Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/457A28BEB54D11F085FD31E0DAE4EC9C.roa
File: 457A28BEB54D11F085FD31E0DAE4EC9C.roa (raw, json)
Hash identifier: WvjKJ61Ybf7E0w2qd2kPgyK95N5i97V0MyHCGmY1W6o=
Subject key identifier: 04:C7:29:59:2C:3D:F1:DB:76:F7:CD:5F:A2:86:C5:10:E4:79:1D:48
Certificate issuer: /CN=F36F6034AF/serialNumber=C702799EA4BD5DBA3ED3D069A7191B941B5A779A
Certificate serial: 082E
Authority key identifier: C7:02:79:9E:A4:BD:5D:BA:3E:D3:D0:69:A7:19:1B:94:1B:5A:77:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/457A28BEB54D11F085FD31E0DAE4EC9C.roa
Signing time: Thu 30 Oct 2025 04:59:53 +0000
ROA not before: Thu 30 Oct 2025 04:59:49 +0000
ROA not after: Sat 30 Oct 2027 04:59:49 +0000
asID: 64267
IP address blocks: 196.240.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.mft
rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2094 (0x82e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F6034AF, serialNumber=C702799EA4BD5DBA3ED3D069A7191B941B5A779A
Validity
Not Before: Oct 30 04:59:49 2025 GMT
Not After : Oct 30 04:59:49 2027 GMT
Subject: CN=6902f0c9-70ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b4:da:f5:00:c0:89:02:be:0a:55:70:18:6a:
00:c6:5f:6a:ff:a4:5f:3f:b7:59:f2:9a:30:1d:a2:
bd:6b:e7:95:c8:f8:5e:9c:75:b6:d9:7d:05:36:40:
25:fa:d2:91:7e:13:04:a7:21:a6:f5:73:f9:28:da:
0d:82:72:28:dd:04:24:37:11:dd:d3:55:c2:3c:16:
77:3c:1a:54:cf:4d:9d:4c:ea:23:98:70:ac:2c:22:
32:ea:b8:8a:7b:e7:33:51:18:07:6a:6b:78:fa:be:
da:06:41:b6:29:fc:c9:05:b9:e1:92:05:fa:d4:e7:
25:3c:81:61:b1:59:a9:3e:7c:cb:5f:4c:16:97:57:
43:ba:3e:7e:7a:01:b6:75:2f:9b:ba:51:bd:8a:a7:
94:64:ba:ac:80:0f:12:c7:3d:de:1c:63:0a:b9:e9:
ed:74:2c:a9:83:7a:d2:87:a9:77:7c:8e:6c:f5:d9:
32:fe:28:a8:6b:af:62:3a:1f:69:0a:05:92:8c:e6:
16:20:5f:9c:24:1e:7e:c8:43:f3:f5:b7:1e:b1:a9:
fd:e3:ca:b6:05:1b:1b:b7:2c:d0:f5:bf:90:33:9b:
4c:fc:03:67:10:38:7d:50:3d:90:ea:68:a9:8a:89:
a8:a9:9b:81:07:00:17:64:5a:1b:96:3e:0d:86:25:
06:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:C7:29:59:2C:3D:F1:DB:76:F7:CD:5F:A2:86:C5:10:E4:79:1D:48
X509v3 Authority Key Identifier:
keyid:C7:02:79:9E:A4:BD:5D:BA:3E:D3:D0:69:A7:19:1B:94:1B:5A:77:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/457A28BEB54D11F085FD31E0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.240.194.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:4c:70:f5:77:0b:3a:61:fe:6a:ae:c7:71:0d:6f:1f:b9:d7:
