Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/A3D2B7049AAA11F0B0117BA4DAE4EC9C.roa
File: A3D2B7049AAA11F0B0117BA4DAE4EC9C.roa (raw, json)
Hash identifier: UVrwEGG8WIp9xnKuBnz7H6Xm6CR/H6UePyB8ksY3Vyc=
Subject key identifier: 25:52:A4:EE:A2:D7:D2:49:93:84:EC:1E:63:27:9A:17:B4:72:DC:31
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 07C0
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/A3D2B7049AAA11F0B0117BA4DAE4EC9C.roa
Signing time: Fri 26 Sep 2025 07:30:14 +0000
ROA not before: Fri 26 Sep 2025 07:30:09 +0000
ROA not after: Thu 30 Oct 2025 07:30:09 +0000
asID: 23470
IP address blocks: 102.177.181.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 10 Oct 2025 02:05:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1984 (0x7c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Sep 26 07:30:09 2025 GMT
Not After : Oct 30 07:30:09 2025 GMT
Subject: CN=68d64105-be3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8b:b3:32:01:5a:db:b9:f3:ae:d0:67:4c:60:
dc:63:9d:b6:ee:d8:c0:26:62:fc:64:1c:0a:21:f8:
52:d1:2a:4d:cb:c0:4a:34:6b:6e:5b:69:51:47:00:
8e:98:1c:71:be:e0:b4:97:8e:f8:83:f8:f4:a3:dc:
c7:d1:e3:60:f0:26:d8:3f:7d:ba:61:53:c3:fa:3d:
01:a7:fc:14:b3:19:8e:77:64:f4:53:49:cb:5e:b4:
45:52:ae:1b:9c:15:ec:2b:8e:33:ee:82:16:34:30:
ca:39:e8:12:7f:54:5a:74:3d:57:2b:3f:1b:35:82:
6e:2c:0c:54:28:0c:1e:f2:f3:f0:0c:d2:cf:80:5e:
fb:49:97:1a:80:af:ce:0a:16:79:22:b1:83:89:51:
b0:64:34:56:9d:99:e6:e5:e6:57:7a:22:d4:95:1e:
65:f7:f6:c7:65:fa:04:3d:6d:80:13:12:e5:01:0d:
3e:ff:ca:bc:76:fa:02:84:bf:60:bf:3b:da:55:b9:
b5:22:4d:1d:bb:f9:49:64:be:a1:f0:eb:dc:96:fb:
e1:0d:0a:9b:dd:c4:b5:1e:3d:fb:36:d0:60:e3:0b:
ba:34:25:cd:fb:76:44:44:b2:ca:1e:fd:e6:48:70:
09:87:30:4b:56:24:2a:2c:08:5e:2e:c0:08:e6:fa:
87:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:52:A4:EE:A2:D7:D2:49:93:84:EC:1E:63:27:9A:17:B4:72:DC:31
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/A3D2B7049AAA11F0B0117BA4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.181.0/24
Signature Algorithm: sha256WithRSAEncryption
40:d2:a9:3c:16:1e:cb:28:b9:96:33:b3:52:98:ea:95:2e:9e:
7e:a1:6b:48:78:cc:18:71:2f:ef:e0:07:be:6f:dd:da:be:2e:
78:0c:dd:63:0c:89:5c:ab:e5:06:e8:9f:8c:91:18:2e:43:a5:
c9:d6:29:3d:19:60:99:f9:6b:ed:fe:45:9c:b1:03:7f:5b:8b:
ec:12:1c:5e:9e:b3:0d:ed:fb:86:9f:d0:50:f0:c6:86:02:6e:
93:4b:0e:09:9a:9f:86:6f:11:ea:83:8e:eb:07:23:18:9b:bd:
d7:ee:4d:ce:c1:6c:b7:5e:8a:2c:c8:98:1e:e7:22:a2:ee:c7:
5c:5c:5b:ff:31:55:ae:30:39:45:77:19:43:f4:bb:28:ee:c1:
0b:9f:4e:58:9a:e4:a9:50:c3:81:6a:61:fc:f8:66:86:1e:be:
21:2e:73:a5:a2:54:8e:77:15:38:4d:05:4e:af:63:38:7f:43:
00:4c:2d:b3:18:a5:53:ad:d0:ec:c5:75:98:6c:4c:f4:35:26:
7a:ed:36:db:a9:54:ef:d8:29:cf:26:b7:a0:5d:19:fd:a5:37:
53:d4:22:05:15:81:c2:db:e1:d7:a1:6f:ae:8f:79:fa:36:22:
4b:92:09:29:97:9b:6e:5a:17:14:1f:db:be:f6:20:0f:43:9b:
dc:22:0a:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 8 22:54:05 2025 by rpki-client