Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4773DA3E9A1311F089F56ECADAE4EC9C.roa
File: 4773DA3E9A1311F089F56ECADAE4EC9C.roa (raw, json)
Hash identifier: sH8OkULgBLIqViomDD/9hvk1wWv33eVm8hZUcqgq/tM=
Subject key identifier: BC:99:97:34:52:9D:AE:5B:98:0E:81:38:7C:03:54:FA:93:6A:F6:91
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1600
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4773DA3E9A1311F089F56ECADAE4EC9C.roa
Signing time: Thu 25 Sep 2025 13:26:44 +0000
ROA not before: Thu 25 Sep 2025 13:26:36 +0000
ROA not after: Sat 25 Sep 2027 13:26:36 +0000
asID: 9009
IP address blocks: 102.129.202.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5632 (0x1600)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 25 13:26:36 2025 GMT
Not After : Sep 25 13:26:36 2027 GMT
Subject: CN=68d54314-ecd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:15:b5:24:cf:f2:be:09:a4:cf:92:a0:7e:3f:
1d:ab:29:cf:7c:b0:08:1e:8b:39:b8:ba:18:f9:63:
48:4c:4f:72:c5:ed:f9:de:3c:aa:2d:66:bc:39:49:
5a:7f:26:be:e0:9a:34:89:53:f0:fc:c8:4b:0f:a7:
60:19:06:a2:1e:c3:b4:a3:0e:9f:11:5b:d6:8f:c4:
04:8d:cf:b5:5a:84:76:14:59:ae:39:07:96:bc:e8:
4c:c6:a1:36:f6:42:cf:11:46:2b:5a:d5:26:da:1f:
a6:1e:47:2c:d4:a2:f8:8d:97:f1:97:d5:3d:ff:71:
42:7f:5a:7e:fd:4b:62:77:ce:19:b8:68:3e:22:a5:
d2:ea:10:d6:78:25:97:56:c2:26:1c:c8:e0:0f:55:
48:cb:ae:16:99:77:67:22:98:e9:2f:1d:1d:bc:1b:
bc:83:1e:f9:58:61:a4:8c:58:a4:71:18:c2:02:2d:
75:5e:85:b5:0e:ba:03:ab:76:4b:82:18:f0:45:bb:
7f:d1:74:29:b1:32:e3:9a:b2:a1:92:5f:c2:71:7f:
97:d7:fe:21:c1:ec:31:49:34:83:ef:09:00:e2:0f:
bf:dd:5b:29:88:f9:a7:1a:78:cb:7b:02:15:5f:b0:
5f:18:ae:9b:b5:9e:12:3e:2b:9d:f4:b4:c2:98:1e:
be:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:99:97:34:52:9D:AE:5B:98:0E:81:38:7C:03:54:FA:93:6A:F6:91
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4773DA3E9A1311F089F56ECADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.202.0/24
Signature Algorithm: sha256WithRSAEncryption
da:ee:99:bb:d2:ba:fa:5e:23:03:18:79:52:57:35:27:11:70:
e6:8a:95:7a:39:37:ec:63:f7:2e:8b:26:74:34:94:d2:46:ee:
58:bd:23:f5:24:1d:f5:df:79:1e:5a:60:18:4a:ec:fe:41:12:
56:31:60:a0:5b:a3:99:54:1d:d6:ae:a0:58:b8:02:be:e4:76:
66:25:38:64:27:fe:46:cc:dd:29:73:31:7c:9f:2c:f6:d6:b3:
0d:8b:ce:a2:3c:91:3d:dc:dc:76:ef:ff:f0:b8:08:35:80:f0:
4d:a2:2e:90:17:66:0f:e6:f0:d4:67:a1:93:bf:02:ed:17:55:
17:9f:4c:d1:e9:eb:f4:eb:9f:b6:87:93:4e:d1:72:ca:7b:32:
d3:bb:8b:70:ae:43:40:7b:5d:b9:b2:69:98:18:3d:9d:d0:a5:
a9:f9:9c:80:88:77:c9:df:4a:7b:fd:b7:90:5b:23:2f:7e:5d:
ad:b9:0b:d6:43:72:47:54:8e:17:48:63:8d:c7:a0:e4:8b:8d:
ca:bb:77:32:0f:10:79:37:e7:2b:79:4c:ac:8f:61:37:57:55:
a5:33:7c:79:c7:a1:42:bf:0d:4e:f9:64:5f:a5:57:9a:dd:55:
40:25:f4:70:de:5a:e0:a2:b6:39:a3:5b:93:4a:2e:61:26:ef:
ae:e1:cc:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 07:13:40 2025 by rpki-client