Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/86E0F9FE849C11F0900825E5DAE4EC9C.roa
File: 86E0F9FE849C11F0900825E5DAE4EC9C.roa (raw, json)
Hash identifier: ZxMl/rQ3QqnqUve7kjgNdKK4TjkEiN6csMpxs7s3FKc=
Subject key identifier: 3B:A0:FC:5C:D4:CC:77:EB:D4:C6:E0:AB:AA:B0:D0:8B:47:36:4F:68
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 078B
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/86E0F9FE849C11F0900825E5DAE4EC9C.roa
Signing time: Fri 29 Aug 2025 05:53:46 +0000
ROA not before: Fri 29 Aug 2025 05:53:42 +0000
ROA not after: Fri 03 Oct 2025 05:53:42 +0000
asID: 23470
IP address blocks: 102.177.182.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 09 Sep 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1931 (0x78b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 29 05:53:42 2025 GMT
Not After : Oct 3 05:53:42 2025 GMT
Subject: CN=68b1406a-0d9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:ee:04:9c:0e:d8:7d:7e:fe:31:a5:f0:a6:16:
1d:91:45:27:c5:24:0a:b2:1a:16:4f:14:e0:c4:eb:
7a:40:ad:a2:c4:a6:1c:d9:d8:e8:cd:f1:64:37:90:
41:17:75:5a:02:fb:8f:51:c1:84:b4:a6:04:9a:d7:
3f:ec:c6:6f:02:bc:09:51:ee:0b:3f:17:a6:a7:15:
c3:30:47:3a:d2:77:50:47:79:b9:96:70:c8:82:7a:
13:df:1c:c7:dc:7f:f1:fc:a9:09:a9:dc:68:c1:4c:
77:c2:f8:e2:a4:33:3c:43:df:fb:bf:ec:60:ed:86:
97:7e:0f:f8:3e:6a:67:96:5c:2c:3b:06:cd:66:44:
cf:94:c1:7f:d8:12:90:e5:0e:e6:18:dd:aa:2a:a7:
ab:dc:27:8b:c0:7d:2f:83:4a:23:d8:90:62:5a:0a:
76:86:61:8e:29:60:1c:41:3e:e2:f0:a6:bf:bb:6c:
3e:79:69:7c:aa:c4:c4:df:c9:ce:ae:66:ef:c2:10:
09:39:8d:e2:da:58:5f:3d:55:2f:28:67:f7:50:d8:
40:07:59:ce:4a:f8:47:d2:8f:5a:0b:af:a7:e9:3a:
81:ff:5d:bc:f8:12:88:bc:63:42:29:68:17:7e:d3:
5b:29:07:3a:34:5d:3f:34:c7:3d:9d:93:78:b2:e5:
72:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A0:FC:5C:D4:CC:77:EB:D4:C6:E0:AB:AA:B0:D0:8B:47:36:4F:68
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/86E0F9FE849C11F0900825E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.182.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:b8:5e:43:b8:30:e8:ac:6c:ce:74:f4:a2:ff:f2:4e:90:9b:
b2:6a:9e:b9:c4:65:fa:06:09:3c:a4:40:68:3f:88:b9:fb:50:
0b:41:94:18:a9:53:a7:fe:0b:6b:c8:ee:1a:e9:9f:d5:1f:6c:
02:88:3d:df:fd:b3:c5:da:be:f6:4e:cd:54:1c:50:ba:7e:60:
ad:72:e5:7f:78:27:a7:21:f7:b2:10:ac:8e:48:de:76:a2:5c:
06:6c:3f:17:7c:f3:48:f9:d6:e0:b5:8b:13:86:5c:09:ed:a9:
c5:22:8f:c2:84:17:3f:70:e7:69:fb:6f:b1:4b:bc:b6:55:2c:
96:5b:82:10:86:81:47:42:70:6b:95:57:51:e3:26:9a:8a:51:
f0:fd:3c:33:9e:d8:36:fb:23:9e:98:9d:fc:28:74:ed:ee:ba:
c8:7d:12:db:48:5c:bd:fc:55:d1:95:a6:7f:7f:06:a5:27:d7:
c5:c9:40:84:13:8e:20:eb:1d:3e:5d:eb:e2:45:2e:7d:d7:98:
86:ec:8e:ca:df:23:18:88:67:d2:7c:77:52:2e:1f:be:2e:97:
69:18:77:29:db:75:da:0c:64:2c:34:cc:7c:2d:20:82:b3:e1:
87:ac:b9:85:45:a5:4e:f7:e5:6b:3c:4d:b3:13:cf:d7:05:85:
cf:03:85:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 15:50:17 2025 by rpki-client