Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/E4D6EBE870A811F09D8BE6A2DAE4EC9C.roa
File: E4D6EBE870A811F09D8BE6A2DAE4EC9C.roa (raw, json)
Hash identifier: KhPzOb5Q/r1I/qMg4YpHuENyqA7i6YjES8U96N77LE4=
Subject key identifier: 54:3D:8D:D6:56:45:15:5E:79:54:CE:37:03:58:6C:15:C7:FE:4C:34
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 074B
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/E4D6EBE870A811F09D8BE6A2DAE4EC9C.roa
Signing time: Sun 03 Aug 2025 20:31:55 +0000
ROA not before: Sun 03 Aug 2025 20:31:50 +0000
ROA not after: Wed 10 Sep 2025 20:31:50 +0000
asID: 203020
IP address blocks: 102.177.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:07:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1867 (0x74b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 3 20:31:50 2025 GMT
Not After : Sep 10 20:31:50 2025 GMT
Subject: CN=688fc73b-4107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:14:00:b9:96:bb:c0:d5:7f:05:06:96:54:b6:
7e:8f:94:ff:77:a6:dd:19:bc:2e:4d:54:d6:60:42:
1a:d4:9a:e1:63:4a:dd:7f:0a:71:ab:8f:30:46:9b:
ae:92:5a:c1:c8:b8:fa:56:d8:f5:05:f9:6b:83:95:
87:f6:8e:68:c7:b1:f5:31:e6:a6:63:85:ff:70:d9:
3d:c2:9b:62:ca:83:47:27:3a:36:e4:f1:21:ea:ae:
d6:84:70:4c:df:ed:02:08:b1:45:01:67:cc:84:e5:
4f:23:cc:9d:33:c9:6c:56:ba:b7:9b:57:9e:14:be:
0c:6e:ec:1c:7f:3a:92:d5:58:9c:1e:f1:55:b1:81:
47:a8:10:54:e4:fc:01:14:ae:bd:27:09:81:ab:1d:
81:36:cc:70:c6:14:b0:b0:eb:66:13:1d:f4:59:8f:
e3:b9:6a:72:4b:0a:60:bf:27:b1:3a:87:b8:09:72:
82:39:e0:f9:e6:94:38:d0:9a:79:b2:39:78:6b:c4:
03:c9:92:9d:25:7b:4c:89:84:43:f2:db:ba:5f:ca:
c2:a5:46:34:d8:2c:4c:f5:b0:13:23:f0:7e:b6:a1:
6d:86:19:02:64:92:69:ec:75:15:57:a0:d3:27:cf:
21:49:55:bd:46:7c:45:bf:de:bd:bd:36:ce:7f:1b:
92:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3D:8D:D6:56:45:15:5E:79:54:CE:37:03:58:6C:15:C7:FE:4C:34
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/E4D6EBE870A811F09D8BE6A2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.191.0/24
Signature Algorithm: sha256WithRSAEncryption
44:80:fd:61:c9:a2:eb:a1:fc:66:20:b0:66:ab:a1:ec:4f:4e:
e9:2f:84:ce:e5:85:c7:0f:57:0d:00:3e:ed:53:75:00:40:ee:
ec:42:53:0c:5a:de:c5:33:34:ac:4f:8c:c9:c0:f1:17:49:62:
26:ce:21:9e:0e:b8:eb:ce:95:f8:9e:65:f3:31:39:d1:08:bc:
b1:44:40:7d:48:e4:0c:eb:a4:0d:c8:9e:d8:27:0e:ee:7b:b0:
d1:59:22:a1:90:32:ed:f4:68:91:be:59:40:2e:20:04:f4:df:
ea:6c:36:24:e1:f2:c3:50:23:9c:ec:96:28:e5:7f:01:e5:0f:
b3:25:ec:3b:20:a3:ff:b0:5e:c9:ac:70:b9:b8:ec:81:81:04:
6f:1c:1a:53:09:dd:92:a1:6d:73:fe:39:f6:22:52:5b:68:00:
eb:2c:b0:33:79:d5:78:c3:f4:50:03:17:f0:5d:10:45:47:d6:
d8:b5:fa:49:b1:11:13:d4:d6:d5:0d:53:ef:53:1d:5f:05:4f:
7f:6b:0d:fc:3c:5a:d8:17:6b:09:ba:a5:c8:75:9f:59:a3:dc:
ff:85:d0:c1:38:92:cd:36:27:48:6f:4a:a4:37:56:95:a9:aa:
b6:38:96:a1:62:2d:25:a7:fb:de:2b:2f:02:46:8a:50:85:5a:
3c:c2:19:7a
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB0swDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yNTA4MDMyMDMxNTBaFw0yNTA5MTAyMDMxNTBaMBgxFjAU
BgNVBAMTDTY4OGZjNzNiLTQxMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC5FAC5lrvA1X8FBpZUtn6PlP93pt0ZvC5NVNZgQhrUmuFjSt1/CnGrjzBG
m66SWsHIuPpW2PUF+WuDlYf2jmjHsfUx5qZjhf9w2T3Cm2LKg0cnOjbk8SHqrtaE
cEzf7QIIsUUBZ8yE5U8jzJ0zyWxWurebV54Uvgxu7Bx/OpLVWJwe8VWxgUeoEFTk
/AEUrr0nCYGrHYE2zHDGFLCw62YTHfRZj+O5anJLCmC/J7E6h7gJcoI54PnmlDjQ
mnmyOXhrxAPJkp0le0yJhEPy27pfysKlRjTYLEz1sBMj8H62oW2GGQJkkmnsdRVX
oNMnzyFJVb1GfEW/3r29Ns5/G5LxAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUVD2N
1lZFFV55VM43A1hsFcf+TDQwHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4L0U0RDZFQkU4NzBBODExRjA5RDhCRTZBMkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsb8wDQYJKoZIhvcNAQEL
BQADggEBAESA/WHJouuh/GYgsGaroexPTukvhM7lhccPVw0APu1TdQBA7uxCUwxa
3sUzNKxPjMnA8RdJYibOIZ4OuOvOlfieZfMxOdEIvLFEQH1I5AzrpA3IntgnDu57
sNFZIqGQMu30aJG+WUAuIAT03+psNiTh8sNQI5zslijlfwHlD7Ml7Dsgo/+wXsms
cLm47IGBBG8cGlMJ3ZKhbXP+OfYiUltoAOsssDN51XjD9FADF/BdEEVH1ti1+kmx
ERPU1tUNU+9THV8FT39rDfw8WtgXawm6pch1n1mj3P+F0ME4ks02J0hvSqQ3VpWp
qrY4lqFiLSWn+94rLwJGilCFWjzCGXo=
-----END CERTIFICATE-----
Generated at Mon Aug 4 14:54:32 2025 by rpki-client