Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361452C/15F0402057F011F0AF4575C8DAE4EC9C/755B9C5283F711F0BA55FEA8DAE4EC9C.roa
File: 755B9C5283F711F0BA55FEA8DAE4EC9C.roa (raw, json)
Hash identifier: o7qWx4pD5m0dGO9Rt9heJ9RGEjE31CW6ynMFTRgpIK0=
Subject key identifier: B9:BD:CE:2E:B2:E3:DB:31:07:87:E6:04:75:46:9C:6A:19:2B:8F:4B
Certificate issuer: /CN=F361452CAF/serialNumber=1683A92157CEE0259E36880DABE016B6DDB5E9CE
Certificate serial: 3E
Authority key identifier: 16:83:A9:21:57:CE:E0:25:9E:36:88:0D:AB:E0:16:B6:DD:B5:E9:CE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/FoOpIVfO4CWeNogNq-AWtt216c4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361452C/15F0402057F011F0AF4575C8DAE4EC9C/755B9C5283F711F0BA55FEA8DAE4EC9C.roa
Signing time: Thu 28 Aug 2025 10:12:10 +0000
ROA not before: Thu 28 Aug 2025 10:12:05 +0000
ROA not after: Sun 31 Dec 2028 10:12:05 +0000
asID: 329552
IP address blocks: 102.205.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361452C/15F0402057F011F0AF4575C8DAE4EC9C/FoOpIVfO4CWeNogNq-AWtt216c4.crl
rsync://rpki.afrinic.net/repository/member_repository/F361452C/15F0402057F011F0AF4575C8DAE4EC9C/FoOpIVfO4CWeNogNq-AWtt216c4.mft
rsync://rpki.afrinic.net/repository/afrinic/FoOpIVfO4CWeNogNq-AWtt216c4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Sep 2025 00:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62 (0x3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361452CAF, serialNumber=1683A92157CEE0259E36880DABE016B6DDB5E9CE
Validity
Not Before: Aug 28 10:12:05 2025 GMT
Not After : Dec 31 10:12:05 2028 GMT
Subject: CN=68b02b7a-0472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f4:7e:9a:5e:7c:71:9f:fd:5f:fd:2e:3c:cc:
46:5e:42:0f:17:5d:f7:f5:df:0d:e1:d9:4e:47:50:
a5:17:c9:fe:a9:e8:77:49:c5:5e:8c:b5:6f:06:bd:
2c:75:7e:35:18:d8:c2:45:f5:bf:f0:28:66:2d:f1:
1c:57:41:da:7e:16:50:8d:f3:c9:13:81:cb:62:77:
02:c9:2b:a8:a3:10:b3:aa:f6:a7:85:b9:c7:9c:07:
eb:fe:88:d8:ce:35:bb:2a:ad:18:98:fe:26:96:49:
ec:7d:dc:ec:f9:f8:47:55:2f:3c:87:08:75:34:5a:
e8:54:b3:ea:0e:40:62:20:90:aa:9a:2a:3f:46:17:
68:41:0d:b7:d8:85:ee:05:0b:ac:28:e0:d3:48:8c:
d9:9a:04:74:94:ff:d6:95:5b:ae:f1:47:b1:3d:80:
69:99:dd:d3:ae:93:c3:ec:73:31:ec:ef:4e:64:79:
1c:a7:71:bb:ae:a8:50:2d:eb:52:8e:5c:a6:f5:d4:
be:6d:6f:5c:d1:b2:81:f0:1c:cb:eb:88:3d:67:e1:
f5:25:fd:54:b5:bb:ee:37:d8:f3:60:18:5a:0e:8d:
d4:35:8d:c6:37:8c:4b:2a:55:1a:5c:c5:26:9d:42:
a2:c6:1e:3d:b0:64:4d:6d:d7:18:67:8e:d1:e0:d9:
a9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:BD:CE:2E:B2:E3:DB:31:07:87:E6:04:75:46:9C:6A:19:2B:8F:4B
X509v3 Authority Key Identifier:
keyid:16:83:A9:21:57:CE:E0:25:9E:36:88:0D:AB:E0:16:B6:DD:B5:E9:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361452C/15F0402057F011F0AF4575C8DAE4EC9C/FoOpIVfO4CWeNogNq-AWtt216c4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/FoOpIVfO4CWeNogNq-AWtt216c4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361452C/15F0402057F011F0AF4575C8DAE4EC9C/755B9C5283F711F0BA55FEA8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.205.189.0/24
Signature Algorithm: sha256WithRSAEncryption
64:d2:52:66:52:c5:bd:8f:b9:47:0e:ef:cb:c0:7f:e9:c0:9b:
95:99:c1:ee:aa:86:c4:c8:53:67:68:99:87:d1:7c:79:6d:5f:
6b:98:0a:9a:35:80:5f:10:19:e7:3a:89:cd:ce:d2:8c:93:70:
53:83:7d:95:ab:98:90:bb:dd:c2:d3:9d:66:73:8a:23:45:20:
41:7c:1c:ef:e8:8f:b0:41:8b:57:65:09:dc:57:30:4a:35:6a:
cf:f6:ea:be:16:54:49:1a:ed:09:01:13:36:8c:04:18:25:85:
69:cf:9c:98:e4:79:c5:a0:23:f6:ab:c5:58:12:64:6c:b5:82:
84:c2:4f:97:f6:63:b4:be:42:33:ca:4b:b2:a6:75:d9:c8:0b:
48:02:eb:af:b7:bc:60:0c:01:e0:2d:0a:ee:96:0f:31:a1:3f:
01:8c:69:ff:90:18:43:81:bd:bf:f4:e4:0a:eb:d0:50:13:41:
46:b4:25:50:6d:50:31:a5:14:1f:64:9b:ea:42:40:f6:0e:df:
d4:6a:6c:bf:0d:51:37:d2:59:fb:f4:42:cb:2d:15:ba:5f:d2:
f2:7c:3d:b0:18:66:d7:73:c8:68:38:39:15:bd:05:b8:52:31:
b4:94:14:dd:96:53:2f:49:78:86:44:e5:4b:91:20:60:5e:74:
9d:3c:a0:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 12:03:25 2025 by rpki-client