Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/CA7EFB488A5511F087FB7DA8DAE4EC9C.roa
File: CA7EFB488A5511F087FB7DA8DAE4EC9C.roa (raw, json)
Hash identifier: Ug0+gIQdjEUDjM5R2b217Iua+54IK8GvDyRtkQTLtGk=
Subject key identifier: 17:FC:D5:52:A3:D6:39:EB:8B:E3:43:93:34:C9:37:5C:BB:91:33:CF
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0DDB
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/CA7EFB488A5511F087FB7DA8DAE4EC9C.roa
Signing time: Fri 05 Sep 2025 12:42:33 +0000
ROA not before: Fri 05 Sep 2025 12:42:28 +0000
ROA not after: Sat 05 Sep 2026 12:42:28 +0000
asID: 208185
IP address blocks: 102.135.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.mft
rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 09 Sep 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3547 (0xddb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF, serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Validity
Not Before: Sep 5 12:42:28 2025 GMT
Not After : Sep 5 12:42:28 2026 GMT
Subject: CN=68badab8-11ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e1:d6:4e:c7:4f:a1:90:3a:4a:52:01:c6:7e:
d7:2e:93:9f:cc:a3:d0:dd:05:1b:70:db:38:78:38:
0e:c3:ec:6e:6f:a8:47:71:c2:53:70:79:45:17:dc:
e2:dc:e7:a6:72:20:21:51:c7:20:ec:1e:8d:81:d7:
da:f2:2e:70:b0:1d:98:ea:36:95:80:69:a1:b2:38:
fd:75:cb:93:53:5e:89:e7:9a:a6:0e:47:97:d9:41:
70:36:4b:0d:2c:b8:2a:0a:08:41:8f:0f:c6:44:6b:
a3:29:b3:9c:08:38:ed:d4:56:bf:51:08:7d:d5:57:
e4:b4:6f:27:06:22:9c:0e:64:28:67:4b:cb:75:70:
15:e3:69:05:a5:57:94:66:7a:dc:9e:54:d7:61:64:
aa:d1:c6:65:67:4e:72:a1:75:93:41:3f:06:e5:d0:
9d:c9:cf:ca:78:0e:83:ca:f3:2b:1b:58:60:d6:cb:
23:09:17:28:db:49:ed:bf:d4:df:f7:50:f0:e3:fd:
d8:07:51:f6:14:7f:9a:c0:45:ec:b0:bb:3c:22:34:
3b:76:8a:ce:72:27:9b:da:a3:05:5e:37:af:88:ae:
0c:ac:d7:04:0e:0d:52:50:4c:29:1d:42:f3:0c:03:
41:53:cb:08:1a:24:95:fa:60:55:6d:22:8f:98:7f:
3f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:FC:D5:52:A3:D6:39:EB:8B:E3:43:93:34:C9:37:5C:BB:91:33:CF
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/CA7EFB488A5511F087FB7DA8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.104.0/24
Signature Algorithm: sha256WithRSAEncryption
74:78:60:a1:8e:20:30:7f:f3:0e:31:07:e5:24:6d:58:21:36:
15:2c:21:a7:68:bd:da:93:0d:e4:4d:9d:e6:69:c0:44:de:e3:
da:e3:8f:c1:a2:ae:64:58:c5:f3:3b:48:ed:f5:ca:3d:48:6a:
76:26:04:43:df:78:47:79:31:0e:c8:5e:d5:5a:73:c0:0e:9a:
f9:fb:1c:04:a4:ee:19:aa:19:ab:11:b1:a3:7f:4e:8f:2d:0e:
c5:e1:e2:cf:09:b4:10:f6:6c:8e:98:39:47:ee:b5:97:41:ee:
38:ad:a7:ae:55:cd:13:b9:59:12:45:85:12:7b:bd:93:4b:e6:
7d:53:c3:3f:72:fc:7a:a0:7a:bf:44:ee:c4:56:5f:aa:db:1b:
f4:9f:00:b3:ee:84:7d:99:e7:f7:15:0f:45:c9:84:63:1b:1d:
80:d2:6d:fc:ae:9f:09:64:0a:44:25:20:70:76:6f:03:b6:fe:
9d:b0:e4:f2:a9:cf:09:55:8e:68:c1:68:e1:41:ac:26:f9:a0:
f1:a7:c8:e6:1f:82:ff:e8:d5:71:3e:08:e8:10:fe:9c:c0:60:
6f:19:3b:f3:f8:c6:25:af:8b:cf:d0:1f:ec:8e:04:99:3b:02:
a3:d4:15:c4:34:a5:b6:28:63:c9:7c:8a:12:3c:92:e8:fa:1a:
7e:7f:60:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 08:54:51 2025 by rpki-client