Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/B9EABCD2B54C11F09D128FDFDAE4EC9C.roa
File: B9EABCD2B54C11F09D128FDFDAE4EC9C.roa (raw, json)
Hash identifier: FQu8ySvpjzSm8Wt9V+i50XqTr/lNpOUbbdjMIfmS/L8=
Subject key identifier: 86:C9:A8:94:AB:45:23:1B:7C:F1:C6:BC:29:78:59:A8:66:8E:D1:41
Certificate issuer: /CN=F36F6034AF/serialNumber=C702799EA4BD5DBA3ED3D069A7191B941B5A779A
Certificate serial: 0828
Authority key identifier: C7:02:79:9E:A4:BD:5D:BA:3E:D3:D0:69:A7:19:1B:94:1B:5A:77:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/B9EABCD2B54C11F09D128FDFDAE4EC9C.roa
Signing time: Thu 30 Oct 2025 04:55:59 +0000
ROA not before: Thu 30 Oct 2025 04:55:52 +0000
ROA not after: Sat 30 Oct 2027 04:55:52 +0000
asID: 64267
IP address blocks: 196.197.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.mft
rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2088 (0x828)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F6034AF, serialNumber=C702799EA4BD5DBA3ED3D069A7191B941B5A779A
Validity
Not Before: Oct 30 04:55:52 2025 GMT
Not After : Oct 30 04:55:52 2027 GMT
Subject: CN=6902efdf-9d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9f:cf:45:d0:c7:59:11:83:c3:c6:fe:fa:de:
94:04:29:e5:1f:84:30:81:c9:54:8d:89:6f:7a:2b:
44:83:bd:41:16:21:6f:2d:56:f3:7d:65:a3:13:32:
38:51:0b:3f:e1:cd:c4:8a:0b:de:7c:35:a7:37:1e:
45:9d:16:1b:25:91:d2:86:1e:ac:4c:8c:52:35:34:
58:7f:04:64:5a:13:73:67:b9:ba:59:7d:99:4a:18:
cf:53:1f:ba:87:85:7f:04:46:65:60:48:06:b4:46:
f0:93:a0:df:8d:13:22:04:4d:d8:28:8e:1d:b2:04:
9b:3a:95:77:a9:f4:81:72:43:19:32:47:ef:60:03:
55:ba:d1:18:bf:7e:e4:29:f2:ad:10:a7:13:91:6e:
b3:0b:41:09:64:ca:87:7c:f5:52:e4:7c:d2:be:23:
db:7d:5d:80:d3:8a:43:29:98:2f:3e:05:b9:bb:63:
cb:4e:07:b3:f2:fb:3d:79:ad:f1:5a:75:ef:10:40:
d4:d1:da:eb:6e:1b:d1:0c:c9:7d:ce:9b:b7:26:f8:
16:2d:14:a3:29:26:47:10:12:78:d8:40:b7:b1:be:
2e:95:2e:52:c7:57:6e:52:96:ee:74:4e:26:33:d6:
f6:e0:da:50:67:82:0e:b4:bd:da:10:38:2c:77:25:
3c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C9:A8:94:AB:45:23:1B:7C:F1:C6:BC:29:78:59:A8:66:8E:D1:41
X509v3 Authority Key Identifier:
keyid:C7:02:79:9E:A4:BD:5D:BA:3E:D3:D0:69:A7:19:1B:94:1B:5A:77:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/B9EABCD2B54C11F09D128FDFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.197.134.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:1e:f1:fb:4a:a1:2a:7e:7d:8e:2c:6d:14:6b:2e:80:0a:95:
