Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361B707/97762DB65D5A11F0A1BEE598DAE4EC9C/75866D765D6211F093F8A7CADAE4EC9C.roa
File: 75866D765D6211F093F8A7CADAE4EC9C.roa (raw, json)
Hash identifier: UWso/XNlMKwadlU6ptT5mDWK+nIqDiP9OSyNwe4vkPQ=
Subject key identifier: B0:66:F4:BA:2A:4B:7E:C3:9F:EA:01:71:34:2D:76:52:98:B0:90:B3
Certificate issuer: /CN=F361B707AF/serialNumber=03B1EC5489A7245A540D08253DF855295EA2175B
Certificate serial: 04
Authority key identifier: 03:B1:EC:54:89:A7:24:5A:54:0D:08:25:3D:F8:55:29:5E:A2:17:5B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/A7HsVImnJFpUDQglPfhVKV6iF1s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361B707/97762DB65D5A11F0A1BEE598DAE4EC9C/75866D765D6211F093F8A7CADAE4EC9C.roa
Signing time: Thu 10 Jul 2025 07:49:51 +0000
ROA not before: Thu 10 Jul 2025 07:49:46 +0000
ROA not after: Wed 10 Jul 2030 07:49:46 +0000
asID: 37604
IP address blocks: 197.231.192.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F361B707/97762DB65D5A11F0A1BEE598DAE4EC9C/A7HsVImnJFpUDQglPfhVKV6iF1s.crl
rsync://rpki.afrinic.net/repository/member_repository/F361B707/97762DB65D5A11F0A1BEE598DAE4EC9C/A7HsVImnJFpUDQglPfhVKV6iF1s.mft
rsync://rpki.afrinic.net/repository/afrinic/A7HsVImnJFpUDQglPfhVKV6iF1s.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361B707AF, serialNumber=03B1EC5489A7245A540D08253DF855295EA2175B
Validity
Not Before: Jul 10 07:49:46 2025 GMT
Not After : Jul 10 07:49:46 2030 GMT
Subject: CN=686f709f-1d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:00:c6:0d:b8:e8:2f:dc:03:fb:1c:b0:9c:80:
e0:e5:3b:29:b0:46:94:83:ec:92:37:37:98:61:8f:
45:9c:de:fd:a9:31:ba:ff:63:c6:1c:69:02:fe:c1:
80:a9:50:80:73:a2:03:ea:06:81:7e:87:3a:e5:d6:
94:e9:dd:76:5b:51:1c:ad:7a:da:b5:8f:db:b8:44:
9f:1c:cf:41:dd:e7:42:2e:90:71:5e:27:8b:9f:68:
a3:de:1c:41:55:c0:46:b9:42:27:a9:f8:29:a1:9f:
b0:d9:51:3c:bf:1a:bf:5a:92:ab:98:a8:00:b2:a0:
4b:ea:b9:23:a7:f2:97:70:b8:41:a3:03:8d:99:bb:
72:0a:09:e1:e2:8e:64:b1:d6:c5:aa:b7:3e:84:02:
10:b5:69:1a:34:1d:f0:1a:60:b2:7c:95:a6:be:c9:
2c:68:e6:9b:e6:61:5c:6e:10:e4:a4:a3:9d:1e:32:
32:c1:31:61:2e:f5:52:13:20:2d:90:8f:02:70:6c:
ef:29:41:d4:7f:b0:9b:0f:af:a6:1b:3b:e7:1c:24:
16:c0:6b:8f:e6:4a:f1:2d:e6:44:9c:0e:98:e1:fc:
7b:b2:4c:11:05:73:10:2d:69:fb:c0:84:4f:d4:67:
82:cc:f7:c7:bf:af:40:6a:c4:f8:79:52:6e:32:49:
2f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:66:F4:BA:2A:4B:7E:C3:9F:EA:01:71:34:2D:76:52:98:B0:90:B3
X509v3 Authority Key Identifier:
