Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/49DF1BFA823811F0966D6EB6DAE4EC9C.roa
File: 49DF1BFA823811F0966D6EB6DAE4EC9C.roa (raw, json)
Hash identifier: 94vpLfKlFsg/QtwEdwPCd3PKqQroRPh8vm+klqQcxnY=
Subject key identifier: D0:82:FD:3C:57:A9:2D:40:B4:38:BC:56:AF:38:14:4D:E5:A0:C5:F1
Certificate issuer: /CN=F3671347AF/serialNumber=3128B1596F1DA0AA6CEDCFC99DEC8E1D628489E5
Certificate serial: 0C
Authority key identifier: 31:28:B1:59:6F:1D:A0:AA:6C:ED:CF:C9:9D:EC:8E:1D:62:84:89:E5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/49DF1BFA823811F0966D6EB6DAE4EC9C.roa
Signing time: Tue 26 Aug 2025 04:51:12 +0000
ROA not before: Tue 26 Aug 2025 04:51:06 +0000
ROA not after: Thu 31 Aug 2045 04:51:06 +0000
asID: 36983
IP address blocks: 41.222.105.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.crl
rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.mft
rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 19 Sep 2025 05:13:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12 (0xc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3671347AF, serialNumber=3128B1596F1DA0AA6CEDCFC99DEC8E1D628489E5
Validity
Not Before: Aug 26 04:51:06 2025 GMT
Not After : Aug 31 04:51:06 2045 GMT
Subject: CN=68ad3d40-258c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3e:a1:23:58:d3:32:0a:9e:96:d2:a1:8d:e8:
44:d3:df:9b:a4:a1:86:19:fb:26:59:17:a3:a7:5a:
43:8e:a0:00:48:b8:90:4c:e9:47:9a:cb:09:42:ec:
ec:18:da:6f:ec:27:b2:4c:1c:ce:bf:28:96:91:fa:
46:53:57:29:28:f1:7d:e6:02:be:93:07:3a:9f:5e:
25:1b:b6:e2:d5:8e:c4:59:8d:8c:80:97:b4:10:cb:
01:49:f1:51:b7:6a:95:64:76:a9:c1:c6:d6:89:09:
ff:51:48:7b:96:be:9b:b0:5b:ff:6d:05:e6:85:33:
71:c3:a6:b2:6a:d0:f2:5b:3c:54:d7:93:aa:5f:b8:
cd:26:13:95:66:40:cd:36:1b:2d:17:5a:dd:48:cd:
b9:50:5d:5d:a7:b5:8a:a3:07:64:41:24:bb:22:b4:
87:23:fe:17:86:48:d5:61:36:66:1f:ee:1c:b3:72:
94:d8:9a:2a:96:a7:bf:3b:07:a0:a6:24:04:da:f1:
53:1e:02:0b:b9:8a:7d:d2:28:10:08:6f:d9:da:ff:
df:93:39:e6:10:25:5b:71:e9:41:3a:f6:cc:c8:9f:
3c:b1:64:d1:0c:94:2b:c9:9c:6c:db:a7:19:b3:c1:
8c:71:f0:9d:bf:84:c2:74:6f:02:91:c9:ba:0e:aa:
df:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:82:FD:3C:57:A9:2D:40:B4:38:BC:56:AF:38:14:4D:E5:A0:C5:F1
X509v3 Authority Key Identifier:
keyid:31:28:B1:59:6F:1D:A0:AA:6C:ED:CF:C9:9D:EC:8E:1D:62:84:89:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/MSixWW8doKps7c_JneyOHWKEieU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/MSixWW8doKps7c_JneyOHWKEieU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3671347/253D17E4818D11F09A3553D5DAE4EC9C/49DF1BFA823811F0966D6EB6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.105.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:bc:db:d7:38:35:ea:bb:14:a2:e5:ff:45:31:cc:c2:cb:68:
