Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/30BC03247F6611F0BE80DFDDDAE4EC9C.roa
File: 30BC03247F6611F0BE80DFDDDAE4EC9C.roa (raw, json)
Hash identifier: iHVG3NVUOsL85HgpD9TDHI+l0LFrVL1qK9Ky/Iu6AO8=
Subject key identifier: 21:BA:9D:17:69:A5:22:05:1B:54:87:FA:2C:43:38:9C:E3:78:E1:F1
Certificate issuer: /CN=F365BA89AF/serialNumber=0C6E7BD35B42614FCF8D224DD88EB7B0F7EFC182
Certificate serial: 1C
Authority key identifier: 0C:6E:7B:D3:5B:42:61:4F:CF:8D:22:4D:D8:8E:B7:B0:F7:EF:C1:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/DG5701tCYU_PjSJN2I63sPfvwYI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/30BC03247F6611F0BE80DFDDDAE4EC9C.roa
Signing time: Fri 22 Aug 2025 14:42:13 +0000
ROA not before: Fri 22 Aug 2025 14:42:09 +0000
ROA not after: Thu 31 Aug 2045 14:42:09 +0000
asID: 329535
IP address blocks: 102.205.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/DG5701tCYU_PjSJN2I63sPfvwYI.crl
rsync://rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/DG5701tCYU_PjSJN2I63sPfvwYI.mft
rsync://rpki.afrinic.net/repository/afrinic/DG5701tCYU_PjSJN2I63sPfvwYI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28 (0x1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365BA89AF, serialNumber=0C6E7BD35B42614FCF8D224DD88EB7B0F7EFC182
Validity
Not Before: Aug 22 14:42:09 2025 GMT
Not After : Aug 31 14:42:09 2045 GMT
Subject: CN=68a881c5-b04a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f2:54:3e:39:00:53:ca:ad:8a:33:b4:bc:99:
5f:a5:35:9b:a2:61:68:58:fa:68:5a:e7:eb:f3:81:
f3:2d:04:14:75:3c:ae:61:6a:3c:ff:df:77:1e:8d:
65:95:95:40:d9:23:49:fe:a2:6b:97:e8:f8:56:3e:
85:6d:f3:1c:03:1e:81:b4:9b:11:75:dd:20:17:40:
dc:a3:81:52:63:25:73:8d:53:03:f5:63:07:54:3c:
af:3b:a3:46:45:34:67:ea:b0:da:bd:07:b2:64:f9:
89:99:48:88:8f:60:b4:b9:0c:a3:c4:3d:ea:ad:f8:
1b:5c:9c:cf:ba:4c:31:0e:e8:e6:50:44:bd:23:f6:
f5:87:17:44:1a:d9:ef:49:b6:45:b0:33:d7:b3:f1:
d7:da:5f:5f:19:4a:5c:32:1b:9c:65:da:1f:c3:f1:
82:f4:69:8f:03:ff:15:d2:ab:50:88:4e:4f:d6:f7:
81:3e:ff:ed:39:e2:6a:87:c6:9a:ad:a3:66:47:d8:
c7:17:5f:49:bd:3a:dc:73:06:58:af:a1:87:74:a3:
c2:74:36:27:e3:36:46:9c:3a:4a:dd:6e:40:7d:55:
91:1f:49:0b:ea:df:bc:d9:45:9d:52:52:65:d5:16:
72:85:d9:86:aa:90:66:66:b3:7b:85:33:6a:1e:d6:
9c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BA:9D:17:69:A5:22:05:1B:54:87:FA:2C:43:38:9C:E3:78:E1:F1
X509v3 Authority Key Identifier:
keyid:0C:6E:7B:D3:5B:42:61:4F:CF:8D:22:4D:D8:8E:B7:B0:F7:EF:C1:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/DG5701tCYU_PjSJN2I63sPfvwYI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/DG5701tCYU_PjSJN2I63sPfvwYI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/30BC03247F6611F0BE80DFDDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.205.239.0/24
