Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/84C45A96B5D211F098A59F9CDAE4EC9C.roa
File: 84C45A96B5D211F098A59F9CDAE4EC9C.roa (raw, json)
Hash identifier: ZdT4oas310Raqs+Gms+VBmMixtSzPUmOs/XEA15Oe3k=
Subject key identifier: 42:4E:B5:6B:7B:4F:D1:D1:19:77:E6:2D:1C:27:05:ED:6C:6A:FC:6B
Certificate issuer: /CN=F36BC80AAF/serialNumber=8C8F8CE2AD55B9366BEC6EDF492CD9C1498E0664
Certificate serial: 055D
Authority key identifier: 8C:8F:8C:E2:AD:55:B9:36:6B:EC:6E:DF:49:2C:D9:C1:49:8E:06:64
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/84C45A96B5D211F098A59F9CDAE4EC9C.roa
Signing time: Thu 30 Oct 2025 20:53:43 +0000
ROA not before: Thu 30 Oct 2025 20:53:38 +0000
ROA not after: Wed 31 Oct 2035 20:53:38 +0000
asID: 59895
IP address blocks: 102.223.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.mft
rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 04 Nov 2025 00:06:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1373 (0x55d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BC80AAF, serialNumber=8C8F8CE2AD55B9366BEC6EDF492CD9C1498E0664
Validity
Not Before: Oct 30 20:53:38 2025 GMT
Not After : Oct 31 20:53:38 2035 GMT
Subject: CN=6903d057-c353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a0:68:6d:a5:c5:73:d4:50:9e:5d:20:8f:1e:
67:56:c8:61:b1:5d:ab:32:78:55:ba:02:b1:cc:b0:
ab:28:6d:cc:95:9c:73:98:4b:a9:b8:af:77:41:2c:
c0:f2:00:f4:e7:3a:c9:77:cf:d4:34:cd:8e:9c:d9:
82:fb:80:20:b3:df:dc:4d:a2:b5:b6:de:29:28:ed:
d0:5c:e1:b2:89:48:68:65:d1:d1:f7:27:f5:0b:a4:
d0:a2:eb:d5:e0:15:5f:b1:b0:01:63:d4:db:38:d4:
5b:fb:29:25:78:37:62:f8:19:f1:66:3c:4c:a1:29:
2d:62:41:bd:c3:5a:29:6b:61:a6:62:02:9e:4d:94:
5e:97:eb:38:76:38:b0:96:ce:2c:e4:95:76:43:8c:
84:9b:ba:8b:09:d7:a3:ea:a6:7b:c6:4b:11:2d:ea:
97:5e:ea:e2:3d:d3:f6:3f:89:60:e6:66:d0:82:70:
6c:69:52:1f:a3:53:4f:5d:00:2f:dc:d6:18:67:f5:
8c:b6:62:c7:db:ca:71:0b:68:63:33:ae:5c:68:1c:
7d:7d:f8:a5:01:71:d3:b1:83:4f:db:15:38:9d:85:
be:5b:2c:00:d7:72:41:0a:91:a2:b1:0e:16:6d:fa:
b0:26:64:2c:bb:fc:9d:81:e1:f5:f8:89:62:f0:67:
f4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4E:B5:6B:7B:4F:D1:D1:19:77:E6:2D:1C:27:05:ED:6C:6A:FC:6B
X509v3 Authority Key Identifier:
keyid:8C:8F:8C:E2:AD:55:B9:36:6B:EC:6E:DF:49:2C:D9:C1:49:8E:06:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/84C45A96B5D211F098A59F9CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.184.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:de:65:13:01:4f:f4:b4:c3:dc:09:b3:e4:1c:b0:a6:67:b2:
81:84:19:e7:04:df:82:23:89:e6:49:29:2f:eb:86:77:d3:56:
e9:a3:59:cc:a5:97:71:0f:9d:51:5f:54:8e:06:be:56:ac:39:
ca:ed:93:58:60:63:27:a7:8f:c4:e2:c6:88:e9:b0:c9:94:74:
2e:dd:79:11:e4:5e:ed:80:3d:16:e5:13:fa:37:a9:9e:2c:b8:
6f:60:97:c0:74:fe:b1:94:72:65:b0:55:4e:92:2d:8f:49:6b:
94:17:0b:08:73:bc:3f:a9:a5:5a:0c:bc:a1:2c:64:48:01:09:
a8:e9:13:ca:09:e9:db:52:21:dc:62:ad:a2:95:2c:86:44:98:
53:a9:03:cf:3b:ff:b2:b2:72:69:80:e3:3d:ff:bd:8a:ac:ac:
0c:35:59:89:cf:49:e9:1b:e3:ba:af:80:02:e3:7e:0d:2e:c6:
6f:79:98:e4:32:f3:7a:6f:3d:27:c7:e7:40:db:af:9c:2a:a7:
e2:0b:1c:00:f2:55:05:5c:21:49:c5:b3:7c:c4:0a:99:08:1a:
15:2d:d0:55:c1:11:0e:32:6e:03:77:d8:32:98:44:56:51:74:
0d:92:52:7f:4b:d4:f8:05:8a:5e:ad:ed:1a:66:ea:d0:c9:2c:
10:1d:60:d9
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBV0wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QkM4MEFBRjExMC8GA1UEBRMoOEM4RjhDRTJBRDU1QjkzNjZCRUM2RURGNDkyQ0Q5
QzE0OThFMDY2NDAeFw0yNTEwMzAyMDUzMzhaFw0zNTEwMzEyMDUzMzhaMBgxFjAU
BgNVBAMTDTY5MDNkMDU3LWMzNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDVoGhtpcVz1FCeXSCPHmdWyGGxXasyeFW6ArHMsKsobcyVnHOYS6m4r3dB
LMDyAPTnOsl3z9Q0zY6c2YL7gCCz39xNorW23iko7dBc4bKJSGhl0dH3J/ULpNCi
69XgFV+xsAFj1Ns41Fv7KSV4N2L4GfFmPEyhKS1iQb3DWilrYaZiAp5NlF6X6zh2
OLCWzizklXZDjISbuosJ16PqpnvGSxEt6pde6uI90/Y/iWDmZtCCcGxpUh+jU09d
AC/c1hhn9Yy2YsfbynELaGMzrlxoHH19+KUBcdOxg0/bFTidhb5bLADXckEKkaKx
DhZt+rAmZCy7/J2B4fX4iWLwZ/QzAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUQk61
a3tP0dEZd+YtHCcF7Wxq/GswHwYDVR0jBBgwFoAUjI+M4q1VuTZr7G7fSSzZwUmO
BmQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkJDODBBLzQ3MkVGNUIyRTc1QzExRUM5RDdGOTBEOEYxMjIyNDY4L2pJLU00
cTFWdVRacjdHN2ZTU3pad1VtT0JtUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2pJLU00cTFWdVRacjdHN2ZTU3pad1VtT0JtUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkJDODBBLzQ3MkVGNUIyRTc1QzExRUM5RDdGOTBEOEYx
MjIyNDY4Lzg0QzQ1QTk2QjVEMjExRjA5OEE1OUY5Q0RBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm37gwDQYJKoZIhvcNAQEL
BQADggEBABveZRMBT/S0w9wJs+QcsKZnsoGEGecE34IjieZJKS/rhnfTVumjWcyl
l3EPnVFfVI4GvlasOcrtk1hgYyenj8TixojpsMmUdC7deRHkXu2APRblE/o3qZ4s
uG9gl8B0/rGUcmWwVU6SLY9Ja5QXCwhzvD+ppVoMvKEsZEgBCajpE8oJ6dtSIdxi
raKVLIZEmFOpA887/7KycmmA4z3/vYqsrAw1WYnPSekb47qvgALjfg0uxm95mOQy
83pvPSfH50Dbr5wqp+ILHADyVQVcIUnFs3zECpkIGhUt0FXBEQ4ybgN32DKYRFZR
dA2SUn9L1PgFil6t7Rpm6tDJLBAdYNk=
-----END CERTIFICATE-----
Generated at Sun Nov 2 09:04:02 2025 by rpki-client