Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/9D32F69A977E11F097D5EA99DAE4EC9C.roa
File: 9D32F69A977E11F097D5EA99DAE4EC9C.roa (raw, json)
Hash identifier: 8T6MXp4d7k4QlXY2d72nQUcRick423J+7EbbPvV9VsA=
Subject key identifier: 39:48:B9:BC:AE:CE:E8:3E:82:0C:2E:EF:CF:52:B3:13:07:30:85:C1
Certificate issuer: /CN=F3621C06AF/serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Certificate serial: 0646
Authority key identifier: 1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/9D32F69A977E11F097D5EA99DAE4EC9C.roa
Signing time: Mon 22 Sep 2025 06:37:31 +0000
ROA not before: Mon 22 Sep 2025 06:37:26 +0000
ROA not after: Wed 30 Sep 2026 06:37:26 +0000
asID: 328327
IP address blocks: 102.140.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.mft
rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1606 (0x646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3621C06AF, serialNumber=1DD16FD68BFF7CAB1AB91C55DA61FC0CDFF41743
Validity
Not Before: Sep 22 06:37:26 2025 GMT
Not After : Sep 30 06:37:26 2026 GMT
Subject: CN=68d0eeab-4ae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d1:d0:89:c5:0a:26:c9:9a:8a:b5:63:2a:df:
7e:26:d4:ac:91:b0:c2:b2:3b:9b:71:73:7c:b8:a2:
eb:6c:4b:b1:ee:07:aa:ef:d2:99:bf:0b:e2:64:01:
37:8e:0c:e2:09:4d:4f:73:e9:8e:64:93:8d:8d:cc:
f5:ec:c8:d5:c6:34:b6:46:54:12:b6:7d:e3:80:a6:
19:2a:3c:31:7f:7a:01:2e:e2:de:2d:cf:c7:e4:d8:
30:49:e5:5f:20:6e:7a:b6:95:7f:2a:6b:22:8d:06:
e3:48:e5:32:04:56:06:ca:d2:c0:ce:34:19:db:fd:
9e:ae:e8:73:87:2e:c2:4f:84:fa:2a:fa:c3:82:e3:
3e:c1:f1:b3:be:ff:7c:0b:56:2b:5f:92:29:87:4d:
6e:59:3f:ca:e6:dc:3a:20:8e:21:e3:5a:5d:a5:93:
7c:f2:56:c2:fc:77:15:e6:ce:2f:10:dc:5e:4c:6b:
e8:91:10:59:b8:40:ff:e6:05:fe:45:ce:5e:52:b2:
07:ec:b9:64:e2:d8:eb:0b:8b:b7:ff:50:43:dc:95:
30:7c:98:60:db:51:10:95:18:3a:62:e8:44:3b:51:
43:28:eb:1a:50:fb:e5:74:46:3c:9b:3c:29:98:17:
8e:17:2d:7e:32:5c:2f:51:d2:10:51:4c:5b:e2:03:
30:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:48:B9:BC:AE:CE:E8:3E:82:0C:2E:EF:CF:52:B3:13:07:30:85:C1
X509v3 Authority Key Identifier:
keyid:1D:D1:6F:D6:8B:FF:7C:AB:1A:B9:1C:55:DA:61:FC:0C:DF:F4:17:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/HdFv1ov_fKsauRxV2mH8DN_0F0M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/HdFv1ov_fKsauRxV2mH8DN_0F0M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3621C06/58C9B78C205911EC991B6877D8A014CE/9D32F69A977E11F097D5EA99DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.140.79.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:3d:bb:72:c1:1e:b1:80:61:c4:3f:6b:94:68:01:7e:b5:79:
ae:0e:99:26:9f:80:ca:90:32:03:9f:b5:fd:7b:a8:d7:ef:ef:
58:a9:d9:48:12:6e:60:27:ee:a7:78:25:49:5d:e4:2d:a8:a9:
94:6e:46:95:e3:25:e6:11:44:d4:dc:45:b4:1d:9a:5b:18:2d:
14:ca:d5:42:c9:88:35:2e:bb:64:39:b5:a7:63:a8:8c:27:a8:
e5:e8:9c:b1:04:2a:0e:3f:c7:c1:f5:f9:21:fe:19:c5:2f:aa:
9a:10:d1:33:58:96:63:4a:5c:d5:f5:f0:fc:3c:36:09:b2:5e:
12:3a:63:7e:a5:2f:b5:a7:ec:16:51:b9:f4:c0:bc:19:9a:fd:
a8:97:d8:11:74:19:7b:22:c0:96:d8:fa:22:42:a2:9c:bf:79:
e3:99:e4:25:9d:55:84:96:44:74:17:09:63:78:fc:48:66:83:
25:9e:0e:6f:8b:a0:2b:66:06:aa:17:1a:96:91:e3:92:e1:1b:
bc:09:ca:de:40:89:d0:30:e0:a4:9e:be:d2:0c:ad:d1:31:94:
c4:e3:9d:71:f4:24:a6:cc:d8:98:8e:9a:f2:0e:bb:da:15:56:
c2:83:ae:07:2b:ea:65:a6:ae:27:08:af:f6:a3:ac:b7:8c:0c:
a2:da:0a:93
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBkYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MjFDMDZBRjExMC8GA1UEBRMoMUREMTZGRDY4QkZGN0NBQjFBQjkxQzU1REE2MUZD
MENERkY0MTc0MzAeFw0yNTA5MjIwNjM3MjZaFw0yNjA5MzAwNjM3MjZaMBgxFjAU
BgNVBAMTDTY4ZDBlZWFiLTRhZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC20dCJxQomyZqKtWMq334m1KyRsMKyO5txc3y4outsS7HuB6rv0pm/C+Jk
ATeODOIJTU9z6Y5kk42NzPXsyNXGNLZGVBK2feOAphkqPDF/egEu4t4tz8fk2DBJ
5V8gbnq2lX8qayKNBuNI5TIEVgbK0sDONBnb/Z6u6HOHLsJPhPoq+sOC4z7B8bO+
/3wLVitfkimHTW5ZP8rm3DogjiHjWl2lk3zyVsL8dxXmzi8Q3F5Ma+iREFm4QP/m
Bf5Fzl5SsgfsuWTi2OsLi7f/UEPclTB8mGDbURCVGDpi6EQ7UUMo6xpQ++V0Rjyb
PCmYF44XLX4yXC9R0hBRTFviAzA1AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUOUi5
vK7O6D6CDC7vz1KzEwcwhcEwHwYDVR0jBBgwFoAUHdFv1ov/fKsauRxV2mH8DN/0
F0MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjIxQzA2LzU4QzlCNzhDMjA1OTExRUM5OTFCNjg3N0Q4QTAxNENFL0hkRnYx
b3ZfZktzYXVSeFYybUg4RE5fMEYwTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0hkRnYxb3ZfZktzYXVSeFYybUg4RE5fMEYwTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjIxQzA2LzU4QzlCNzhDMjA1OTExRUM5OTFCNjg3N0Q4
QTAxNENFLzlEMzJGNjlBOTc3RTExRjA5N0Q1RUE5OURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmjE8wDQYJKoZIhvcNAQEL
BQADggEBAKA9u3LBHrGAYcQ/a5RoAX61ea4OmSafgMqQMgOftf17qNfv71ip2UgS
bmAn7qd4JUld5C2oqZRuRpXjJeYRRNTcRbQdmlsYLRTK1ULJiDUuu2Q5tadjqIwn
qOXonLEEKg4/x8H1+SH+GcUvqpoQ0TNYlmNKXNX18Pw8NgmyXhI6Y36lL7Wn7BZR
ufTAvBma/aiX2BF0GXsiwJbY+iJCopy/eeOZ5CWdVYSWRHQXCWN4/EhmgyWeDm+L
oCtmBqoXGpaR45LhG7wJyt5AidAw4KSevtIMrdExlMTjnXH0JKbM2JiOmvIOu9oV
VsKDrgcr6mWmricIr/ajrLeMDKLaCpM=
-----END CERTIFICATE-----
Generated at Mon Oct 20 16:22:37 2025 by rpki-client