Signature Algorithm: sha256WithRSAEncryption
24:ad:c8:7b:b2:3b:88:aa:15:a8:1f:c0:e0:35:0f:ca:fd:42:
ef:75:6e:3a:ee:7e:ef:e1:b1:93:c8:e2:f0:9e:fb:6a:32:77:
6e:62:4d:6d:00:be:6e:aa:18:2a:e0:04:cd:a9:49:a4:fb:65:
5a:5a:cd:fe:47:2e:fa:92:32:ac:ac:b7:84:21:4e:33:2d:e7:
59:46:0b:d5:f0:dd:3c:a8:98:04:41:1d:31:d1:ba:77:6b:16:
99:4b:56:a7:07:6d:27:74:d9:2c:26:7a:44:f1:fe:32:7b:bd:
d9:f3:66:14:e2:30:0a:f9:3d:b8:e2:28:f8:31:c2:99:b3:8a:
ee:cb:c3:4e:02:8e:af:0e:9a:d2:0f:4b:c1:2a:de:83:0e:5c:
9c:6d:3f:80:68:11:b5:9d:a7:bd:fa:32:23:88:be:79:8f:8a:
a4:35:9a:26:60:b6:be:9c:bc:4c:53:87:b2:2c:00:88:d4:2c:
c4:c9:13:35:c4:8f:79:b1:e7:b7:95:af:ba:8d:e7:6e:d5:9b:
42:a0:b0:8d:0e:a2:a9:29:35:b9:02:08:4d:28:17:80:0f:f6:
7e:f7:0b:22:16:f1:52:52:b0:2d:b9:e2:4c:6d:b9:55:a7:bc:
2a:a5:36:02:72:78:73:28:86:aa:eb:90:9c:f6:86:ce:44:65:
e9:a6:bd:48
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBHDANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY1
QkE4OUFGMTEwLwYDVQQFEygwQzZFN0JEMzVCNDI2MTRGQ0Y4RDIyNEREODhFQjdC
MEY3RUZDMTgyMB4XDTI1MDgyMjE0NDIwOVoXDTQ1MDgzMTE0NDIwOVowGDEWMBQG
A1UEAxMNNjhhODgxYzUtYjA0YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAK3yVD45AFPKrYoztLyZX6U1m6JhaFj6aFrn6/OB8y0EFHU8rmFqPP/fdx6N
ZZWVQNkjSf6ia5fo+FY+hW3zHAMegbSbEXXdIBdA3KOBUmMlc41TA/VjB1Q8rzuj
RkU0Z+qw2r0HsmT5iZlIiI9gtLkMo8Q96q34G1ycz7pMMQ7o5lBEvSP29YcXRBrZ
70m2RbAz17Px19pfXxlKXDIbnGXaH8PxgvRpjwP/FdKrUIhOT9b3gT7/7TniaofG
mq2jZkfYxxdfSb063HMGWK+hh3SjwnQ2J+M2Rpw6St1uQH1VkR9JC+rfvNlFnVJS
ZdUWcoXZhqqQZmaze4Uzah7WnKUCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBQhup0X
aaUiBRtUh/osQzic43jh8TAfBgNVHSMEGDAWgBQMbnvTW0JhT8+NIk3Yjrew9+/B
gjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NUJBODkvMzhDOUNBMjI3RjNCMTFGMEIxOUM3NEM4REFFNEVDOUMvREc1NzAx
dENZVV9QalNKTjJJNjNzUGZ2d1lJLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvREc1NzAxdENZVV9QalNKTjJJNjNzUGZ2d1lJLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NUJBODkvMzhDOUNBMjI3RjNCMTFGMEIxOUM3NEM4REFF
NEVDOUMvMzBCQzAzMjQ3RjY2MTFGMEJFODBERkREREFFNEVDOUMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGbN7zANBgkqhkiG9w0BAQsF
AAOCAQEAJK3Ie7I7iKoVqB/A4DUPyv1C73VuOu5+7+Gxk8ji8J77ajJ3bmJNbQC+
bqoYKuAEzalJpPtlWlrN/kcu+pIyrKy3hCFOMy3nWUYL1fDdPKiYBEEdMdG6d2sW
mUtWpwdtJ3TZLCZ6RPH+Mnu92fNmFOIwCvk9uOIo+DHCmbOK7svDTgKOrw6a0g9L
wSregw5cnG0/gGgRtZ2nvfoyI4i+eY+KpDWaJmC2vpy8TFOHsiwAiNQsxMkTNcSP
ebHnt5Wvuo3nbtWbQqCwjQ6iqSk1uQIITSgXgA/2fvcLIhbxUlKwLbniTG25Vae8
KqU2AnJ4cyiGquuQnPaGzkRl6aa9SA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 13:53:35 2025 by rpki-client