Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/56D4E696849A11F0B5823AD6DAE4EC9C.roa
File: 56D4E696849A11F0B5823AD6DAE4EC9C.roa (raw, json)
Hash identifier: BetcNBugEjXjxGnCZeCKv2trp8mNDngGMMzxYqJhmks=
Subject key identifier: 25:97:4C:F0:E8:37:8E:00:83:90:D7:69:94:BB:41:88:24:70:10:C9
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0783
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/56D4E696849A11F0B5823AD6DAE4EC9C.roa
Signing time: Fri 29 Aug 2025 05:38:07 +0000
ROA not before: Fri 29 Aug 2025 05:38:02 +0000
ROA not after: Sun 28 Sep 2025 05:38:02 +0000
asID: 141718
IP address blocks: 102.177.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 09 Sep 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1923 (0x783)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 29 05:38:02 2025 GMT
Not After : Sep 28 05:38:02 2025 GMT
Subject: CN=68b13cbf-c36f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6e:a8:8b:96:40:2e:3b:f2:e1:40:2c:f1:a7:
c8:49:88:ec:25:57:fd:84:26:aa:ca:71:6d:0d:4b:
b5:9e:95:67:56:49:2f:7c:c4:a3:fa:ab:aa:5f:12:
50:fd:72:70:92:90:d6:4b:7d:b3:7a:1d:0b:df:4e:
8f:e9:94:bd:cd:07:2d:ad:44:72:73:8c:8d:e0:2b:
65:5b:a3:d2:b0:17:a7:2a:5e:6a:61:bf:dc:4e:73:
4d:da:03:34:f4:61:61:00:fe:44:5d:7c:91:33:15:
51:07:43:e1:96:98:64:93:9c:40:ff:28:c8:07:3d:
e3:a0:c4:32:e8:a7:60:70:c6:e7:04:1e:3e:47:2b:
fa:80:10:b3:3c:88:e6:7c:e1:57:57:f3:29:af:86:
1e:a7:9a:24:e2:0c:b6:1b:c6:f7:f3:0c:79:74:01:
20:79:45:f3:04:67:f7:01:bc:6d:4b:6f:0f:65:23:
64:bf:f5:34:9b:b9:9b:e2:66:70:87:2a:28:6e:15:
b7:86:d2:e2:9a:46:07:6f:f9:13:ce:60:3d:16:85:
ce:c8:8b:7e:58:c7:b1:a5:6e:1f:c6:91:20:8d:4e:
b8:78:29:b0:16:b8:84:07:01:85:f1:48:45:eb:54:
00:b4:7b:a0:17:0c:56:e4:41:c4:d9:e4:4a:83:ad:
ed:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:97:4C:F0:E8:37:8E:00:83:90:D7:69:94:BB:41:88:24:70:10:C9
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/56D4E696849A11F0B5823AD6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.180.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:08:7d:0b:9b:ae:c7:63:45:dc:91:98:51:0c:4f:8b:24:8a:
04:00:0c:c3:36:a1:ea:e5:b1:a2:f6:bb:e5:8b:20:3b:1b:8a:
36:04:55:3c:75:4f:b3:0b:75:54:14:3d:45:ae:2d:84:0b:53:
48:32:9f:ee:8c:9f:44:b2:b7:af:11:9c:2a:5b:68:61:32:5f:
7e:76:82:87:f4:a3:66:50:c5:b6:6e:0a:ff:0f:9b:26:35:c3:
23:f6:4b:f3:d0:21:0f:71:22:c4:89:29:00:db:e4:10:88:91:
0d:ce:8b:04:a1:87:69:ec:26:87:55:97:4a:da:24:ff:d2:98:
3c:2b:56:de:7b:4f:00:16:7b:a0:db:88:e7:1c:a8:e9:1e:3c:
67:dd:d4:69:ad:b3:33:f7:32:43:7f:b7:1a:a5:2e:5d:ee:45:
62:4d:a1:94:69:52:ee:63:87:e4:61:c8:57:9d:33:9a:ae:bc:
26:37:9e:de:9c:70:09:8e:ce:40:ea:4e:a6:8b:56:fc:e5:a4:
95:78:f5:36:69:55:a5:5f:32:ca:8a:b1:fe:50:32:3a:06:38:
f3:98:cc:db:39:5e:ba:83:3f:55:7b:63:80:52:79:99:f8:94:
13:2a:52:bc:b7:e9:19:fb:22:71:c2:12:1c:b9:30:ff:07:ec:
15:75:d4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:20 2025 by rpki-client