Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/F55A5B5C849A11F08B425BDADAE4EC9C.roa
File: F55A5B5C849A11F08B425BDADAE4EC9C.roa (raw, json)
Hash identifier: V5hnqpRztFHlvaZnik91sl9UMVtWcrRqeA+bsiZXMbo=
Subject key identifier: 2A:57:B7:6E:B1:C2:9C:30:75:23:67:BC:AD:BB:49:B8:51:B3:0F:C4
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0785
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/F55A5B5C849A11F08B425BDADAE4EC9C.roa
Signing time: Fri 29 Aug 2025 05:42:33 +0000
ROA not before: Fri 29 Aug 2025 05:42:28 +0000
ROA not after: Sun 28 Sep 2025 05:42:28 +0000
asID: 200113
IP address blocks: 102.177.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 09 Sep 2025 00:06:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1925 (0x785)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 29 05:42:28 2025 GMT
Not After : Sep 28 05:42:28 2025 GMT
Subject: CN=68b13dc9-434a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ea:f3:1b:a3:62:d2:70:93:ec:e4:80:a1:ee:
c7:69:5a:dc:9c:4f:ec:9c:bb:95:ef:55:44:35:90:
89:c8:ff:2a:57:82:d6:cc:f3:85:fa:ea:55:4e:3c:
ea:b6:cc:a0:6a:b8:a5:e8:75:07:90:c3:b9:21:44:
82:fe:68:94:0d:83:b8:a6:ea:96:f9:83:4b:2a:59:
d2:02:86:50:76:f5:fb:28:72:b7:39:32:f1:79:43:
dc:46:4c:4d:6a:ce:ef:1b:3d:60:d8:48:82:26:45:
40:10:99:cd:64:93:97:5a:b5:a2:41:26:f2:f6:b5:
f8:91:17:83:74:96:78:f4:c5:ea:48:34:91:c5:97:
af:c4:c5:9e:43:df:92:88:08:a1:d9:67:31:f9:a0:
c7:74:e5:e0:61:03:c7:ce:22:4e:e7:1b:ea:36:bd:
c4:9e:36:07:59:22:1d:4d:3a:9a:69:42:88:c2:c8:
c4:c6:d4:ae:78:a1:b5:cc:cd:c1:c2:ad:77:52:a9:
48:74:f8:99:5b:ef:cb:35:52:17:9f:97:df:b8:3c:
2a:52:cd:98:79:7b:90:ae:85:f2:35:09:c2:fe:3f:
9e:b6:02:53:1f:f8:5c:e8:77:9d:8d:67:76:09:80:
3d:33:17:f2:8e:04:97:08:04:55:d9:06:ad:44:0f:
2b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:57:B7:6E:B1:C2:9C:30:75:23:67:BC:AD:BB:49:B8:51:B3:0F:C4
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/F55A5B5C849A11F08B425BDADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.184.0/24
Signature Algorithm: sha256WithRSAEncryption
49:1d:e7:a3:38:76:70:f2:d1:18:61:3e:cc:7e:a0:81:5b:44:
a6:d6:7b:c9:19:13:42:68:55:b5:96:43:7d:c0:ca:f1:4d:6f:
dc:52:42:36:a2:9c:5d:54:81:a3:56:c7:11:2a:0b:30:81:02:
8b:a5:6d:63:c0:8d:95:a8:3c:90:8f:9c:1f:e5:ed:82:26:e8:
d6:31:bb:23:f7:bb:b5:8a:91:91:db:de:87:36:bb:9d:be:13:
5d:11:27:6b:1d:9d:f9:8c:45:f4:cb:f2:d7:34:2c:62:0b:75:
ec:8c:7a:85:ca:17:2f:15:f8:11:5c:19:c3:27:e2:36:2f:14:
77:47:ca:a6:de:37:99:a7:1f:0d:7e:92:c9:c2:70:77:d1:12:
98:f9:b8:da:cf:ee:fe:1b:f6:99:8d:d2:aa:2d:71:fa:35:3e:
bc:01:b5:62:5d:b3:ab:74:ad:7d:32:97:93:38:d4:25:50:e2:
a2:7b:b1:7b:c7:44:11:b0:a5:00:b6:f5:83:f5:a9:a8:1d:42:
5f:28:a8:e1:da:d6:b2:84:c8:b4:2b:2e:7f:81:f7:0b:57:75:
49:64:4c:a3:62:39:34:76:b8:27:91:4f:23:6b:c5:1f:9b:59:
b5:de:0b:48:b9:40:0b:7a:0e:0d:49:55:0b:e3:ca:2d:40:33:
5f:42:1f:ae
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB4UwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yNTA4MjkwNTQyMjhaFw0yNTA5MjgwNTQyMjhaMBgxFjAU
BgNVBAMTDTY4YjEzZGM5LTQzNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCq6vMbo2LScJPs5ICh7sdpWtycT+ycu5XvVUQ1kInI/ypXgtbM84X66lVO
POq2zKBquKXodQeQw7khRIL+aJQNg7im6pb5g0sqWdIChlB29fsocrc5MvF5Q9xG
TE1qzu8bPWDYSIImRUAQmc1kk5dataJBJvL2tfiRF4N0lnj0xepINJHFl6/ExZ5D
35KICKHZZzH5oMd05eBhA8fOIk7nG+o2vcSeNgdZIh1NOpppQojCyMTG1K54obXM
zcHCrXdSqUh0+Jlb78s1Uhefl9+4PCpSzZh5e5CuhfI1CcL+P562AlMf+Fzod52N
Z3YJgD0zF/KOBJcIBFXZBq1EDyuvAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUKle3
brHCnDB1I2e8rbtJuFGzD8QwHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4L0Y1NUE1QjVDODQ5QTExRjA4QjQyNUJEQURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsbgwDQYJKoZIhvcNAQEL
BQADggEBAEkd56M4dnDy0RhhPsx+oIFbRKbWe8kZE0JoVbWWQ33AyvFNb9xSQjai
nF1UgaNWxxEqCzCBAoulbWPAjZWoPJCPnB/l7YIm6NYxuyP3u7WKkZHb3oc2u52+
E10RJ2sdnfmMRfTL8tc0LGILdeyMeoXKFy8V+BFcGcMn4jYvFHdHyqbeN5mnHw1+
ksnCcHfREpj5uNrP7v4b9pmN0qotcfo1PrwBtWJds6t0rX0yl5M41CVQ4qJ7sXvH
RBGwpQC29YP1qagdQl8oqOHa1rKEyLQrLn+B9wtXdUlkTKNiOTR2uCeRTyNrxR+b
WbXeC0i5QAt6Dg1JVQvjyi1AM19CH64=
-----END CERTIFICATE-----
Generated at Sun Sep 7 15:43:45 2025 by rpki-client