c9:13:88:f4:cf:2d:99:c8:7a:1a:cc:8c:db:71:8e:f5:51:93:
70:6e:31:a3:ad:58:88:17:fc:59:e8:d3:76:a8:eb:7e:25:05:
dd:a7:c5:b2:6c:dc:6b:e4:16:1d:3e:37:61:41:d5:62:a9:bb:
4d:75:de:f6:c0:d8:ca:49:e1:41:ef:36:7d:47:76:55:84:01:
3c:11:2d:fb:40:c9:9c:d1:f3:e9:6b:57:7d:80:36:64:b5:dc:
7e:9e:fc:f3:33:15:56:ae:0b:b9:14:fe:c3:17:d0:9c:3a:ea:
12:2d:2c:f6:95:0e:70:d3:f0:5b:5e:0a:1d:74:ca:93:97:a8:
4f:4a:9a:ec:e4:7b:9f:50:5a:43:d3:9f:30:27:a6:79:2a:03:
ea:f1:c3:40:01:46:90:e6:b8:29:dc:7c:7d:e9:21:b8:ed:a8:
af:1c:03:d2:f9:c3:7a:59:ac:b0:76:83:53:2e:9b:ec:be:f3:
fa:f5:0b:9c:ed:87:9a:fd:a9:5b:13:83:9d:2f:60:d3:26:3c:
af:5e:63:8e:76:ea:42:9c:9d:42:b9:07:df:2d:44:7c:d1:da:
f9:06:96:6f:96:d7:bd:c2:ff:df:0e:28:c3:97:2c:61:9b:a0:
0a:7f:a6:f9
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCC4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RjYwMzRBRjExMC8GA1UEBRMoQzcwMjc5OUVBNEJENURCQTNFRDNEMDY5QTcxOTFC
OTQxQjVBNzc5QTAeFw0yNTEwMzAwNDU5NDlaFw0yNzEwMzAwNDU5NDlaMBgxFjAU
BgNVBAMTDTY5MDJmMGM5LTcwYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC5tNr1AMCJAr4KVXAYagDGX2r/pF8/t1nymjAdor1r55XI+F6cdbbZfQU2
QCX60pF+EwSnIab1c/ko2g2CcijdBCQ3Ed3TVcI8Fnc8GlTPTZ1M6iOYcKwsIjLq
uIp75zNRGAdqa3j6vtoGQbYp/MkFueGSBfrU5yU8gWGxWak+fMtfTBaXV0O6Pn56
AbZ1L5u6Ub2Kp5RkuqyADxLHPd4cYwq56e10LKmDetKHqXd8jmz12TL+KKhrr2I6
H2kKBZKM5hYgX5wkHn7IQ/P1tx6xqf3jyrYFGxu3LND1v5Azm0z8A2cQOH1QPZDq
aKmKiaipm4EHABdkWhuWPg2GJQYFAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUBMcp
WSw98dt2981foobFEOR5HUgwHwYDVR0jBBgwFoAUxwJ5nqS9Xbo+09BppxkblBta
d5owDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkY2MDM0L0Q5MTY3NThBOTBGQzExRUE5RDgxMzA2RUY4QUVBMjI4L3h3SjVu
cVM5WGJvLTA5QnBweGtibEJ0YWQ1by5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3h3SjVucVM5WGJvLTA5QnBweGtibEJ0YWQ1by5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkY2MDM0L0Q5MTY3NThBOTBGQzExRUE5RDgxMzA2RUY4
QUVBMjI4LzQ1N0EyOEJFQjU0RDExRjA4NUZEMzFFMERBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADE8MIwDQYJKoZIhvcNAQEL
BQADggEBAC1McPV3Czph/mqux3ENbx+518kTiPTPLZnIehrMjNtxjvVRk3BuMaOt
WIgX/Fno03ao634lBd2nxbJs3GvkFh0+N2FB1WKpu0113vbA2MpJ4UHvNn1HdlWE
ATwRLftAyZzR8+lrV32ANmS13H6e/PMzFVauC7kU/sMX0Jw66hItLPaVDnDT8Fte
Ch10ypOXqE9Kmuzke59QWkPTnzAnpnkqA+rxw0ABRpDmuCncfH3pIbjtqK8cA9L5
w3pZrLB2g1Mum+y+8/r1C5zth5r9qVsTg50vYNMmPK9eY4526kKcnUK5B98tRHzR
2vkGlm+W173C/98OKMOXLGGboAp/pvk=
-----END CERTIFICATE-----
Generated at Tue Nov 4 08:00:55 2025 by rpki-client