keyid:03:B1:EC:54:89:A7:24:5A:54:0D:08:25:3D:F8:55:29:5E:A2:17:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361B707/97762DB65D5A11F0A1BEE598DAE4EC9C/A7HsVImnJFpUDQglPfhVKV6iF1s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/A7HsVImnJFpUDQglPfhVKV6iF1s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361B707/97762DB65D5A11F0A1BEE598DAE4EC9C/75866D765D6211F093F8A7CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.231.192.0/22
Signature Algorithm: sha256WithRSAEncryption
78:0f:e4:97:e0:36:af:a5:cb:6b:1e:60:19:1b:a4:82:6e:31:
a4:00:8d:63:55:b1:75:d3:14:e2:9c:52:2f:e3:84:29:0a:f7:
02:30:3c:46:88:17:93:c4:8c:98:66:76:b1:82:ee:ba:7c:5a:
1f:0c:d9:d4:b5:89:1e:25:a8:24:fd:7f:89:34:cc:3b:58:b4:
77:63:a6:3d:36:94:98:7c:eb:e9:16:0d:ba:fe:25:99:42:94:
b5:61:7a:8c:92:86:0e:81:ed:4f:0c:db:33:25:de:3a:04:5d:
95:9e:e3:5a:cb:e9:e9:f2:76:2c:b7:72:62:24:a8:6a:64:fd:
91:64:b8:2b:f8:1a:56:29:9e:51:e6:50:b7:d5:11:53:f3:11:
01:1f:75:19:03:9e:c0:02:a5:49:65:94:06:b1:56:04:63:c5:
b0:e2:59:5b:f0:88:3a:64:70:71:86:98:7a:65:e1:74:64:d4:
62:71:99:28:99:bd:af:b5:c4:a8:b5:55:e4:e4:5b:68:b6:26:
f7:3a:ef:c4:26:b7:9b:00:18:5f:35:15:3a:5d:c5:27:ea:52:
43:a5:ad:20:a5:2c:8e:b8:f5:ed:fe:9c:71:03:be:75:46:7b:
68:77:2d:b1:13:e4:1c:c6:66:74:fc:a2:37:06:96:c0:3c:1c:
6d:f2:55:04
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzYx
QjcwN0FGMTEwLwYDVQQFEygwM0IxRUM1NDg5QTcyNDVBNTQwRDA4MjUzREY4NTUy
OTVFQTIxNzVCMB4XDTI1MDcxMDA3NDk0NloXDTMwMDcxMDA3NDk0NlowGDEWMBQG
A1UEAxMNNjg2ZjcwOWYtMWQyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANQAxg246C/cA/scsJyA4OU7KbBGlIPskjc3mGGPRZze/akxuv9jxhxpAv7B
gKlQgHOiA+oGgX6HOuXWlOnddltRHK162rWP27hEnxzPQd3nQi6QcV4ni59oo94c
QVXARrlCJ6n4KaGfsNlRPL8av1qSq5ioALKgS+q5I6fyl3C4QaMDjZm7cgoJ4eKO
ZLHWxaq3PoQCELVpGjQd8BpgsnyVpr7JLGjmm+ZhXG4Q5KSjnR4yMsExYS71UhMg
LZCPAnBs7ylB1H+wmw+vphs75xwkFsBrj+ZK8S3mRJwOmOH8e7JMEQVzEC1p+8CE
T9Rngsz3x7+vQGrE+HlSbjJJLz0CAwEAAaOCAqUwggKhMB0GA1UdDgQWBBSwZvS6
Kkt+w5/qAXE0LXZSmLCQszAfBgNVHSMEGDAWgBQDsexUiackWlQNCCU9+FUpXqIX
WzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MUI3MDcvOTc3NjJEQjY1RDVBMTFGMEExQkVFNTk4REFFNEVDOUMvQTdIc1ZJ
bW5KRnBVRFFnbFBmaFZLVjZpRjFzLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvQTdIc1ZJbW5KRnBVRFFnbFBmaFZLVjZpRjFzLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2MUI3MDcvOTc3NjJEQjY1RDVBMTFGMEExQkVFNTk4REFF
NEVDOUMvNzU4NjZENzY1RDYyMTFGMDkzRjhBN0NBREFFNEVDOUMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsXnwDANBgkqhkiG9w0BAQsF
AAOCAQEAeA/kl+A2r6XLax5gGRukgm4xpACNY1WxddMU4pxSL+OEKQr3AjA8RogX
k8SMmGZ2sYLuunxaHwzZ1LWJHiWoJP1/iTTMO1i0d2OmPTaUmHzr6RYNuv4lmUKU
tWF6jJKGDoHtTwzbMyXeOgRdlZ7jWsvp6fJ2LLdyYiSoamT9kWS4K/gaVimeUeZQ
t9URU/MRAR91GQOewAKlSWWUBrFWBGPFsOJZW/CIOmRwcYaYemXhdGTUYnGZKJm9
r7XEqLVV5ORbaLYm9zrvxCa3mwAYXzUVOl3FJ+pSQ6WtIKUsjrj17f6ccQO+dUZ7
aHctsRPkHMZmdPyiNwaWwDwcbfJVBA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:44:12 2025 by rpki-client