85:ab:cb:76:80:98:b4:7c:4b:b2:f9:e7:7c:e8:72:25:a2:48:
d5:f9:34:93:f3:01:0c:78:56:80:c4:56:77:91:91:6a:83:2f:
4d:c2:2a:2b:c9:b5:85:52:0c:ab:7f:5d:75:5f:89:cf:8f:7c:
1c:a4:3e:1e:2e:a0:19:27:a6:73:36:65:9e:a6:dd:c1:4c:c6:
23:a1:68:83:bf:e6:da:a4:d3:ba:a0:0a:48:d1:12:36:e6:24:
00:02:53:1e:b6:db:53:94:95:21:5e:bd:9d:ea:1a:59:da:07:
2a:6d:a3:54:10:7e:a9:a2:0f:e0:33:33:ed:a0:6f:ec:9d:16:
06:4b:aa:2a:3c:00:d2:37:b3:4e:70:e2:ea:93:2c:fe:b2:9b:
9e:e1:a2:05:38:5c:ca:d3:5f:49:21:18:78:79:56:d0:f7:b8:
3d:34:ce:bf:c2:03:86:d2:a8:5d:df:74:7f:98:2d:27:7b:60:
c1:cb:51:63:eb:08:55:9f:1a:dc:3e:64:a0:63:5e:56:16:fc:
41:ca:35:fb:88:7c:38:99:a2:54:ce:83:41:f7:0b:75:f0:fb:
58:b0:24:7d:d4:2b:8c:5a:98:8c:57:ce:e9:22:69:0d:33:bc:
2b:cb:6a:fc
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCCgwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RjYwMzRBRjExMC8GA1UEBRMoQzcwMjc5OUVBNEJENURCQTNFRDNEMDY5QTcxOTFC
OTQxQjVBNzc5QTAeFw0yNTEwMzAwNDU1NTJaFw0yNzEwMzAwNDU1NTJaMBgxFjAU
BgNVBAMTDTY5MDJlZmRmLTlkMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDWn89F0MdZEYPDxv763pQEKeUfhDCByVSNiW96K0SDvUEWIW8tVvN9ZaMT
MjhRCz/hzcSKC958Nac3HkWdFhslkdKGHqxMjFI1NFh/BGRaE3NnubpZfZlKGM9T
H7qHhX8ERmVgSAa0RvCToN+NEyIETdgojh2yBJs6lXep9IFyQxkyR+9gA1W60Ri/
fuQp8q0QpxORbrMLQQlkyod89VLkfNK+I9t9XYDTikMpmC8+Bbm7Y8tOB7Py+z15
rfFade8QQNTR2utuG9EMyX3Om7cm+BYtFKMpJkcQEnjYQLexvi6VLlLHV25Slu50
TiYz1vbg2lBngg60vdoQOCx3JTwRAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUhsmo
lKtFIxt88ca8KXhZqGaO0UEwHwYDVR0jBBgwFoAUxwJ5nqS9Xbo+09BppxkblBta
d5owDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkY2MDM0L0Q5MTY3NThBOTBGQzExRUE5RDgxMzA2RUY4QUVBMjI4L3h3SjVu
cVM5WGJvLTA5QnBweGtibEJ0YWQ1by5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3h3SjVucVM5WGJvLTA5QnBweGtibEJ0YWQ1by5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkY2MDM0L0Q5MTY3NThBOTBGQzExRUE5RDgxMzA2RUY4
QUVBMjI4L0I5RUFCQ0QyQjU0QzExRjA5RDEyOEZERkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADExYYwDQYJKoZIhvcNAQEL
BQADggEBAKEe8ftKoSp+fY4sbRRrLoAKlYWry3aAmLR8S7L553zociWiSNX5NJPz
AQx4VoDEVneRkWqDL03CKivJtYVSDKt/XXVfic+PfBykPh4uoBknpnM2ZZ6m3cFM
xiOhaIO/5tqk07qgCkjREjbmJAACUx6221OUlSFevZ3qGlnaBypto1QQfqmiD+Az
M+2gb+ydFgZLqio8ANI3s05w4uqTLP6ym57hogU4XMrTX0khGHh5VtD3uD00zr/C
A4bSqF3fdH+YLSd7YMHLUWPrCFWfGtw+ZKBjXlYW/EHKNfuIfDiZolTOg0H3C3Xw
+1iwJH3UK4xamIxXzukiaQ0zvCvLavw=
-----END CERTIFICATE-----
Generated at Tue Nov 4 08:01:14 2025 by rpki-client