Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/64879FF4952F11F095F6C4A5DAE4EC9C.roa
File: 64879FF4952F11F095F6C4A5DAE4EC9C.roa (raw, json)
Hash identifier: X6SUIt9mDKXhbZgGOSMBqAFD9GzqobcGIeeKANDWNp4=
Subject key identifier: 25:35:6B:BF:EA:AB:20:EE:13:14:0C:AB:5C:A8:D9:5F:3A:7D:A8:E9
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 07A9
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/64879FF4952F11F095F6C4A5DAE4EC9C.roa
Signing time: Fri 19 Sep 2025 08:05:24 +0000
ROA not before: Fri 19 Sep 2025 08:05:19 +0000
ROA not after: Tue 28 Oct 2025 08:05:19 +0000
asID: 200113
IP address blocks: 102.177.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1961 (0x7a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Sep 19 08:05:19 2025 GMT
Not After : Oct 28 08:05:19 2025 GMT
Subject: CN=68cd0ec3-2b17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:be:0e:e3:d9:30:ed:23:d7:24:52:79:1d:41:
5a:a7:e9:e0:ca:61:f4:c3:02:8f:c3:03:fc:87:df:
be:42:2f:0b:eb:8e:da:5d:08:9c:ab:b7:cd:9b:7e:
f6:3b:5f:69:8c:1d:aa:0d:83:47:fa:fd:f9:ec:59:
68:05:5c:bf:04:80:e4:50:5f:44:d1:da:9c:d0:fa:
f4:90:15:e8:48:41:6e:9f:65:99:dc:20:9f:87:a2:
23:e5:2d:70:d7:87:91:75:f8:a8:3f:ea:d5:03:61:
ed:bb:dd:fd:02:c5:9c:fa:32:bf:4a:d9:97:24:fb:
c0:a2:db:67:69:ae:fc:32:37:01:ea:7b:38:4c:cf:
6e:5e:b3:eb:58:f3:ae:08:76:fc:a9:10:83:58:cd:
4b:5d:3e:31:67:92:ee:ba:ed:e1:17:53:13:e6:7b:
35:d1:30:1a:2b:c2:25:23:56:c9:a3:3e:98:b7:7f:
fe:a0:af:b0:16:ae:a3:ed:8a:cb:6e:65:86:65:48:
70:c4:75:8c:2f:ce:c0:91:e7:bd:5c:46:3d:09:fe:
e3:d0:07:b4:67:23:cd:95:9b:48:8c:6f:d9:20:5a:
9a:dc:09:ef:14:fa:59:2c:53:a9:42:be:63:bc:40:
38:7a:8c:72:9c:bd:b3:94:a4:da:3a:f1:aa:50:18:
a0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:35:6B:BF:EA:AB:20:EE:13:14:0C:AB:5C:A8:D9:5F:3A:7D:A8:E9
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/64879FF4952F11F095F6C4A5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.184.0/24
Signature Algorithm: sha256WithRSAEncryption
99:94:13:79:73:99:6d:dd:b8:b6:e8:20:23:4c:7b:fd:6b:ea:
d4:cb:ce:ec:be:4d:1f:2c:c3:51:5d:4f:db:f1:9a:c4:ca:76:
cc:fa:0f:52:85:1d:25:6a:c7:1e:81:42:d0:23:08:5e:ce:ed:
ee:5f:9a:a7:cc:ba:61:27:e0:cb:21:50:be:e4:e4:e9:0a:1e:
86:aa:49:ff:0d:cb:96:39:4f:71:6a:51:be:8a:a8:94:15:50:
cd:2a:39:55:e0:8a:17:a5:ed:b5:87:da:f3:98:6b:c8:51:1f:
b0:67:e6:7d:ba:a7:e5:99:ff:ad:2d:80:dc:6e:1c:c3:90:35:
91:e5:9f:22:d8:fe:6f:56:f6:f7:be:ef:75:61:83:3e:b5:88:
de:c2:34:d0:a8:c7:96:27:75:91:6a:22:38:f9:99:1b:25:5a:
25:48:2b:51:68:67:73:60:f6:48:e8:15:66:7d:cb:04:fa:7b:
0f:22:7b:62:1e:e9:14:89:69:dd:68:ea:20:8a:3b:8a:7e:bc:
c9:62:0c:2d:63:36:e9:ce:1c:82:bf:86:95:84:00:6b:16:46:
df:10:13:64:c0:bb:aa:cb:c9:a4:aa:0a:b6:bf:da:6a:6c:ce:
0d:34:55:63:36:37:c0:97:b6:40:61:a4:01:74:88:86:f3:b6:
30:e6:1b:bf
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB6kwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yNTA5MTkwODA1MTlaFw0yNTEwMjgwODA1MTlaMBgxFjAU
BgNVBAMTDTY4Y2QwZWMzLTJiMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC1vg7j2TDtI9ckUnkdQVqn6eDKYfTDAo/DA/yH375CLwvrjtpdCJyrt82b
fvY7X2mMHaoNg0f6/fnsWWgFXL8EgORQX0TR2pzQ+vSQFehIQW6fZZncIJ+HoiPl
LXDXh5F1+Kg/6tUDYe273f0CxZz6Mr9K2Zck+8Ci22dprvwyNwHqezhMz25es+tY
864IdvypEINYzUtdPjFnku667eEXUxPmezXRMBorwiUjVsmjPpi3f/6gr7AWrqPt
istuZYZlSHDEdYwvzsCR571cRj0J/uPQB7RnI82Vm0iMb9kgWprcCe8U+lksU6lC
vmO8QDh6jHKcvbOUpNo68apQGKARAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUJTVr
v+qrIO4TFAyrXKjZXzp9qOkwHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4LzY0ODc5RkY0OTUyRjExRjA5NUY2QzRBNURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsbgwDQYJKoZIhvcNAQEL
BQADggEBAJmUE3lzmW3duLboICNMe/1r6tTLzuy+TR8sw1FdT9vxmsTKdsz6D1KF
HSVqxx6BQtAjCF7O7e5fmqfMumEn4MshUL7k5OkKHoaqSf8Ny5Y5T3FqUb6KqJQV
UM0qOVXgihel7bWH2vOYa8hRH7Bn5n26p+WZ/60tgNxuHMOQNZHlnyLY/m9W9ve+
73Vhgz61iN7CNNCox5YndZFqIjj5mRslWiVIK1FoZ3Ng9kjoFWZ9ywT6ew8ie2Ie
6RSJad1o6iCKO4p+vMliDC1jNunOHIK/hpWEAGsWRt8QE2TAu6rLyaSqCra/2mps
zg00VWM2N8CXtkBhpAF0iIbztjDmG78=
-----END CERTIFICATE-----
Generated at Sun Oct 19 12:51:11 2025 by rpki-client