Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/96B4A35AB55511F08FC6E597DAE4EC9C.roa
File: 96B4A35AB55511F08FC6E597DAE4EC9C.roa (raw, json)
Hash identifier: 6Qab2GQfV990KSXtH4bePzdjsFn7IxaaFDENDt4G4Yc=
Subject key identifier: B0:87:58:1F:A9:0D:E3:F0:4E:28:F7:87:3D:23:3D:08:94:22:15:F9
Certificate issuer: /CN=F36F6034AF/serialNumber=C702799EA4BD5DBA3ED3D069A7191B941B5A779A
Certificate serial: 0831
Authority key identifier: C7:02:79:9E:A4:BD:5D:BA:3E:D3:D0:69:A7:19:1B:94:1B:5A:77:9A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/96B4A35AB55511F08FC6E597DAE4EC9C.roa
Signing time: Thu 30 Oct 2025 05:59:26 +0000
ROA not before: Thu 30 Oct 2025 05:59:21 +0000
ROA not after: Fri 30 Oct 2026 05:59:21 +0000
asID: 54252
IP address blocks: 196.197.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.mft
rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 08 Nov 2025 00:06:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2097 (0x831)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F6034AF, serialNumber=C702799EA4BD5DBA3ED3D069A7191B941B5A779A
Validity
Not Before: Oct 30 05:59:21 2025 GMT
Not After : Oct 30 05:59:21 2026 GMT
Subject: CN=6902febe-b6b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:94:d8:bd:0f:2e:43:ab:9e:90:3b:08:4f:2f:
ee:61:32:53:be:db:10:2b:f8:e7:19:77:d7:52:c1:
6a:29:bc:1c:77:22:94:e1:0e:c9:1f:6b:ea:79:ae:
7e:49:45:7b:1f:21:99:b6:c8:b1:35:8b:2f:a7:c2:
79:40:5c:e5:55:24:ba:c3:51:52:01:40:ed:f6:17:
a0:f3:05:e1:85:9f:d6:d2:6d:3e:40:19:d2:e0:fe:
47:e6:c9:73:06:9e:79:5a:67:40:fd:ee:5e:ea:29:
2c:6a:2c:72:4d:9e:7c:cd:e4:7f:ba:d6:fe:36:8c:
c2:65:fa:ef:a2:0e:43:18:3d:dc:94:e8:75:a9:7a:
2f:db:ca:0e:b2:bc:52:dc:d6:ac:61:41:8d:24:79:
26:69:75:d6:67:53:3a:32:cb:c6:19:08:b9:da:21:
60:0a:b1:b6:e5:99:da:29:37:6c:03:7b:22:45:c5:
fc:a8:b9:c7:20:0f:db:e4:fc:36:53:1f:ce:3e:7b:
b7:2e:ae:10:98:33:d8:c6:1c:08:e1:fb:4f:0b:61:
ef:d4:72:3c:f1:4a:03:5f:ea:b7:d1:26:72:8a:e7:
2b:ee:65:c3:e0:00:2f:24:ef:f2:6b:a7:27:01:b2:
34:ab:e5:6e:12:f0:e8:4f:28:74:c1:99:6b:b5:bf:
bc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:87:58:1F:A9:0D:E3:F0:4E:28:F7:87:3D:23:3D:08:94:22:15:F9
X509v3 Authority Key Identifier:
keyid:C7:02:79:9E:A4:BD:5D:BA:3E:D3:D0:69:A7:19:1B:94:1B:5A:77:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/xwJ5nqS9Xbo-09BppxkblBtad5o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xwJ5nqS9Xbo-09BppxkblBtad5o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F6034/D916758A90FC11EA9D81306EF8AEA228/96B4A35AB55511F08FC6E597DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.197.134.0/24
Signature Algorithm: sha256WithRSAEncryption
88:8a:77:8e:41:ce:b8:d4:3a:bc:3c:1c:f6:86:fe:0a:9e:26:
9b:6b:95:60:91:2c:b6:d2:b7:cb:a1:f5:e4:46:16:f7:0e:a7:
32:e9:7a:7d:f6:67:8f:c1:d7:6a:90:00:16:ae:31:81:77:7f:
41:c1:c1:be:0d:0b:5a:27:60:75:b0:1b:a0:38:71:dc:fb:6c:
d1:25:03:8d:a5:83:2e:22:78:91:2e:17:7f:a7:7b:89:79:53:
ad:f1:f3:15:ee:0b:66:df:6d:b3:d5:6e:e3:f2:10:0a:dd:bf:
d8:3f:e2:ed:97:0c:c2:b8:9b:72:8d:83:14:3c:ce:e9:d5:ad:
9b:b5:56:9d:06:50:b5:b1:51:d3:50:01:56:15:bc:fa:e2:3f:
c4:e3:e1:df:a7:80:d3:6d:9e:3c:f6:15:a4:93:84:ee:a6:a5:
b4:b1:ce:0c:43:22:18:d3:7d:b5:62:52:88:3b:65:35:e1:de:
ad:50:ed:66:95:1d:ef:d1:f8:3f:f1:dd:5e:63:57:ea:b8:9c:
13:38:21:34:0a:5b:05:92:9a:b4:87:ed:05:87:78:91:c7:fb:
a5:24:29:63:ab:5a:66:c2:d8:59:e5:9f:7c:b0:9b:85:0d:33:
66:8f:c7:d5:8d:05:e9:ac:e9:1c:33:c4:d2:8c:ea:69:1d:89:
cb:a4:62:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 7 00:07:48 2025 by rpki-client