Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/BCB8B9AE8C8A11F08534637ADAE4EC9C.roa
File: BCB8B9AE8C8A11F08534637ADAE4EC9C.roa (raw, json)
Hash identifier: WXsPhXQIdggTHgHB0m8Hxg+XReraGb9wvwaZA5m8VXA=
Subject key identifier: B7:96:34:9A:EC:CB:E3:7F:23:5E:95:74:AD:33:FF:4C:E8:AB:24:54
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0DE4
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/BCB8B9AE8C8A11F08534637ADAE4EC9C.roa
Signing time: Mon 08 Sep 2025 08:06:35 +0000
ROA not before: Mon 08 Sep 2025 08:06:30 +0000
ROA not after: Sat 05 Sep 2026 08:06:30 +0000
asID: 9009
IP address blocks: 102.135.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3556 (0xde4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Sep 8 08:06:30 2025 GMT
Not After : Sep 5 08:06:30 2026 GMT
Subject: CN=68be8e8b-a886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:bb:d7:ee:9d:f7:a6:a7:4e:1c:66:75:4d:d4:
24:26:82:67:01:e9:8d:70:03:7e:ed:f2:1d:51:b2:
e2:7d:1f:96:d9:7b:d1:7d:c4:70:64:73:99:1b:3f:
55:90:67:83:c5:ce:03:9f:79:fc:3e:5f:ab:e3:30:
a0:a1:63:00:d9:a7:fa:fe:5e:26:b7:69:80:2f:45:
c6:1f:93:c4:0e:86:47:c8:5f:11:bc:9e:14:ac:8e:
63:86:74:e0:91:02:1e:f5:b9:7b:7a:c4:3e:cb:6f:
9c:8c:bd:4b:5c:31:23:e0:88:58:c2:d7:32:f6:38:
a4:ba:1b:00:7d:e1:04:dc:2c:62:1c:d0:8f:8c:73:
f4:c3:29:ed:58:cd:bc:fa:2d:e9:d2:3c:3c:e7:61:
5a:1f:2a:95:aa:50:52:de:f3:09:4c:4b:8b:db:d0:
ad:2a:d4:94:4a:a0:3f:29:24:99:bb:d2:bb:45:56:
08:97:c3:bf:09:25:c0:6b:1e:52:36:f1:8e:29:44:
39:72:c0:c3:9b:cd:0d:9f:8c:74:3b:ba:3b:b3:2c:
77:54:b2:b4:56:fe:0b:81:d4:d2:e7:43:52:31:a7:
e1:50:76:da:1e:2e:82:b8:c4:d1:11:71:7d:23:49:
d9:a4:25:1a:79:ab:43:ae:35:8b:d4:3a:07:2f:39:
a9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:96:34:9A:EC:CB:E3:7F:23:5E:95:74:AD:33:FF:4C:E8:AB:24:54
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/BCB8B9AE8C8A11F08534637ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.66.0/24
Signature Algorithm: sha256WithRSAEncryption
df:0b:4b:d9:fb:1f:ed:9e:da:06:a5:b8:0c:a0:8d:a5:ba:e0:
0c:1d:f0:eb:a7:0b:b6:bc:c1:ba:74:6b:89:e1:78:54:fd:1a:
86:0f:b3:4d:37:df:1b:a7:83:e1:3f:3a:03:d3:31:f8:24:c9:
3b:31:ed:ab:81:d8:0b:ac:a7:ea:c9:ea:25:52:15:c6:e7:ad:
e3:87:62:d7:9e:cc:3a:a7:61:7c:e0:57:e8:da:0d:cf:7d:16:
ce:f5:e0:a8:fb:b8:c9:16:fe:a1:39:95:29:41:6d:ad:03:8d:
bc:b6:20:72:86:4e:13:cd:68:19:09:6b:c7:b1:3c:f2:77:c2:
74:40:14:5c:e5:20:3b:c1:fc:9a:34:39:66:da:75:c8:21:13:
fa:58:cb:6c:04:80:02:95:ac:44:2f:e4:f6:a3:af:7f:69:73:
06:48:8a:9d:02:a4:90:43:2d:fe:31:73:b2:60:4f:6b:d9:9e:
8d:be:66:85:46:dd:7f:8b:aa:29:06:35:ad:35:fa:ba:e2:b8:
14:25:e1:28:7b:35:24:ae:09:cb:e1:00:da:d9:ed:3c:89:db:
89:c5:d5:e6:94:58:84:58:4e:74:c9:f9:87:c1:56:0c:e5:61:
58:ef:ae:43:d4:90:b9:98:2c:10:84:e0:21:5f:2d:1b:e2:35:
56:f7:52:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 07:13:41 2025 by rpki-client