Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7DB0640E961311F089799AE5DAE4EC9C.roa
File: 7DB0640E961311F089799AE5DAE4EC9C.roa (raw, json)
Hash identifier: sfG4rrL9OLh3h1mtQAbAP816XDAB48DMuwJvQeH1uiQ=
Subject key identifier: 6A:E1:E8:57:95:5B:AF:5F:8D:89:9B:B8:9A:82:2B:94:8D:0A:C6:46
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 15F9
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7DB0640E961311F089799AE5DAE4EC9C.roa
Signing time: Sat 20 Sep 2025 11:18:11 +0000
ROA not before: Sat 20 Sep 2025 11:18:06 +0000
ROA not after: Mon 20 Sep 2027 11:18:06 +0000
asID: 9304
IP address blocks: 102.129.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5625 (0x15f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 20 11:18:06 2025 GMT
Not After : Sep 20 11:18:06 2027 GMT
Subject: CN=68ce8d73-4c20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:dd:1a:c3:83:32:10:5e:13:3f:eb:05:5f:f2:
77:10:fd:38:24:d0:cf:30:ce:8f:b5:68:1e:38:f1:
fe:43:98:ac:30:4a:96:72:05:3e:64:de:f4:8e:6b:
d2:87:df:b0:c3:73:50:e7:55:c9:47:07:23:41:47:
82:89:19:96:46:15:5f:bb:82:71:c4:fe:ed:08:13:
33:fc:8f:bd:07:5b:54:ca:99:ae:01:e6:42:fc:d5:
b6:5a:aa:0a:b6:47:f4:a4:66:93:9a:b7:f9:24:e8:
06:79:86:c8:3c:bd:b8:44:c5:59:4d:ff:de:36:35:
36:d2:c7:de:cb:6f:84:d5:e5:59:63:c9:10:10:89:
c6:3c:db:5a:97:87:ce:e1:1f:fe:67:d8:67:8d:b5:
72:95:98:78:8a:4a:26:b0:bf:50:7e:c6:f5:27:fe:
e7:10:de:39:53:7d:ee:c8:d3:27:17:f6:45:2a:cd:
b4:7e:4f:cd:82:75:cc:db:ec:59:9a:1b:10:c9:44:
04:8f:cb:07:8f:fc:15:a7:14:58:69:62:e6:0b:12:
c6:d6:42:0b:48:91:bd:5c:4a:23:7a:f3:1d:26:7c:
89:9b:45:44:e0:eb:45:ea:de:fa:cd:0d:21:22:9f:
dc:cd:9c:a6:99:03:23:9a:82:f4:36:b1:01:f3:d5:
27:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E1:E8:57:95:5B:AF:5F:8D:89:9B:B8:9A:82:2B:94:8D:0A:C6:46
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7DB0640E961311F089799AE5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.130.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:4e:4f:11:41:d4:16:36:b9:b2:c0:52:a1:dd:77:1c:4e:18:
d9:40:98:89:50:28:36:f1:1e:ba:32:57:58:7d:40:e6:2e:98:
23:eb:32:8e:1c:47:28:c6:fe:95:3d:46:4f:c3:e3:6c:56:11:
1c:fd:1f:d8:82:26:2e:c5:d1:c5:74:cc:2f:56:2d:da:28:65:
53:b6:c6:e0:68:5d:38:64:8b:b8:74:f6:d5:bc:1c:43:9e:3d:
3f:00:46:ab:71:26:4b:2c:77:87:09:f8:76:41:07:fd:c3:bb:
05:4c:41:5d:92:b2:9e:4e:7d:35:e5:1f:f5:32:ff:71:f6:3c:
4e:8b:d9:b8:c1:d8:dc:40:50:49:c7:ce:59:16:3b:d7:97:9b:
d0:1e:5b:ae:52:d7:33:66:4c:b0:87:9c:ca:cc:e4:a5:27:61:
15:3c:55:6d:22:6c:7c:95:08:0e:db:17:55:68:d1:8f:2a:2e:
0d:5f:c7:e1:b9:dc:7a:d7:81:d3:ad:e4:d8:f4:aa:ea:25:6c:
30:67:6c:dd:bb:7c:cc:70:b3:7f:96:f8:22:bb:e8:d4:34:43:
be:2a:82:2b:26:ce:9b:37:2e:3c:d2:14:12:5a:a5:06:be:3d:
74:4d:23:40:4c:9e:30:eb:18:c4:43:c3:bd:3e:2b:f4:4c:69:
ae:7f:c3:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:34:30 2025 by rpki-client