:ac:09:22:3e:59:89:bc:46:a6:4f:1b:e6:d4:52:c3:b9:02:
f8:32:80:fb:73:98:ae:e2:63:6b:63:84:89:aa:aa:80:bf:a2:
6d:c5:0d:cc:71:f1:a6:36:88:d1:5c:8c:17:1b:cc:8c:0b:6d:
e1:f0:5b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 02:57:03 2025 by rpki-client