Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/F4BCC95070A411F0BBDB9A8CDAE4EC9C.roa
File: F4BCC95070A411F0BBDB9A8CDAE4EC9C.roa (raw, json)
Hash identifier: 83F8y3L0D+zHhgnFhLiisgnDmRUE03Z7p+znIjRXZf4=
Subject key identifier: 2F:63:A0:F1:40:B7:FA:0A:F5:AE:C3:80:7C:C9:E9:60:9F:89:56:3F
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0741
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/F4BCC95070A411F0BBDB9A8CDAE4EC9C.roa
Signing time: Sun 03 Aug 2025 20:03:43 +0000
ROA not before: Sun 03 Aug 2025 20:03:39 +0000
ROA not after: Thu 28 Aug 2025 20:03:39 +0000
asID: 211826
IP address blocks: 102.177.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1857 (0x741)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 3 20:03:39 2025 GMT
Not After : Aug 28 20:03:39 2025 GMT
Subject: CN=688fc09f-5c34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:aa:28:a6:04:60:24:10:be:da:dd:b7:22:d0:
32:26:42:81:6a:28:a6:06:3f:38:b7:02:10:dc:60:
c2:1d:44:77:b8:dd:f3:48:d1:b3:b2:11:f3:0e:1f:
48:9f:35:0c:cc:d5:24:3a:c5:91:0e:1b:9e:2a:43:
da:47:7d:80:22:32:51:b5:d3:92:13:af:50:51:0d:
e6:a6:c4:1f:cd:19:5c:77:b5:98:f5:62:46:d4:70:
96:85:e5:a8:a6:98:61:3b:0f:dd:fa:1b:a3:4c:35:
b9:14:23:03:03:dd:19:51:21:de:c4:4b:1d:64:37:
e0:b8:0e:c5:89:0f:15:78:e6:97:7c:9f:7c:c3:eb:
21:f5:26:d6:9c:1e:8a:f4:12:47:53:fc:da:8a:4e:
19:0f:20:bd:5e:82:85:ad:0d:fc:91:2d:2c:57:87:
2e:98:b9:c9:4e:fc:4a:65:98:b7:9b:26:90:08:0f:
c9:2e:b5:76:17:db:50:5d:45:ce:14:d6:ce:52:15:
17:8a:0c:66:af:eb:59:3e:9b:08:c7:12:4c:16:55:
ab:3a:ba:5c:8e:68:fa:e3:3d:4e:87:f1:23:e7:ed:
58:fd:f4:b5:60:e3:e4:78:b3:08:8c:d7:88:59:4e:
dd:ac:54:6a:5f:ed:9b:8b:5f:da:8d:3a:d7:c6:fc:
34:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:63:A0:F1:40:B7:FA:0A:F5:AE:C3:80:7C:C9:E9:60:9F:89:56:3F
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/F4BCC95070A411F0BBDB9A8CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.177.0/24
Signature Algorithm: sha256WithRSAEncryption
74:7a:17:b3:93:5b:ad:ad:eb:7e:73:7a:e5:30:f3:dc:01:ce:
6a:77:42:bc:c5:c6:64:74:0e:97:f3:77:6b:ba:df:1f:5b:01:
62:35:aa:47:66:ce:e4:fe:8c:dd:ef:a0:16:31:21:ae:29:04:
fd:55:4e:ce:da:05:51:5a:b6:d9:f6:19:cb:2f:f0:9a:cc:9f:
9a:85:10:19:b5:10:df:53:fe:58:47:c4:53:4f:1d:57:8f:a4:
c0:0d:80:ab:25:1d:f1:2d:3b:34:5e:d3:78:b0:fb:07:fb:c2:
bc:6f:c7:43:f7:7a:10:85:83:52:0c:65:a1:ec:ce:15:9a:29:
ba:20:a0:f7:d0:16:3c:04:7c:3c:29:8e:ba:6e:89:a5:ff:66:
63:f8:4b:ec:b3:cf:64:5b:b8:9b:f4:7c:93:3b:13:89:57:7a:
52:f9:90:f9:97:14:63:c0:7a:8c:82:e9:32:14:42:f7:8e:91:
72:36:d7:2c:9e:69:e6:8c:14:a3:fe:fe:9e:3e:40:03:08:10:
49:02:91:35:e5:67:81:7f:19:ba:03:d0:39:c3:3a:67:23:2b:
fb:77:89:6e:58:57:23:ed:90:a7:03:45:20:94:4e:4a:78:38:
c5:cf:29:f9:61:99:81:c1:3c:fe:61:c9:90:c0:90:ce:8f:97:
b3:cb:ce:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 09:23:22 2025 by rpki-client