Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF78E/993956C85BC111EF8A43554E762E951A/D1925D2E8CC311F083C2CFE1DAE4EC9C.roa
File: D1925D2E8CC311F083C2CFE1DAE4EC9C.roa (raw, json)
Hash identifier: zU8Q70WrJt2SK0TaQnBuuJzUDch8WRt6KzfF4KFZg1U=
Subject key identifier: 1F:19:0B:18:65:61:FB:AA:A3:9F:14:F1:5D:3E:68:81:60:74:EB:AC
Certificate issuer: /CN=F36EF78EAF/serialNumber=FF4E824985DC0FE9E6D52D1568FDBB170EF7104B
Certificate serial: 0194
Authority key identifier: FF:4E:82:49:85:DC:0F:E9:E6:D5:2D:15:68:FD:BB:17:0E:F7:10:4B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/_06CSYXcD-nm1S0VaP27Fw73EEs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF78E/993956C85BC111EF8A43554E762E951A/D1925D2E8CC311F083C2CFE1DAE4EC9C.roa
Signing time: Mon 08 Sep 2025 14:55:12 +0000
ROA not before: Mon 08 Sep 2025 14:55:07 +0000
ROA not after: Wed 31 Dec 2036 14:55:07 +0000
asID: 215354
IP address blocks: 102.223.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36EF78E/993956C85BC111EF8A43554E762E951A/_06CSYXcD-nm1S0VaP27Fw73EEs.crl
rsync://rpki.afrinic.net/repository/member_repository/F36EF78E/993956C85BC111EF8A43554E762E951A/_06CSYXcD-nm1S0VaP27Fw73EEs.mft
rsync://rpki.afrinic.net/repository/afrinic/_06CSYXcD-nm1S0VaP27Fw73EEs.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 404 (0x194)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF78EAF, serialNumber=FF4E824985DC0FE9E6D52D1568FDBB170EF7104B
Validity
Not Before: Sep 8 14:55:07 2025 GMT
Not After : Dec 31 14:55:07 2036 GMT
Subject: CN=68beee4f-ae34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1c:08:fe:80:68:17:90:5c:6a:46:db:15:28:
0c:98:7d:6e:a7:ef:dd:b3:94:ba:b6:5f:a5:73:51:
69:97:26:bf:5b:ef:ca:ae:a4:8d:7e:00:cd:a3:b7:
5c:70:59:03:e4:d7:4f:ae:60:55:c6:cf:95:1d:6c:
b3:fb:1e:06:49:f8:d5:be:d0:42:da:3e:04:9b:2d:
84:69:c8:50:d2:25:7b:63:76:bc:05:ad:d5:70:48:
08:b3:55:89:40:52:a0:2b:7d:70:0f:a3:5d:9e:25:
3b:92:5f:73:88:4a:cb:02:dc:7c:bd:45:8d:fb:86:
c1:16:24:17:87:40:5a:83:c5:11:c8:83:e3:05:22:
50:90:06:88:74:41:19:f8:48:e9:5f:19:ab:22:94:
f5:72:1c:22:d6:c6:04:9c:5f:d0:4d:40:c0:8f:33:
58:80:cb:df:92:af:ac:f0:d9:65:49:73:53:e3:6b:
e8:9c:59:fc:37:eb:fb:e4:8e:ac:81:35:33:ee:93:
c9:69:12:0c:bc:47:01:7f:70:d1:47:ff:25:b2:c3:
43:8f:f5:0a:b8:26:4b:84:61:d0:94:4b:11:b1:4b:
6b:94:63:45:f8:0c:e3:ba:ed:06:49:b7:79:11:7e:
c3:75:4e:2b:b4:84:44:30:74:f2:5c:e5:25:74:7b:
71:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:19:0B:18:65:61:FB:AA:A3:9F:14:F1:5D:3E:68:81:60:74:EB:AC
X509v3 Authority Key Identifier:
keyid:FF:4E:82:49:85:DC:0F:E9:E6:D5:2D:15:68:FD:BB:17:0E:F7:10:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF78E/993956C85BC111EF8A43554E762E951A/_06CSYXcD-nm1S0VaP27Fw73EEs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/_06CSYXcD-nm1S0VaP27Fw73EEs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF78E/993956C85BC111EF8A43554E762E951A/D1925D2E8CC311F083C2CFE1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.110.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:49:b7:03:51:fe:37:f6:a5:92:02:35:30:78:8f:c6:b7:e6:
ef:60:67:af:72:b9:8f:c8:f7:0d:83:20:19:63:90:cb:8b:8c:
49:e3:ce:36:47:57:bf:97:8c:99:be:3a:da:12:47:9d:94:9e:
28:f9:16:3b:ff:51:38:bf:ac:15:8f:00:96:60:2e:fe:23:9d:
ca:f4:46:f1:82:1a:20:4c:a4:71:ee:f7:07:47:5e:7e:16:30:
2b:4a:52:ef:77:df:6e:6f:2f:76:47:8d:a9:18:85:66:45:05:
a8:9f:a5:b1:57:e4:3c:71:b1:bb:f9:1d:24:ea:36:7e:3f:97:
5a:24:92:df:8b:f2:07:55:24:7c:9c:40:f4:00:07:05:b5:78:
bb:99:1c:58:fb:bd:7c:69:51:4d:95:bc:1f:d5:73:c4:9e:ff:
7e:49:46:9f:14:26:9e:b1:fe:25:f0:7e:d1:9a:0c:95:a1:34:
c3:8a:b2:d5:d6:0e:74:22:6a:8c:67:25:c1:0c:2f:0e:b6:c0:
6f:d1:e1:f2:14:1f:6a:27:ed:42:b7:23:e6:4d:de:05:68:c4:
14:9e:ea:e8:87:44:70:14:40:44:b4:a1:b9:09:7a:87:21:5d:
62:15:13:e3:e3:dc:c9:af:43:d8:35:0a:56:e4:b0:82:f9:67:
2e:62:c5:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 13:42:52 2025 by rpki-client