13:80:94:0d:2f:b8:17:b7:e3:65:92:33:06:d0:9c:33:19:13:
4c:bb:6c:fe:d6:f2:7f:be:22:e5:30:91:f4:ac:3d:e0:a0:a7:
05:12:f1:1a:55:9e:92:4b:f6:30:ce:9e:fe:a2:b6:37:65:2f:
04:3b:d8:7a:d1:19:df:0b:d0:76:e9:11:cc:91:f8:25:ac:b2:
3d:e8:c7:ac:ac:93:20:7b:3a:3d:cc:f2:25:18:64:d7:05:db:
d7:bb:63:80:b2:43:49:92:9d:a6:7e:15:10:44:28:4c:52:47:
07:60:21:99:2f:4f:84:58:d5:d4:94:c1:aa:bc:c9:38:d7:02:
b2:80:85:4b:51:8e:81:97:e9:2d:08:ff:ed:93:1b:47:b7:75:
e1:83:f0:4e:9f:6f:b3:a8:13:91:79:43:83:89:6d:77:1f:4f:
f6:89:de:3d:8e:ec:39:5e:2a:81:3f:39:fd:66:a2:90:26:be:
04:b4:ae:fa:1e:a5:26:f6:39:c1:27:0e:0f:2d:c0:a1:5f:a7:
fd:a7:b8:54:b7:6d:6b:ab:35:63:9e:95:8c:6f:c6:22:91:73:
9c:4b:f4:a9:95:12:a6:35:5a:ba:f1:e2:9b:8e:47:90:47:93:
af:73:b8:cc
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBDDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY3
MTM0N0FGMTEwLwYDVQQFEygzMTI4QjE1OTZGMURBMEFBNkNFRENGQzk5REVDOEUx
RDYyODQ4OUU1MB4XDTI1MDgyNjA0NTEwNloXDTQ1MDgzMTA0NTEwNlowGDEWMBQG
A1UEAxMNNjhhZDNkNDAtMjU4YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALY+oSNY0zIKnpbSoY3oRNPfm6Shhhn7JlkXo6daQ46gAEi4kEzpR5rLCULs
7Bjab+wnskwczr8olpH6RlNXKSjxfeYCvpMHOp9eJRu24tWOxFmNjICXtBDLAUnx
UbdqlWR2qcHG1okJ/1FIe5a+m7Bb/20F5oUzccOmsmrQ8ls8VNeTql+4zSYTlWZA
zTYbLRda3UjNuVBdXae1iqMHZEEkuyK0hyP+F4ZI1WE2Zh/uHLNylNiaKpanvzsH
oKYkBNrxUx4CC7mKfdIoEAhv2dr/35M55hAlW3HpQTr2zMifPLFk0QyUK8mcbNun
GbPBjHHwnb+EwnRvApHJug6q33kCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTQgv08
V6ktQLQ4vFavOBRN5aDF8TAfBgNVHSMEGDAWgBQxKLFZbx2gqmztz8md7I4dYoSJ
5TAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NzEzNDcvMjUzRDE3RTQ4MThEMTFGMDlBMzU1M0Q1REFFNEVDOUMvTVNpeFdX
OGRvS3BzN2NfSm5leU9IV0tFaWVVLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvTVNpeFdXOGRvS3BzN2NfSm5leU9IV0tFaWVVLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NzEzNDcvMjUzRDE3RTQ4MThEMTFGMDlBMzU1M0Q1REFF
NEVDOUMvNDlERjFCRkE4MjM4MTFGMDk2NkQ2RUI2REFFNEVDOUMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACneaTANBgkqhkiG9w0BAQsF
AAOCAQEAW7zb1zg16rsUouX/RTHMwstoE4CUDS+4F7fjZZIzBtCcMxkTTLts/tby
f74i5TCR9Kw94KCnBRLxGlWekkv2MM6e/qK2N2UvBDvYetEZ3wvQdukRzJH4Jayy
PejHrKyTIHs6PczyJRhk1wXb17tjgLJDSZKdpn4VEEQoTFJHB2AhmS9PhFjV1JTB
qrzJONcCsoCFS1GOgZfpLQj/7ZMbR7d14YPwTp9vs6gTkXlDg4ltdx9P9onePY7s
OV4qgT85/WaikCa+BLSu+h6lJvY5wScODy3AoV+n/ae4VLdta6s1Y56VjG/GIpFz
nEv0qZUSpjVauvHim45HkEeTr3O4zA==
-----END CERTIFICATE-----
Generated at Thu Sep 18 02:15:22 2025 by rpki-client