Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/8F5209B2B56011F0AFBC77DCDAE4EC9C.roa
File: 8F5209B2B56011F0AFBC77DCDAE4EC9C.roa (raw, json)
Hash identifier: XdwjoRRgKMoE+s9uI2UswDg/vy75d5TLcsYHZ5Sze3I=
Subject key identifier: D1:E8:52:9F:00:33:B4:A0:02:F4:51:50:5E:56:AD:5A:E8:8E:8D:7E
Certificate issuer: /CN=F36FC6C8AF/serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Certificate serial: 01CD
Authority key identifier: 25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/8F5209B2B56011F0AFBC77DCDAE4EC9C.roa
Signing time: Thu 30 Oct 2025 07:17:58 +0000
ROA not before: Thu 30 Oct 2025 07:17:53 +0000
ROA not after: Tue 30 Oct 2035 07:17:53 +0000
asID: 37680
IP address blocks: 102.223.149.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.mft
rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 461 (0x1cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AF, serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Validity
Not Before: Oct 30 07:17:53 2025 GMT
Not After : Oct 30 07:17:53 2035 GMT
Subject: CN=69031126-6eaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f1:f4:f5:fa:67:27:7a:03:15:e3:3a:17:02:
2d:23:d6:27:08:6a:1a:fe:2f:b3:b3:62:7f:01:52:
bd:51:4e:e5:43:b6:83:7b:38:2d:aa:cd:a4:c0:88:
18:d6:91:73:49:f8:cd:15:1e:18:1d:7e:01:83:aa:
11:41:ef:56:cb:57:cc:f0:76:8e:ad:6b:1f:c4:35:
ff:b0:3c:2c:10:80:da:f0:51:1e:12:08:18:b8:03:
e1:7f:61:5b:43:a2:ad:19:71:6b:01:7b:6a:5b:d0:
16:7f:6d:0b:9b:88:df:ba:38:24:d6:23:98:87:5d:
62:fe:62:79:7e:95:2d:a8:24:27:d0:34:22:ff:0d:
2e:57:0d:cc:28:c1:79:c4:fb:47:18:cb:fc:90:1a:
62:59:29:16:2d:a4:39:2a:de:37:4a:fc:d2:e4:04:
55:15:31:d4:71:50:b8:49:c8:b9:95:1d:b5:d4:fc:
65:9e:2b:32:1d:9f:99:e6:bc:dc:df:98:c5:78:ab:
78:02:c8:54:dd:b8:34:e2:70:61:1b:b8:da:79:de:
20:3b:18:1e:27:4e:ba:1f:21:f8:1e:1e:62:68:07:
ea:3a:00:c9:19:5f:74:87:25:d6:b1:b0:8f:64:e3:
15:ac:49:48:f6:b3:4a:4c:62:6b:17:5b:15:a3:c0:
2b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E8:52:9F:00:33:B4:A0:02:F4:51:50:5E:56:AD:5A:E8:8E:8D:7E
X509v3 Authority Key Identifier:
keyid:25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/8F5209B2B56011F0AFBC77DCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.149.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:5d:e4:53:fd:20:b8:f9:0c:a9:6c:b3:52:21:ff:bd:8f:9f:
5d:33:a2:14:19:28:c0:28:e1:8b:f5:73:f1:d5:fd:47:a9:4a:
ee:45:86:35:22:e7:ed:f0:96:16:31:77:98:4f:04:cd:9f:c0:
f0:49:0b:53:a7:04:98:0a:b0:ba:55:6b:de:07:ae:e2:62:e6:
a7:68:49:bc:81:ba:31:77:a0:1a:86:86:28:4f:ca:96:1e:5d:
9a:e3:20:f1:93:3b:60:be:2c:ff:5b:17:58:4f:74:9f:ee:08:
d7:b9:16:7d:d5:45:19:4e:98:72:ca:fc:a4:d3:26:af:46:1c:
c1:35:d5:8e:43:84:66:c5:b6:92:40:23:ee:15:d4:59:a2:46:
8b:77:9f:8d:ea:4f:77:d2:75:0f:53:97:3b:b9:af:a2:cb:ac:
51:21:64:bf:2c:ed:dd:6e:c7:16:fc:d3:81:0e:95:68:59:86:
eb:27:6a:e9:fa:55:18:a2:66:26:d3:0d:14:c9:25:c3:d5:2d:
2b:22:5b:ad:a2:66:e2:c2:52:0c:9b:5c:24:8d:0b:f7:e2:26:
03:fb:03:f1:a0:8c:dc:e9:15:db:b3:e6:0a:3c:a8:ed:cf:b6:
15:cf:3c:dc:49:a3:46:7b:39:72:b2:41:e8:57:8a:18:22:53:
0e:91:f5:e6
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RkM2QzhBRjExMC8GA1UEBRMoMjUxMUJBRDQwNzhENDY3MkFDRjQzMjQyOTkyMThD
RTQ4NTVEMDM5RDAeFw0yNTEwMzAwNzE3NTNaFw0zNTEwMzAwNzE3NTNaMBgxFjAU
BgNVBAMTDTY5MDMxMTI2LTZlYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDL8fT1+mcnegMV4zoXAi0j1icIahr+L7OzYn8BUr1RTuVDtoN7OC2qzaTA
iBjWkXNJ+M0VHhgdfgGDqhFB71bLV8zwdo6tax/ENf+wPCwQgNrwUR4SCBi4A+F/
YVtDoq0ZcWsBe2pb0BZ/bQubiN+6OCTWI5iHXWL+Ynl+lS2oJCfQNCL/DS5XDcwo
wXnE+0cYy/yQGmJZKRYtpDkq3jdK/NLkBFUVMdRxULhJyLmVHbXU/GWeKzIdn5nm
vNzfmMV4q3gCyFTduDTicGEbuNp53iA7GB4nTrofIfgeHmJoB+o6AMkZX3SHJdax
sI9k4xWsSUj2s0pMYmsXWxWjwCs3AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU0ehS
nwAztKAC9FFQXlatWuiOjX4wHwYDVR0jBBgwFoAUJRG61AeNRnKs9DJCmSGM5IVd
A50wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkZDNkM4L0QzN0QyREEwNzBFMzExRUY4NDYxMDE0Nzc2MkU5NTFBL0pSRzYx
QWVOUm5LczlESkNtU0dNNUlWZEE1MC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0pSRzYxQWVOUm5LczlESkNtU0dNNUlWZEE1MC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkZDNkM4L0QzN0QyREEwNzBFMzExRUY4NDYxMDE0Nzc2
MkU5NTFBLzhGNTIwOUIyQjU2MDExRjBBRkJDNzdEQ0RBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm35UwDQYJKoZIhvcNAQEL
BQADggEBAL1d5FP9ILj5DKlss1Ih/72Pn10zohQZKMAo4Yv1c/HV/UepSu5FhjUi
5+3wlhYxd5hPBM2fwPBJC1OnBJgKsLpVa94HruJi5qdoSbyBujF3oBqGhihPypYe
XZrjIPGTO2C+LP9bF1hPdJ/uCNe5Fn3VRRlOmHLK/KTTJq9GHME11Y5DhGbFtpJA
I+4V1FmiRot3n43qT3fSdQ9Tlzu5r6LLrFEhZL8s7d1uxxb804EOlWhZhusnaun6
VRiiZibTDRTJJcPVLSsiW62iZuLCUgybXCSNC/fiJgP7A/GgjNzpFduz5go8qO3P
thXPPNxJo0Z7OXKyQehXihgiUw6R9eY=
-----END CERTIFICATE-----
Generated at Wed Nov 5 12:30:40 2025 by rpki-client