Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/386712568A5D11F0908D56D6DAE4EC9C.roa
File: 386712568A5D11F0908D56D6DAE4EC9C.roa (raw, json)
Hash identifier: ZAUnUwDGlRXUyoezMHi06KLtxdDzkMt5Fh4LGS14wbI=
Subject key identifier: 4E:0E:C6:1C:EE:6A:CD:E8:BD:27:8B:50:27:CC:CA:3E:9D:DF:DE:9B
Certificate issuer: /CN=F36DA693AF/serialNumber=089012F969A6200C9399B093447AA4EA2CFCA81E
Certificate serial: 0945
Authority key identifier: 08:90:12:F9:69:A6:20:0C:93:99:B0:93:44:7A:A4:EA:2C:FC:A8:1E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CJAS-WmmIAyTmbCTRHqk6iz8qB4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/386712568A5D11F0908D56D6DAE4EC9C.roa
Signing time: Fri 05 Sep 2025 13:35:44 +0000
ROA not before: Fri 05 Sep 2025 13:35:39 +0000
ROA not after: Sun 30 Sep 2029 13:35:39 +0000
asID: 328317
IP address blocks: 102.141.224.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/CJAS-WmmIAyTmbCTRHqk6iz8qB4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/CJAS-WmmIAyTmbCTRHqk6iz8qB4.mft
rsync://rpki.afrinic.net/repository/afrinic/CJAS-WmmIAyTmbCTRHqk6iz8qB4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Sep 2025 00:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2373 (0x945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DA693AF, serialNumber=089012F969A6200C9399B093447AA4EA2CFCA81E
Validity
Not Before: Sep 5 13:35:39 2025 GMT
Not After : Sep 30 13:35:39 2029 GMT
Subject: CN=68bae72f-4e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a7:91:bc:96:2c:a7:f7:57:40:d3:83:25:55:
e5:97:aa:d8:74:be:63:db:34:65:32:0d:b8:0c:d1:
bc:37:bb:6e:7a:ca:ee:c8:d3:05:f2:14:a6:f3:8c:
55:c1:84:14:d2:32:c4:d6:99:41:86:de:dc:ea:db:
dc:e7:bc:16:f7:fb:d5:71:da:33:d1:07:f5:ce:da:
70:74:a2:12:c0:bd:89:61:8f:f0:a7:c2:9d:06:dc:
71:9c:64:4e:76:5c:15:5d:88:ab:6f:8e:eb:dd:ef:
42:00:60:4e:0a:ca:a4:de:95:c7:74:20:04:62:fc:
28:e5:bd:33:f2:f8:02:dc:58:9d:d6:72:77:0f:78:
7e:7f:f6:cd:ac:17:57:ee:d0:e3:5d:90:7b:07:02:
3b:eb:8a:fd:82:dd:d9:78:a9:45:f4:3b:4c:65:1b:
fd:fa:5e:cf:ae:94:3f:37:88:93:a3:48:1e:5f:d8:
b9:70:e1:2a:d0:16:d1:87:15:b5:3f:b3:29:30:54:
a3:66:15:de:64:62:ef:c1:81:c6:4c:a2:a2:22:f0:
7b:9c:f8:0f:79:a0:1a:f3:d2:b3:b5:80:5e:d3:87:
ff:ed:38:31:b7:44:8f:1f:ea:74:e4:be:44:5f:10:
07:bb:54:d7:92:e7:2c:22:23:af:04:b9:f6:3b:aa:
96:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:0E:C6:1C:EE:6A:CD:E8:BD:27:8B:50:27:CC:CA:3E:9D:DF:DE:9B
X509v3 Authority Key Identifier:
