Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5843949283E511F0BCB002B3DAE4EC9C.roa
File: 5843949283E511F0BCB002B3DAE4EC9C.roa (raw, json)
Hash identifier: oiOS3PN8IKg8SmLS0c+ANm7xAy0FJtv5W0T0m0wsCdM=
Subject key identifier: B9:50:F4:E5:02:1C:4C:58:14:C4:48:B2:6C:31:D2:91:80:D9:98:50
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0D44
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5843949283E511F0BCB002B3DAE4EC9C.roa
Signing time: Thu 28 Aug 2025 08:02:30 +0000
ROA not before: Thu 28 Aug 2025 08:02:26 +0000
ROA not after: Tue 10 Feb 2026 08:02:26 +0000
asID: 401838
IP address blocks: 102.135.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 09 Sep 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3396 (0xd44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Aug 28 08:02:26 2025 GMT
Not After : Feb 10 08:02:26 2026 GMT
Subject: CN=68b00d16-201b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:95:90:86:43:19:97:bd:31:f2:cf:dd:80:e9:
d9:04:ab:39:88:9f:3f:95:95:2f:a2:a0:23:17:94:
cd:e9:62:cd:ed:a5:fa:5d:60:a3:8d:37:d4:fe:58:
74:8d:35:32:39:c0:eb:57:74:5a:ab:71:be:c0:65:
fc:8a:0d:43:82:e7:72:08:49:02:74:38:0c:9d:be:
d9:32:80:cf:0c:43:fe:a1:74:a6:e6:09:58:ee:22:
3a:0e:c0:66:e2:4e:04:4d:c4:58:c4:31:2d:e0:53:
52:eb:59:cc:62:2f:40:ce:e3:db:47:fe:d6:20:87:
f9:4b:32:b9:4d:12:3d:8c:7b:04:54:c8:c9:48:42:
80:b8:08:ab:b1:7a:4d:9c:f5:1a:d4:4b:f1:a3:4d:
12:dc:67:6a:82:06:9c:5b:52:eb:ea:7b:14:d0:f3:
84:36:55:d5:48:bb:83:25:45:76:23:68:a0:c7:7e:
84:b4:cd:90:47:91:76:4b:75:3b:f0:c2:9b:d9:c2:
a2:f1:4d:6d:6f:c5:8c:80:f4:91:8d:98:c8:b3:be:
20:27:9b:12:33:21:30:f2:c6:ba:ca:50:4f:6d:c1:
82:ff:a8:65:62:4c:d0:a9:44:78:06:2e:07:ee:e0:
07:46:f4:61:e3:88:4f:f6:91:c9:74:17:f6:f2:6d:
46:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:50:F4:E5:02:1C:4C:58:14:C4:48:B2:6C:31:D2:91:80:D9:98:50
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/5843949283E511F0BCB002B3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.20.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:bc:ca:54:99:ab:1a:6d:c5:32:01:99:a8:00:86:b6:12:33:
4e:ea:0a:56:cb:e5:74:7a:8c:29:83:8f:0b:58:32:45:c2:ea:
6b:12:34:c4:6f:b3:a3:2a:d2:94:73:19:18:87:b4:54:f7:de:
a7:67:77:34:b1:f2:b6:2e:4f:1b:17:b2:b0:bb:ad:5c:37:7f:
c7:65:27:b9:2c:d8:f1:4e:c1:29:4b:f1:41:dd:55:23:a0:fd:
7f:28:f5:27:c6:00:23:a4:e7:c3:e5:54:54:d4:9b:44:d4:fa:
b1:4a:9b:df:d7:19:f6:b9:88:12:ba:6c:6b:7c:da:5c:fc:b4:
19:17:1e:5c:88:7f:04:1d:87:70:67:f6:45:19:de:57:e4:79:
02:b9:64:91:8c:25:59:e2:36:77:ed:df:71:05:7a:8d:74:2b:
30:dc:49:60:59:0e:15:6d:a7:32:8b:96:0a:0f:53:c7:59:5f:
e3:77:d0:9b:1f:4b:26:99:87:ea:9a:e3:75:04:9f:4d:ba:06:
27:46:79:3d:c1:b7:0a:81:8c:bb:6a:ee:d1:7b:78:e0:2b:06:
20:96:00:53:37:46:3e:95:a1:a7:b3:08:e6:1c:54:7a:b2:5a:
3e:86:64:fa:30:89:eb:c5:9a:bb:12:1a:08:69:f6:74:05:e5:
fe:24:57:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 14:37:03 2025 by rpki-client