Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/C5BB6356AFF511F0935D10D9DAE4EC9C.roa
File: C5BB6356AFF511F0935D10D9DAE4EC9C.roa (raw, json)
Hash identifier: qkCQyfyP/gOcclxi5Ep7P7pDjiljTo9ZUup+NSxQ2I0=
Subject key identifier: 1E:C5:D5:E2:3B:9A:B2:E9:41:74:45:D3:B4:D6:C8:E0:03:F8:DC:69
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 074B
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/C5BB6356AFF511F0935D10D9DAE4EC9C.roa
Signing time: Thu 23 Oct 2025 09:50:57 +0000
ROA not before: Thu 23 Oct 2025 09:50:50 +0000
ROA not after: Wed 23 Oct 2030 09:50:50 +0000
asID: 834
IP address blocks: 102.216.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.mft
rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 02 Nov 2025 00:06:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1867 (0x74b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF, serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: Oct 23 09:50:50 2025 GMT
Not After : Oct 23 09:50:50 2030 GMT
Subject: CN=68f9fa81-8d99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d9:52:02:e0:57:88:04:33:b8:c8:af:11:ba:
c5:9f:d4:56:a2:7b:69:42:4f:3a:6f:85:9e:95:1d:
72:96:57:52:1f:32:1c:19:cb:94:23:63:2c:33:0b:
a7:80:b8:30:a0:c7:11:a1:cf:46:be:2d:7f:28:76:
da:e8:62:31:cc:4b:ff:01:e6:38:08:1e:61:57:ab:
68:4c:88:31:64:89:43:4b:3c:a8:0e:ae:16:54:5b:
79:48:d0:98:cc:3b:08:85:50:62:61:35:a9:37:c5:
27:2d:ff:be:b4:fb:ad:4b:94:a8:27:54:7e:4a:4a:
4c:f9:57:d0:13:cf:9b:da:96:f1:95:3a:c4:76:1f:
b8:a9:9b:bb:8c:da:90:ba:6c:fd:ec:5f:43:05:ff:
16:d1:88:21:a3:61:9a:2c:1f:ab:a2:a8:c7:ba:24:
37:e8:b8:f6:fe:64:aa:46:1c:4e:5b:84:aa:79:af:
ad:37:6e:88:62:eb:73:b5:1d:7e:a7:1c:80:bc:97:
d9:ae:b6:5b:f7:c4:21:ee:07:de:1c:28:6f:10:30:
5d:f3:e1:7d:a3:2b:4a:fa:aa:f8:2c:5c:9c:80:2e:
90:46:54:2c:0a:05:43:7a:d5:b0:92:df:dd:d4:73:
5e:e6:7d:4b:2e:20:5e:96:37:96:48:91:b5:ae:b7:
58:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:C5:D5:E2:3B:9A:B2:E9:41:74:45:D3:B4:D6:C8:E0:03:F8:DC:69
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/C5BB6356AFF511F0935D10D9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.81.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:ac:57:c2:1e:14:c8:e6:1c:d9:9e:00:de:60:ab:99:b4:f4:
43:a8:67:12:9b:ae:81:5a:54:67:d9:b5:73:08:2c:85:bf:57:
9d:44:0c:9e:1a:69:31:db:93:28:66:c5:f4:84:cc:d9:6b:99:
74:c1:0a:07:f4:2e:72:31:33:b0:59:ba:80:fe:aa:16:dd:dd:
63:7f:a5:9b:7c:da:5e:5a:75:8f:b7:20:66:21:fc:ab:ee:63:
46:b5:6f:41:04:71:fa:76:db:c6:07:ca:ea:07:94:fc:c5:4d:
00:2e:a3:4f:58:3e:e6:f6:37:22:2c:86:c3:5e:c3:4e:17:9e:
54:2f:8e:4a:bf:6d:e8:5f:46:39:da:8a:53:56:a2:1e:b9:43:
b5:ee:bc:8b:dd:50:a2:ea:97:6b:0f:62:d3:c9:23:09:bd:0e:
01:2b:3b:d2:21:ea:d9:a8:4d:55:ed:51:98:55:01:49:c0:59:
eb:81:58:90:ff:c7:37:f8:50:f5:63:63:ff:68:11:ac:35:d0:
0f:aa:7d:0a:da:f8:ac:f9:5e:51:c9:45:85:26:b7:e5:25:55:
5c:bc:61:5d:1b:8d:5c:e7:cd:6a:0b:d5:82:7c:a5:37:b4:2a:
40:0a:d1:6d:c1:c8:e9:c5:95:87:95:bf:f8:0b:61:05:fd:bd:
d6:9f:a1:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 31 05:43:35 2025 by rpki-client