keyid:08:90:12:F9:69:A6:20:0C:93:99:B0:93:44:7A:A4:EA:2C:FC:A8:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/CJAS-WmmIAyTmbCTRHqk6iz8qB4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CJAS-WmmIAyTmbCTRHqk6iz8qB4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DA693/0D2968C67D5F11E99565B87EF8AEA228/386712568A5D11F0908D56D6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.141.224.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:40:e9:dc:45:0d:69:64:12:b1:fd:1a:1e:40:7a:87:5a:fc:
41:09:fb:06:5e:b1:9d:f0:c1:a8:09:2e:d0:08:d5:7f:01:b6:
bd:4d:e0:a5:69:be:b0:7d:fe:5a:39:6c:e6:5c:29:e7:ab:fd:
a2:d2:2b:01:14:a7:4b:7d:6b:6c:66:63:30:4b:eb:78:f4:d3:
a9:61:e5:94:19:45:0b:32:cc:a9:bc:80:96:27:90:6d:c1:b1:
50:ca:c0:5e:e6:57:fe:4d:dc:14:7c:37:ad:6c:e9:53:a4:04:
4a:e7:80:20:11:a2:4c:47:e6:8b:8d:0d:c0:21:df:ec:3d:d5:
27:0e:0e:42:b4:4b:3e:95:5d:88:ca:7a:4a:7a:37:d8:4e:2b:
c3:69:24:de:53:09:08:62:ab:15:85:dc:65:2c:9c:5c:fc:17:
bc:b6:86:d6:a1:d9:ba:47:6f:9f:8a:52:c2:40:21:0f:78:8c:
77:0d:19:21:62:79:d3:48:c7:83:de:77:12:41:88:d0:59:33:
2d:44:4b:43:fc:54:12:8e:61:37:9e:57:d0:b3:d9:bb:c6:da:
f8:4c:d6:d6:01:56:c3:ac:8f:d5:4e:67:fc:93:22:1a:e3:23:
22:51:80:d7:72:34:8f:1e:6d:ea:f3:28:82:a9:e1:55:6b:b5:
ef:f7:08:8c
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCUUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
REE2OTNBRjExMC8GA1UEBRMoMDg5MDEyRjk2OUE2MjAwQzkzOTlCMDkzNDQ3QUE0
RUEyQ0ZDQTgxRTAeFw0yNTA5MDUxMzM1MzlaFw0yOTA5MzAxMzM1MzlaMBgxFjAU
BgNVBAMTDTY4YmFlNzJmLTRlOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCqp5G8liyn91dA04MlVeWXqth0vmPbNGUyDbgM0bw3u256yu7I0wXyFKbz
jFXBhBTSMsTWmUGG3tzq29znvBb3+9Vx2jPRB/XO2nB0ohLAvYlhj/Cnwp0G3HGc
ZE52XBVdiKtvjuvd70IAYE4KyqTelcd0IARi/CjlvTPy+ALcWJ3WcncPeH5/9s2s
F1fu0ONdkHsHAjvriv2C3dl4qUX0O0xlG/36Xs+ulD83iJOjSB5f2Llw4SrQFtGH
FbU/sykwVKNmFd5kYu/BgcZMoqIi8Huc+A95oBrz0rO1gF7Th//tODG3RI8f6nTk
vkRfEAe7VNeS5ywiI68EufY7qpYNAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUTg7G
HO5qzei9J4tQJ8zKPp3f3pswHwYDVR0jBBgwFoAUCJAS+WmmIAyTmbCTRHqk6iz8
qB4wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkRBNjkzLzBEMjk2OEM2N0Q1RjExRTk5NTY1Qjg3RUY4QUVBMjI4L0NKQVMt
V21tSUF5VG1iQ1RSSHFrNml6OHFCNC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NKQVMtV21tSUF5VG1iQ1RSSHFrNml6OHFCNC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkRBNjkzLzBEMjk2OEM2N0Q1RjExRTk5NTY1Qjg3RUY4
QUVBMjI4LzM4NjcxMjU2OEE1RDExRjA5MDhENTZENkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJmjeAwDQYJKoZIhvcNAQEL
BQADggEBAF9A6dxFDWlkErH9Gh5Aeoda/EEJ+wZesZ3wwagJLtAI1X8Btr1N4KVp
vrB9/lo5bOZcKeer/aLSKwEUp0t9a2xmYzBL63j006lh5ZQZRQsyzKm8gJYnkG3B
sVDKwF7mV/5N3BR8N61s6VOkBErngCARokxH5ouNDcAh3+w91ScODkK0Sz6VXYjK
ekp6N9hOK8NpJN5TCQhiqxWF3GUsnFz8F7y2htah2bpHb5+KUsJAIQ94jHcNGSFi
edNIx4PedxJBiNBZMy1ES0P8VBKOYTeeV9Cz2bvG2vhM1tYBVsOsj9VOZ/yTIhrj
IyJRgNdyNI8eberzKIKp4VVrte/3CIw=
-----END CERTIFICATE-----
Generated at Thu Sep 18 05:30:34 2025 by rpki-client