Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/79FF41E28D7E11F08003BAA4DAE4EC9C.roa
File: 79FF41E28D7E11F08003BAA4DAE4EC9C.roa (raw, json)
Hash identifier: dD50aBsrFXjZvgr8oxAnJtgvWW/Xkpu4r78faekSAzk=
Subject key identifier: 40:11:FA:0C:52:68:E0:6C:74:76:92:FE:AA:84:79:8A:A1:31:79:09
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0E21
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/79FF41E28D7E11F08003BAA4DAE4EC9C.roa
Signing time: Tue 09 Sep 2025 13:11:20 +0000
ROA not before: Tue 09 Sep 2025 13:11:16 +0000
ROA not after: Sat 05 Sep 2026 13:11:16 +0000
asID: 9009
IP address blocks: 102.135.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3617 (0xe21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Sep 9 13:11:16 2025 GMT
Not After : Sep 5 13:11:16 2026 GMT
Subject: CN=68c02778-d9fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:25:4a:45:d8:05:48:c7:4e:84:20:00:cc:c8:
7d:1e:a1:cf:81:4a:16:10:3a:ad:33:da:df:ae:7f:
c6:a0:05:d9:d6:f1:06:bb:27:28:6f:e0:7d:a5:5b:
68:cf:b0:d6:15:a3:bb:d6:36:69:88:20:03:95:80:
19:5c:42:da:a1:ac:d0:3a:60:b0:c1:a0:6a:e8:6f:
8e:51:9c:97:22:a2:46:7c:ce:3b:e8:f3:a5:2a:5a:
d1:d7:d5:de:27:b5:63:68:9e:32:26:d4:2f:b9:59:
65:a3:3e:51:8d:d1:2b:4d:c4:6d:55:32:dc:19:9e:
bd:68:41:fe:4e:9c:8d:52:c6:72:33:f6:dc:63:2a:
84:a8:a4:a5:35:3b:95:12:58:cd:fe:95:f1:c9:8f:
4e:21:68:16:ee:fc:61:36:94:2e:3b:d6:e5:5c:29:
b9:bb:1a:ef:6a:83:10:d5:82:23:47:f8:a7:0b:f1:
85:08:a9:75:64:ab:dc:d1:07:8c:66:56:23:d5:62:
ab:f7:f0:3e:36:9d:02:ac:15:b9:62:a6:12:e3:70:
3d:7d:c4:2c:87:cd:69:49:bb:4d:7d:ad:3c:b6:44:
ba:e3:22:0e:c3:08:6c:43:42:f7:af:a9:fd:d3:01:
e8:57:ed:b2:53:3f:04:2e:d3:b7:b2:2a:61:07:f8:
6e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:11:FA:0C:52:68:E0:6C:74:76:92:FE:AA:84:79:8A:A1:31:79:09
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/79FF41E28D7E11F08003BAA4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.119.0/24
Signature Algorithm: sha256WithRSAEncryption
97:bc:c7:ba:01:c3:5d:ee:90:a1:38:9b:50:a4:25:b7:77:a3:
d6:71:c0:38:c0:2b:67:31:ab:e0:54:70:25:ea:5a:86:0a:e5:
a1:c3:27:e7:e1:c1:21:c2:33:3c:dc:98:83:7e:bb:5b:97:2c:
08:61:36:5b:76:85:1c:7d:a7:81:7c:d4:ad:e1:67:f2:28:f0:
c9:fa:5a:e5:ab:8c:a4:23:42:a2:63:e2:64:b5:4f:08:43:16:
6c:e6:90:af:b9:f6:ff:54:63:cd:af:7b:b5:82:6f:d6:39:c7:
a9:a5:74:71:f9:0d:63:97:d6:23:73:36:a7:4a:37:a6:98:f6:
3c:db:43:d5:f7:fa:81:14:8e:6b:df:da:a3:72:59:65:63:87:
e7:c4:d6:90:42:55:7b:aa:55:a0:d9:5a:d5:41:72:7c:b2:e0:
93:ad:ca:47:e1:6c:a5:86:d3:0c:18:c4:22:af:ec:fe:bc:df:
6f:d5:50:67:9d:8b:b8:6c:e1:f2:9e:73:77:68:d8:24:19:26:
95:e5:84:c5:59:9b:2a:d4:67:7b:c2:5b:8b:69:0d:be:4d:cf:
2b:5e:12:04:9c:bc:f3:22:76:ce:8c:eb:3c:0a:28:cd:1a:cb:
d4:e7:7c:d4:7f:6b:0e:d2:b7:e6:a2:9f:b5:bd:92:2a:07:96:
9b:6b:2c:0b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDiEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTA5MDkxMzExMTZaFw0yNjA5MDUxMzExMTZaMBgxFjAU
BgNVBAMTDTY4YzAyNzc4LWQ5ZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDdJUpF2AVIx06EIADMyH0eoc+BShYQOq0z2t+uf8agBdnW8Qa7Jyhv4H2l
W2jPsNYVo7vWNmmIIAOVgBlcQtqhrNA6YLDBoGrob45RnJciokZ8zjvo86UqWtHX
1d4ntWNonjIm1C+5WWWjPlGN0StNxG1VMtwZnr1oQf5OnI1SxnIz9txjKoSopKU1
O5USWM3+lfHJj04haBbu/GE2lC471uVcKbm7Gu9qgxDVgiNH+KcL8YUIqXVkq9zR
B4xmViPVYqv38D42nQKsFbliphLjcD19xCyHzWlJu019rTy2RLrjIg7DCGxDQvev
qf3TAehX7bJTPwQu07eyKmEH+G4jAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUQBH6
DFJo4Gx0dpL+qoR5iqExeQkwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3Lzc5RkY0MUUyOEQ3RTExRjA4MDAzQkFBNERBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmh3cwDQYJKoZIhvcNAQEL
BQADggEBAJe8x7oBw13ukKE4m1CkJbd3o9ZxwDjAK2cxq+BUcCXqWoYK5aHDJ+fh
wSHCMzzcmIN+u1uXLAhhNlt2hRx9p4F81K3hZ/Io8Mn6WuWrjKQjQqJj4mS1TwhD
FmzmkK+59v9UY82ve7WCb9Y5x6mldHH5DWOX1iNzNqdKN6aY9jzbQ9X3+oEUjmvf
2qNyWWVjh+fE1pBCVXuqVaDZWtVBcnyy4JOtykfhbKWG0wwYxCKv7P6832/VUGed
i7hs4fKec3do2CQZJpXlhMVZmyrUZ3vCW4tpDb5NzyteEgScvPMids6M6zwKKM0a
y9TnfNR/aw7St+ain7W9kioHlptrLAs=
-----END CERTIFICATE-----
Generated at Sun Oct 19 07:13:38 2025 by rpki-client