Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/8CEA5014A01411F0BFEF7AB9DAE4EC9C.roa
File: 8CEA5014A01411F0BFEF7AB9DAE4EC9C.roa (raw, json)
Hash identifier: ZmcJKQbrWBpIwE/ww8rZLi/ZhcQN8hLklhkP+Cw6Oig=
Subject key identifier: F3:7B:57:B3:2B:65:8F:04:32:26:B3:79:87:04:A8:94:9F:A5:08:C5
Certificate issuer: /CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Certificate serial: 0669
Authority key identifier: 1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/8CEA5014A01411F0BFEF7AB9DAE4EC9C.roa
Signing time: Fri 03 Oct 2025 04:50:57 +0000
ROA not before: Fri 03 Oct 2025 04:50:53 +0000
ROA not after: Sun 31 Dec 2045 04:50:53 +0000
asID: 328327
IP address blocks: 102.140.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.mft
rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1641 (0x669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3621C06AF, serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Validity
Not Before: Oct 3 04:50:53 2025 GMT
Not After : Dec 31 04:50:53 2045 GMT
Subject: CN=68df5631-2bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:da:97:09:ec:09:da:ba:71:33:87:d8:26:07:
69:f1:bd:1d:62:af:00:72:5f:05:30:38:b4:54:38:
09:c3:48:c5:4c:66:5e:48:fe:24:42:8c:d3:1c:38:
49:4a:0c:2a:b4:e2:bf:52:d1:f7:e1:41:41:b8:97:
bb:e7:f7:d7:a7:4e:d8:a6:7f:b1:f0:26:f2:e2:a5:
3c:30:95:1b:ec:e3:8e:f5:85:7c:80:c1:5a:cd:be:
0d:aa:49:8f:7a:6d:1c:1c:57:eb:4f:cb:92:1a:bf:
50:eb:fa:42:73:26:41:da:08:c3:be:36:e5:90:3b:
17:de:b1:93:05:05:8c:03:9d:c5:d7:ea:35:6f:21:
94:01:5e:c8:70:01:75:07:2e:db:d0:c5:64:cd:6a:
ea:95:9c:81:38:3a:ef:13:f6:2a:c0:5a:22:d5:1c:
f8:1f:65:5b:f1:9f:79:60:a9:a1:a8:0a:a0:84:30:
86:7a:c0:95:96:dd:b6:cd:66:57:13:5d:8e:27:8e:
26:6a:d5:6a:d9:5b:d9:fd:7e:4e:be:5f:d6:bf:1e:
87:a1:48:66:8d:89:51:46:5d:dc:c9:00:7e:84:f7:
bb:19:c5:a4:31:44:26:1c:3d:85:98:cb:fd:e0:f6:
95:18:a9:5b:7f:d9:81:71:32:4b:89:ac:10:2b:5a:
69:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:7B:57:B3:2B:65:8F:04:32:26:B3:79:87:04:A8:94:9F:A5:08:C5
X509v3 Authority Key Identifier:
keyid:1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/8CEA5014A01411F0BFEF7AB9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.140.71.0/24
Signature Algorithm: sha256WithRSAEncryption
34:69:98:78:4e:94:6d:f4:c1:15:45:9c:24:d0:0d:18:db:73:
ee:d2:44:05:9f:b4:74:9f:7f:16:44:77:6b:74:7c:05:7d:5d:
f2:36:43:3f:cf:2e:c5:34:3b:f4:e3:ba:f3:4c:d6:7a:9a:2d:
46:3d:bd:0f:eb:2d:09:2b:ee:26:33:cf:62:49:d0:e3:e2:da:
71:56:2e:4c:be:ee:15:5b:81:92:d7:a3:ce:e9:06:a0:86:2d:
a7:c4:9e:fd:e4:ae:c7:55:b3:0b:8f:51:01:d0:53:dd:fa:1c:
a4:07:48:fe:7e:58:5d:9d:12:ec:07:a7:92:ad:96:0b:da:83:
98:0a:d2:d5:f1:f4:60:be:03:f1:84:5e:ad:99:17:f6:60:0d:
eb:f3:e7:10:c4:0a:e2:2d:c1:85:8d:bb:b9:d5:17:4b:09:11:
63:21:5c:83:55:eb:5a:39:9a:45:71:d7:4f:8a:24:f1:9f:6d:
a0:af:7a:6c:3b:9f:d3:29:ee:50:3b:f9:1a:df:25:4c:5c:31:
17:97:16:a7:64:49:81:06:2c:6b:6c:b0:ee:88:99:79:a8:eb:
d4:fb:ff:4f:4e:2c:a4:e0:49:c5:19:d3:16:88:bc:76:d9:14:
6f:ce:b9:a5:1e:29:b5:11:ae:ad:4a:45:79:97:a5:e2:d9:1e:
17:28:b7:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 16:22:37 2025 by rpki-client