Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/DBDA3FB470A711F0B88B119EDAE4EC9C.roa
File: DBDA3FB470A711F0B88B119EDAE4EC9C.roa (raw, json)
Hash identifier: axiTfA/diVYZQy4/dHV87nWcafawVELUdWWjzoPj6fs=
Subject key identifier: 53:15:B7:13:BC:8C:2A:24:5E:7F:5C:27:7B:77:21:F3:C1:28:97:FE
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0745
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/DBDA3FB470A711F0B88B119EDAE4EC9C.roa
Signing time: Sun 03 Aug 2025 20:24:30 +0000
ROA not before: Sun 03 Aug 2025 20:24:24 +0000
ROA not after: Thu 28 Aug 2025 20:24:24 +0000
asID: 200113
IP address blocks: 102.177.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1861 (0x745)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 3 20:24:24 2025 GMT
Not After : Aug 28 20:24:24 2025 GMT
Subject: CN=688fc57e-901b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4f:b6:08:f2:de:10:8a:d2:8b:cd:6e:e3:52:
04:34:a4:81:56:fb:36:18:25:a7:0b:44:a3:97:ae:
f7:41:ba:3b:ee:ce:ac:c4:f6:8f:0b:92:5c:9a:81:
38:45:55:68:d1:ff:1c:ce:51:df:d9:ab:c6:23:93:
90:10:dc:1b:15:db:d9:7c:97:22:ec:9b:7c:19:50:
30:68:a4:f5:e6:c1:9f:aa:af:7e:9c:90:e4:56:e7:
54:a8:98:34:80:2c:d0:9c:19:31:01:5b:05:bb:12:
6f:80:89:b5:c6:a5:ed:89:20:22:ae:d4:17:93:3c:
e9:91:5c:02:df:63:a9:d6:fe:eb:f0:57:1d:50:01:
9d:64:fc:18:11:63:2b:0d:6c:31:8f:8f:f3:7d:fe:
45:f4:8b:8e:54:1e:43:f1:0d:95:14:96:1e:b2:33:
5b:b1:96:c9:3c:a0:e1:9e:67:f3:cb:6a:ba:e4:f4:
1d:a4:61:18:2a:10:d6:87:91:7e:21:a9:82:5d:9e:
46:be:b8:f4:d0:a3:12:16:64:20:d6:7f:8a:88:05:
d7:c8:f0:85:29:54:f5:84:b2:37:04:eb:7f:e6:b8:
07:89:e6:cd:45:17:1f:71:92:48:ef:40:48:5c:2a:
a6:6b:34:78:76:99:2b:3c:7e:27:22:40:94:78:55:
60:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:15:B7:13:BC:8C:2A:24:5E:7F:5C:27:7B:77:21:F3:C1:28:97:FE
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/DBDA3FB470A711F0B88B119EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.181.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:76:44:19:ea:b2:42:f7:9e:68:24:fa:31:59:65:36:40:d9:
58:2e:ca:f2:b2:ba:38:1c:67:4d:19:7a:cd:fe:b0:d8:24:d0:
67:ec:be:f1:10:0f:fa:ae:05:57:59:6a:90:22:f0:6e:2d:03:
86:5b:c1:f9:17:7d:e6:30:ed:cc:26:89:84:2c:d3:05:cc:c5:
5b:c5:23:5d:fd:67:66:fd:e3:6d:33:e6:87:ef:4f:eb:1c:8f:
33:41:ad:0d:19:a4:f6:db:a2:22:46:84:40:6c:77:a0:8e:56:
a2:20:98:68:38:9b:4f:80:49:51:b8:c7:0f:ba:d4:ce:06:04:
1d:8c:bb:3e:a0:10:cc:34:5e:6a:ac:79:63:2f:1d:0e:72:b4:
23:3e:61:29:c4:6d:a5:5b:a9:18:1f:40:21:fd:37:87:de:4e:
03:3e:5a:59:ab:cc:50:e0:99:c6:33:69:c1:8e:fd:80:ad:60:
5d:29:82:a7:15:83:80:2a:fd:bd:ba:c4:68:c3:30:33:1a:b9:
fa:39:2f:38:2f:fd:f7:cd:13:38:09:34:44:e3:96:67:69:57:
7d:98:7b:28:d0:04:3e:44:4b:5a:57:66:a2:da:60:4d:ba:39:
2c:58:b5:97:5a:23:85:19:d5:4e:fe:47:e9:cb:a3:da:a8:37:
32:73:c4:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:28:09 2025 by rpki-client