Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/35D4DB06B04911F0BA256ED0DAE4EC9C.roa
File: 35D4DB06B04911F0BA256ED0DAE4EC9C.roa (raw, json)
Hash identifier: nYw6CQI0uqDx+sDeEx/GhoJ+UFz5Qki5enclWQQNAAA=
Subject key identifier: A2:6C:07:BC:07:9B:0D:1B:EC:C6:5D:0D:EE:FD:E6:4C:ED:F7:7B:98
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 07EB
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/35D4DB06B04911F0BA256ED0DAE4EC9C.roa
Signing time: Thu 23 Oct 2025 19:48:13 +0000
ROA not before: Thu 23 Oct 2025 19:48:09 +0000
ROA not after: Sun 30 Nov 2025 19:48:09 +0000
asID: 22724
IP address blocks: 102.177.166.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2027 (0x7eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Oct 23 19:48:09 2025 GMT
Not After : Nov 30 19:48:09 2025 GMT
Subject: CN=68fa867d-33dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:06:2d:01:e1:cb:cd:ae:a5:ae:ff:ae:fb:5e:
6a:60:f1:ac:16:78:28:b5:75:b5:f7:a4:37:8e:5c:
63:2a:9e:73:13:45:3a:d1:fb:99:30:0d:b6:7c:ea:
b0:80:ef:47:25:a4:30:41:35:3b:ed:61:8c:ff:48:
4f:d6:f6:a3:cf:94:15:5c:f8:7f:d2:03:6b:a1:97:
80:ad:cb:dd:d6:af:d3:9f:eb:e9:1a:03:41:12:79:
cb:70:21:e4:bf:8a:e0:c9:59:24:91:be:02:85:b0:
bc:5a:26:a5:4b:21:a2:86:89:22:01:56:bb:b5:12:
dd:12:c9:7b:e5:73:d7:47:1d:2b:83:0c:b8:05:c9:
61:f9:4e:2b:7b:4d:78:2d:db:df:27:93:16:41:d8:
c3:3a:f4:04:cb:9f:16:fc:b5:66:09:c5:1e:12:9f:
d0:e5:58:2c:c7:d2:f3:ed:c8:39:01:5b:d1:36:ae:
48:be:dd:57:e9:2a:d1:e0:39:6c:34:df:d2:df:07:
bc:10:7f:5c:b2:fd:da:3a:59:89:92:b0:c9:29:43:
80:81:b4:8a:f4:36:66:51:e1:4d:3c:0c:57:e9:fb:
7e:f0:60:b3:32:d5:03:4c:11:99:0a:4e:fd:69:30:
3a:9f:af:ac:58:3c:12:c4:1d:c6:c6:8d:84:db:78:
3c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6C:07:BC:07:9B:0D:1B:EC:C6:5D:0D:EE:FD:E6:4C:ED:F7:7B:98
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/35D4DB06B04911F0BA256ED0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.166.0/24
Signature Algorithm: sha256WithRSAEncryption
26:1a:aa:50:11:7e:90:21:3e:bb:3c:78:aa:6b:96:65:ef:2f:
03:66:44:e5:df:45:ee:50:85:2e:fd:f3:9f:fc:3a:c4:d2:f0:
2e:2a:7d:c2:20:ba:d8:a0:a6:72:94:4f:67:d6:a8:8b:2e:5e:
e6:c4:7e:d5:32:5a:65:fd:00:b1:9d:a1:87:51:2f:43:d6:d3:
0e:47:29:38:09:08:12:73:12:53:59:fd:a6:ed:5c:b9:de:a6:
9e:4a:27:1a:9a:65:53:b4:9d:a2:21:c3:f2:da:eb:af:56:59:
ca:68:86:91:18:9e:61:36:a6:c8:ae:79:5f:01:57:a3:b1:a4:
b9:a7:c4:82:ad:4a:ed:4f:d8:07:a3:2e:f0:13:e6:ba:22:b1:
5f:f1:2c:0d:07:b9:50:16:f8:f7:fa:23:8b:d6:55:83:46:c0:
9e:eb:c0:eb:57:7e:b8:71:fe:04:03:6b:22:74:f2:1f:ba:20:
a1:b9:9d:52:bb:a6:56:51:49:85:74:9c:6e:5f:a7:1a:55:5d:
79:4a:ec:37:b0:19:f2:d3:1a:8a:1c:51:00:4d:94:0f:d1:be:
1c:e5:82:eb:d3:cb:ee:f7:97:05:cb:64:20:ec:82:d4:31:b2:
c9:35:41:3f:3f:3d:d6:2f:02:1e:80:07:30:21:d1:2b:64:e8:
16:62:04:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 01:06:16 2025 by rpki-client