Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3650F65/F43C863A498311EFA2F45FB4762E951A/9005CECEAE5411F0853AF8CFDAE4EC9C.roa
File: 9005CECEAE5411F0853AF8CFDAE4EC9C.roa (raw, json)
Hash identifier: YWZz4QWlH0Bj3OOamSSjFcO7qun04dQhqkzbk6gKKqQ=
Subject key identifier: 79:2C:4F:FE:7E:E7:83:22:A1:CC:0F:B5:00:46:9C:18:0E:A8:F5:B1
Certificate issuer: /CN=F3650F65AF/serialNumber=C0C0E7199CB840A2498C1E3BA5676F9E0C062868
Certificate serial: 01DD
Authority key identifier: C0:C0:E7:19:9C:B8:40:A2:49:8C:1E:3B:A5:67:6F:9E:0C:06:28:68
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wMDnGZy4QKJJjB47pWdvngwGKGg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3650F65/F43C863A498311EFA2F45FB4762E951A/9005CECEAE5411F0853AF8CFDAE4EC9C.roa
Signing time: Tue 21 Oct 2025 08:04:27 +0000
ROA not before: Tue 21 Oct 2025 08:04:22 +0000
ROA not after: Sat 20 Oct 2035 08:04:22 +0000
asID: 37114
IP address blocks: 102.213.168.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3650F65/F43C863A498311EFA2F45FB4762E951A/wMDnGZy4QKJJjB47pWdvngwGKGg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3650F65/F43C863A498311EFA2F45FB4762E951A/wMDnGZy4QKJJjB47pWdvngwGKGg.mft
rsync://rpki.afrinic.net/repository/afrinic/wMDnGZy4QKJJjB47pWdvngwGKGg.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 24 Oct 2025 04:26:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477 (0x1dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3650F65AF, serialNumber=C0C0E7199CB840A2498C1E3BA5676F9E0C062868
Validity
Not Before: Oct 21 08:04:22 2025 GMT
Not After : Oct 20 08:04:22 2035 GMT
Subject: CN=68f73e8b-eec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:17:e7:c1:50:be:30:a9:a5:6f:0d:3b:09:13:
77:bc:97:9e:e4:d9:a0:fc:84:1d:f9:1f:dd:ef:a0:
82:30:29:0b:76:db:c3:69:f4:30:a4:f7:51:21:53:
60:29:41:5f:0e:1a:ea:97:39:3c:ed:f2:28:5c:a3:
2a:77:40:44:02:f8:de:3b:32:90:9a:75:da:45:26:
e8:19:2c:94:64:4a:d8:7b:97:0c:05:c2:26:20:c9:
6e:7e:9b:4a:7c:80:ea:35:ae:35:43:67:92:ac:53:
ca:9b:c2:69:2c:f0:2d:17:1a:4a:2e:33:a5:b2:b3:
ea:2e:a3:52:65:8f:f2:a5:8a:df:ef:9e:53:f5:54:
71:b7:6a:6e:db:d8:cf:47:2a:ef:8d:ff:18:b2:79:
b0:82:50:3c:66:e0:f1:7f:3a:e2:ed:e7:6c:e8:fc:
20:8d:d5:a5:02:48:d5:23:de:46:c0:3b:88:86:68:
da:9d:c3:d0:a4:93:18:87:da:84:ae:34:60:71:ba:
31:fd:3c:23:51:74:b6:d9:e5:1f:c9:80:f0:58:98:
ce:ab:54:fe:58:3d:fb:c3:4c:30:e6:37:a5:5d:16:
2f:86:6d:af:6b:7f:8f:b3:51:ae:63:05:38:8e:2f:
bc:4e:5a:20:f2:47:65:e4:e0:a2:ff:de:bd:3f:4a:
a8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2C:4F:FE:7E:E7:83:22:A1:CC:0F:B5:00:46:9C:18:0E:A8:F5:B1
X509v3 Authority Key Identifier:
keyid:C0:C0:E7:19:9C:B8:40:A2:49:8C:1E:3B:A5:67:6F:9E:0C:06:28:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3650F65/F43C863A498311EFA2F45FB4762E951A/wMDnGZy4QKJJjB47pWdvngwGKGg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wMDnGZy4QKJJjB47pWdvngwGKGg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3650F65/F43C863A498311EFA2F45FB4762E951A/9005CECEAE5411F0853AF8CFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.168.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:ce:b1:2e:2b:24:3f:49:a9:9b:a3:1d:04:7f:2a:01:6e:1d:
89:87:c3:95:a7:70:94:4b:99:99:5f:7b:ed:c0:78:1f:23:ed:
a9:c3:88:91:7d:38:39:84:91:be:44:d5:26:1b:1a:b8:9b:15:
be:40:16:98:53:f5:fd:5f:c3:6b:fe:6b:34:55:23:7e:d0:65:
4c:f8:b0:09:79:8a:79:e1:43:e3:c7:f4:c2:72:50:5a:44:74:
7b:e3:5e:f3:ea:a8:53:d2:5c:e2:60:82:e8:c9:e9:5e:94:81:
ca:bc:c0:af:6b:43:10:11:b3:f6:5c:01:78:19:46:4d:98:37:
4f:97:62:dd:3c:e2:97:54:c5:f1:13:a7:f8:81:34:63:4b:1b:
29:af:74:b4:b6:4d:de:eb:0d:05:a5:4c:e5:b6:c4:b2:db:0f:
d5:13:1a:6a:9b:78:37:eb:1c:9c:15:2f:8c:63:26:59:b3:49:
a5:33:0f:2c:b0:0e:28:b9:6c:5d:95:4a:f9:09:a7:e4:9b:32:
8b:8e:c2:f4:6c:ee:e3:08:c9:8b:e4:45:d1:28:19:6e:04:3d:
a2:49:fd:3c:da:62:fe:06:85:fd:87:1e:77:30:ce:68:4d:ca:
69:ae:9f:9f:c1:1a:a9:3f:5e:34:27:d4:c1:0a:ea:a4:d1:20:
b5:f5:1b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 11:43:58 2025 by rpki-client