Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/9A0C2716B55611F094735AA0DAE4EC9C.roa
File: 9A0C2716B55611F094735AA0DAE4EC9C.roa (raw, json)
Hash identifier: 43UkRVumG67YdCPCBU+yiy01Xg1w6Ryu6pqrcLYThmU=
Subject key identifier: B4:68:5F:79:5A:21:DF:5D:6E:3E:91:8D:E3:40:54:DE:CB:E7:DA:61
Certificate issuer: /CN=F36F6034AF/serialNumber=C702799EA4BD5DBA3ED3D069A7191B941B5A779A
Certificate serial: 083F
Authority key identifier: C7:02:79:9E:A4:BD:5D:BA:3E:D3:D0:69:A7:19:1B:94:1B:5A:77:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/9A0C2716B55611F094735AA0DAE4EC9C.roa
Signing time: Thu 30 Oct 2025 06:06:41 +0000
ROA not before: Thu 30 Oct 2025 06:06:36 +0000
ROA not after: Fri 30 Oct 2026 06:06:36 +0000
asID: 397630
IP address blocks: 196.240.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.mft
rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2111 (0x83f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F6034AF, serialNumber=C702799EA4BD5DBA3ED3D069A7191B941B5A779A
Validity
Not Before: Oct 30 06:06:36 2025 GMT
Not After : Oct 30 06:06:36 2026 GMT
Subject: CN=69030071-204a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:9e:43:45:63:a8:a7:d3:8b:f4:5a:ce:c4:01:
16:e3:4b:2e:f1:a5:f2:3d:3e:18:cb:91:07:de:22:
81:49:83:52:c6:61:8e:fe:89:aa:78:f9:e2:a8:8b:
b4:74:9c:3c:56:e5:e7:14:e6:0c:aa:c8:76:1a:4e:
0e:db:1c:d8:d9:7a:39:77:f2:41:2b:5b:34:6c:9d:
65:dc:4b:6f:62:57:48:3a:78:17:a8:6d:8e:be:d0:
28:09:3f:07:da:d6:5e:3b:65:13:1b:b0:83:2a:76:
58:38:e6:c3:bd:49:54:e9:9c:ad:e0:5f:23:75:cf:
8c:6a:c4:27:e5:b8:f2:9d:ae:ec:26:bc:56:06:d1:
8b:77:ee:2f:76:a1:d3:0a:be:c1:8b:b0:01:cd:b6:
6e:c8:28:e7:28:d7:55:37:fc:76:67:de:9b:92:e9:
71:96:47:1d:25:30:48:38:a5:6d:b1:c4:da:d6:4e:
30:28:88:49:62:ac:be:e2:04:a8:a5:4b:87:97:85:
6a:aa:72:cb:1e:46:24:f2:19:01:19:36:0c:b9:bc:
d0:34:ea:99:6e:08:97:8e:7d:84:58:34:e6:7d:8c:
4f:f4:79:00:90:a6:6a:df:51:05:e4:88:9f:2e:3e:
bc:17:dd:6b:a3:e1:2c:34:57:03:56:1a:d9:db:ce:
51:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:68:5F:79:5A:21:DF:5D:6E:3E:91:8D:E3:40:54:DE:CB:E7:DA:61
X509v3 Authority Key Identifier:
keyid:C7:02:79:9E:A4:BD:5D:BA:3E:D3:D0:69:A7:19:1B:94:1B:5A:77:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/9A0C2716B55611F094735AA0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.240.194.0/24
Signature Algorithm: sha256WithRSAEncryption
07:80:fc:6e:3d:c1:c9:ca:e9:ef:3e:95:69:b8:bd:dd:fe:1f:
c8:cd:89:f0:77:a2:8e:62:e5:e0:c3:59:12:d4:fc:02:9a:a3:
0d:0b:86:43:67:a3:29:97:49:36:06:fd:21:04:e5:bc:c0:e0:
cb:77:69:0f:eb:37:cc:09:2f:6c:a9:d1:7c:cb:af:44:35:4a:
c2:24:83:61:0e:e7:25:0b:f0:b3:ae:3c:a4:48:05:b6:72:e6:
ac:39:41:d1:61:f4:96:75:3a:3e:70:61:2d:c2:05:86:04:e7:
e0:22:1d:e2:11:19:93:97:51:c0:71:80:a1:20:0d:9d:4f:59:
92:91:b8:ec:e6:cd:6f:eb:17:22:d3:29:e7:38:70:f6:a5:7c:
bc:fc:ea:c1:8e:67:f3:24:54:75:ab:5f:e6:da:d6:c0:f7:ba:
28:3c:38:f1:56:56:fa:48:f3:8d:9b:36:bf:2b:c9:36:43:68:
c4:54:51:c8:ce:01:d9:a3:5b:e5:68:5b:3b:dc:7d:0e:fb:f0:
7a:21:bc:89:6e:d3:ee:ed:a3:fb:33:e4:5a:17:7b:3a:5c:b9:
35:d6:89:4e:86:74:3c:cc:3a:de:e5:48:24:4f:c4:00:bc:e3:
d0:8b:ca:e1:51:2e:47:52:74:46:65:24:de:3b:0c:07:9c:f7:
e5:2b:62:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 05:37:39 2025 by rpki-client