Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/A2715940868E11F08FA82F88DAE4EC9C.roa
File: A2715940868E11F08FA82F88DAE4EC9C.roa (raw, json)
Hash identifier: E4UOsaNzKSmSmQti7WTsZ5F69ADkj1yaGvZKWgLvBSA=
Subject key identifier: 87:9E:EA:8D:CC:DC:D1:DB:E3:9D:E0:A9:C1:5E:E7:61:31:70:F7:E5
Certificate issuer: /CN=F366FE6CAF/serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Certificate serial: 075D
Authority key identifier: 4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/A2715940868E11F08FA82F88DAE4EC9C.roa
Signing time: Sun 31 Aug 2025 17:19:22 +0000
ROA not before: Sun 31 Aug 2025 17:19:17 +0000
ROA not after: Fri 31 Aug 2035 17:19:17 +0000
asID: 328748
IP address blocks: 102.216.158.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.crl
rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.mft
rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Sep 2025 00:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1885 (0x75d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366FE6CAF, serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Validity
Not Before: Aug 31 17:19:17 2025 GMT
Not After : Aug 31 17:19:17 2035 GMT
Subject: CN=68b4841a-7fba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:29:ab:82:6e:34:65:46:ef:44:03:1a:24:80:
e1:c5:28:bc:5d:56:23:13:d8:77:4d:bb:81:d2:38:
d4:60:8a:04:0e:36:d0:59:45:26:88:b4:37:1d:50:
f2:72:77:4d:39:ec:ee:39:4b:ed:c9:7c:4c:b6:e0:
10:b8:ca:76:62:41:c0:5e:e5:f1:69:f1:9e:5c:0e:
07:c8:6e:15:0b:cf:d3:ec:18:3f:5f:70:59:2b:7a:
8d:1a:a6:eb:7a:06:6f:ed:1a:ac:ce:98:fc:f5:1f:
70:0c:f4:94:9a:71:bb:f2:05:53:74:52:a4:0f:3b:
29:e8:ed:76:19:c7:ec:81:97:5c:5c:14:86:93:b4:
e5:c8:ba:45:72:ae:1a:5c:86:19:b2:31:e0:b1:6f:
20:b0:b5:02:3a:01:cb:da:7d:36:59:1c:e5:a6:63:
7c:a7:01:70:d4:4e:a2:89:69:6b:0f:12:d7:9d:b9:
24:49:40:ca:98:0a:2b:bb:e7:5a:29:a9:97:da:54:
5d:ec:e9:dd:78:2f:0c:92:d0:99:6a:ad:74:2c:da:
01:a2:54:59:8d:71:a5:67:b5:84:2e:2a:0c:c3:b6:
04:1f:35:b1:89:3e:5b:98:50:e1:e0:eb:30:e4:1d:
57:fc:79:b7:6b:f2:1f:b8:12:8b:91:32:f6:e5:9a:
ee:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:9E:EA:8D:CC:DC:D1:DB:E3:9D:E0:A9:C1:5E:E7:61:31:70:F7:E5
X509v3 Authority Key Identifier:
keyid:4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/A2715940868E11F08FA82F88DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.158.0/23
Signature Algorithm: sha256WithRSAEncryption
17:e9:36:fe:c3:06:c2:8c:35:40:41:cb:d4:a8:7d:a9:63:f4:
52:5f:28:47:61:f3:c4:21:0f:7d:ee:97:6d:bf:f4:f0:ba:98:
89:38:45:19:61:26:26:c2:7b:f2:26:8e:a0:8b:c3:6e:ac:62:
24:77:19:28:85:f7:20:0b:d0:dc:25:c5:27:2e:bd:b3:30:0c:
dd:ca:71:2a:bf:1c:84:3c:79:38:11:65:74:47:6a:7e:18:bb:
08:91:d3:5e:d7:7c:f6:5b:b6:4c:04:12:1a:85:94:ad:48:38:
db:83:34:80:1f:5b:ae:61:8e:42:71:f2:f4:5b:cd:e5:53:3f:
3f:0d:88:81:ba:89:20:c0:6d:2c:38:78:87:a8:7b:d0:fb:03:
05:5a:38:3c:87:18:b4:b4:7f:a8:6e:e0:14:a5:c6:21:f8:4b:
11:91:52:04:6c:01:37:b4:0b:b3:04:e9:47:bb:f8:c6:1d:b8:
b8:71:1d:70:0a:f9:da:c8:3f:e4:91:f4:f2:81:35:ce:fd:29:
ea:0f:7f:8e:cd:99:51:9e:df:92:c4:68:23:ef:82:89:6e:e3:
45:4e:bc:16:4a:1f:96:b1:9f:b1:93:10:07:09:b2:ab:fd:bd:
86:e8:a7:a4:44:99:5f:96:33:e9:db:c4:b8:58:f8:eb:9e:da:
fb:8e:fa:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 09:25:53 2025 by rpki-client