Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/C36E5120609611F0AB6F15F2DAE4EC9C.roa
File: C36E5120609611F0AB6F15F2DAE4EC9C.roa (raw, json)
Hash identifier: Fk+IfFMpvi36aQyLQYlmv26xnAUJjv0obfvmLZs4rLU=
Subject key identifier: F1:96:8D:5C:3E:71:FC:FA:84:BA:A2:06:51:A4:06:C5:12:06:64:21
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0723
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/C36E5120609611F0AB6F15F2DAE4EC9C.roa
Signing time: Mon 14 Jul 2025 09:41:49 +0000
ROA not before: Mon 14 Jul 2025 09:41:43 +0000
ROA not after: Fri 17 Jul 2026 09:41:43 +0000
asID: 60171
IP address blocks: 102.177.158.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 24 Jul 2025 00:29:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1827 (0x723)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Jul 14 09:41:43 2025 GMT
Not After : Jul 17 09:41:43 2026 GMT
Subject: CN=6874d0dd-77f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:7e:0b:dc:b8:62:ff:56:76:63:56:5d:48:
30:22:b8:7d:ac:cd:53:97:b9:5b:3d:1e:d6:69:e1:
13:5c:29:c5:2d:d9:0e:80:93:75:41:c1:2f:3a:4e:
9e:fd:f3:06:dc:c1:e2:d8:cb:d3:cc:3d:dd:d7:66:
a1:62:8d:83:af:8f:f8:25:3b:47:47:ae:7c:f2:e4:
b0:d1:74:43:15:09:21:f8:86:43:d8:7c:96:1e:24:
5c:7e:67:0c:b3:7b:e1:d7:13:e6:33:4e:17:0f:8b:
c4:3b:f1:1d:6f:56:d6:47:d6:0f:49:ef:55:77:0b:
59:60:08:dd:63:92:f4:b5:f8:40:93:26:e7:60:b1:
cc:51:2b:95:12:1f:4f:86:bd:5d:85:bb:51:61:76:
72:9e:da:50:d0:c4:20:4f:5e:7a:3b:c8:70:55:6d:
e2:25:74:b1:64:69:24:58:c9:f2:e3:a5:54:c7:32:
ac:23:eb:96:c5:cd:b0:b5:b8:d5:5e:0f:d5:f8:2f:
b6:f5:8e:02:f7:db:0b:9a:1b:32:64:46:4c:0d:cb:
09:d8:5e:d0:60:cb:b0:33:ab:be:30:6a:d3:dc:9e:
ab:fe:1d:b0:5d:e7:40:38:26:2d:50:87:35:d1:4b:
66:de:f0:23:f6:4d:30:4e:7e:ef:22:5c:af:b9:38:
82:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:96:8D:5C:3E:71:FC:FA:84:BA:A2:06:51:A4:06:C5:12:06:64:21
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/C36E5120609611F0AB6F15F2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.158.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:b3:93:e2:82:6b:4c:15:4b:e4:42:4e:b0:cd:a6:9e:1b:32:
be:45:88:b6:de:21:0d:3f:78:e2:9f:3d:ff:1a:07:13:a0:f3:
ba:65:a5:ee:a1:38:f1:9f:43:7b:68:95:17:c8:87:6c:25:65:
86:13:b0:05:4c:07:86:10:ac:fd:47:38:18:f4:64:b8:c6:41:
99:27:b8:36:78:36:d9:74:16:16:dc:83:9c:82:5b:15:be:d4:
8d:8d:61:86:da:7b:17:60:c6:4d:33:a6:ac:6b:91:e8:78:7c:
a9:67:c5:6b:82:72:a9:98:38:8f:45:b7:1b:f3:8d:b8:de:5a:
59:12:8b:2d:7b:43:89:c6:c0:d8:c8:98:8a:12:02:ba:a7:33:
13:89:ca:03:0c:38:f8:13:bf:a7:93:39:0b:6b:ce:13:0c:ce:
f4:61:2e:74:e1:05:0e:0a:59:f0:b2:65:81:e5:71:41:6c:c7:
86:7b:a0:2a:a4:33:18:af:87:c9:2b:8a:bc:a9:07:50:31:b1:
29:22:22:6f:29:d6:b8:bb:e4:57:b2:72:1d:b5:70:e5:e8:64:
19:f2:a4:50:8b:94:bf:46:da:c4:47:8f:2e:fe:4a:56:de:8e:
a4:70:7d:d4:fc:61:80:76:51:a2:6a:8a:4c:f0:c2:3c:1c:c1:
0f:c1:5d:db
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICByMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yNTA3MTQwOTQxNDNaFw0yNjA3MTcwOTQxNDNaMBgxFjAU
BgNVBAMTDTY4NzRkMGRkLTc3ZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCvG34L3Lhi/1Z2Y1ZdSDAiuH2szVOXuVs9HtZp4RNcKcUt2Q6Ak3VBwS86
Tp798wbcweLYy9PMPd3XZqFijYOvj/glO0dHrnzy5LDRdEMVCSH4hkPYfJYeJFx+
Zwyze+HXE+YzThcPi8Q78R1vVtZH1g9J71V3C1lgCN1jkvS1+ECTJudgscxRK5US
H0+GvV2Fu1FhdnKe2lDQxCBPXno7yHBVbeIldLFkaSRYyfLjpVTHMqwj65bFzbC1
uNVeD9X4L7b1jgL32wuaGzJkRkwNywnYXtBgy7Azq74watPcnqv+HbBd50A4Ji1Q
hzXRS2be8CP2TTBOfu8iXK+5OIKjAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU8ZaN
XD5x/PqEuqIGUaQGxRIGZCEwHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4L0MzNkU1MTIwNjA5NjExRjBBQjZGMTVGMkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsZ4wDQYJKoZIhvcNAQEL
BQADggEBABuzk+KCa0wVS+RCTrDNpp4bMr5FiLbeIQ0/eOKfPf8aBxOg87plpe6h
OPGfQ3tolRfIh2wlZYYTsAVMB4YQrP1HOBj0ZLjGQZknuDZ4Ntl0Fhbcg5yCWxW+
1I2NYYbaexdgxk0zpqxrkeh4fKlnxWuCcqmYOI9FtxvzjbjeWlkSiy17Q4nGwNjI
mIoSArqnMxOJygMMOPgTv6eTOQtrzhMMzvRhLnThBQ4KWfCyZYHlcUFsx4Z7oCqk
Mxivh8krirypB1AxsSkiIm8p1ri75Feych21cOXoZBnypFCLlL9G2sRHjy7+Slbe
jqRwfdT8YYB2UaJqikzwwjwcwQ/BXds=
-----END CERTIFICATE-----
Generated at Tue Jul 22 04:49:29 2025 by rpki-client