Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/973BEB607F6511F080F6BFD9DAE4EC9C.roa
File: 973BEB607F6511F080F6BFD9DAE4EC9C.roa (raw, json)
Hash identifier: vclQjZLxTaTwGc3lNp/8TusNaCyZ4ngaYseeyVlep0k=
Subject key identifier: 4D:3A:E0:FA:4C:DD:B8:F8:F0:B1:C7:EF:80:2F:81:D5:6B:3F:B7:7E
Certificate issuer: /CN=F365BA89AF/serialNumber=0C6E7BD35B42614FCF8D224DD88EB7B0F7EFC182
Certificate serial: 16
Authority key identifier: 0C:6E:7B:D3:5B:42:61:4F:CF:8D:22:4D:D8:8E:B7:B0:F7:EF:C1:82
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/DG5701tCYU_PjSJN2I63sPfvwYI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/973BEB607F6511F080F6BFD9DAE4EC9C.roa
Signing time: Fri 22 Aug 2025 14:37:56 +0000
ROA not before: Fri 22 Aug 2025 14:37:49 +0000
ROA not after: Thu 31 Aug 2045 14:37:49 +0000
asID: 329535
IP address blocks: 102.205.236.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/DG5701tCYU_PjSJN2I63sPfvwYI.crl
rsync://rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/DG5701tCYU_PjSJN2I63sPfvwYI.mft
rsync://rpki.afrinic.net/repository/afrinic/DG5701tCYU_PjSJN2I63sPfvwYI.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22 (0x16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365BA89AF, serialNumber=0C6E7BD35B42614FCF8D224DD88EB7B0F7EFC182
Validity
Not Before: Aug 22 14:37:49 2025 GMT
Not After : Aug 31 14:37:49 2045 GMT
Subject: CN=68a880c4-f067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c0:12:0a:70:36:46:84:da:73:5e:24:e5:79:
1d:02:ab:63:4b:6f:0c:a0:7e:16:1a:6d:f8:ce:71:
6f:58:1c:bc:12:97:8c:e8:6a:50:26:f2:83:81:6c:
a4:a3:50:50:d2:30:c6:29:96:b4:c2:fa:1e:c1:25:
8c:66:4c:c6:59:9f:82:52:e5:b1:93:93:69:9e:ce:
31:b8:0f:9b:63:fa:09:29:45:9d:85:09:64:41:3c:
c6:31:5f:db:6e:c1:88:cc:2c:b4:ce:f3:f4:a9:a8:
b0:ab:8c:84:db:98:f4:61:eb:03:10:f4:42:bc:af:
3b:8c:3d:30:89:64:ed:ca:a7:08:49:e9:3e:9c:64:
18:88:0b:47:bb:8c:13:03:cc:a2:ec:44:cc:6e:a7:
f2:c9:3f:15:85:16:3c:39:e3:5f:c1:f9:a5:7e:83:
c0:48:a1:f3:8c:1b:07:16:33:95:e3:19:d5:93:6c:
09:03:cb:58:90:25:23:de:1c:38:47:cc:51:a3:6d:
da:7b:86:da:5d:b0:bf:2d:b7:5f:82:35:88:b9:ca:
aa:56:61:96:29:46:13:92:70:4c:91:be:21:c3:cb:
ac:52:c1:0a:95:2d:de:0a:69:f6:67:ea:3a:4b:db:
ce:22:e1:3d:e1:d8:aa:27:60:46:f6:2b:a3:d8:54:
56:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3A:E0:FA:4C:DD:B8:F8:F0:B1:C7:EF:80:2F:81:D5:6B:3F:B7:7E
X509v3 Authority Key Identifier:
keyid:0C:6E:7B:D3:5B:42:61:4F:CF:8D:22:4D:D8:8E:B7:B0:F7:EF:C1:82
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/DG5701tCYU_PjSJN2I63sPfvwYI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/DG5701tCYU_PjSJN2I63sPfvwYI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365BA89/38C9CA227F3B11F0B19C74C8DAE4EC9C/973BEB607F6511F080F6BFD9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.205.236.0/24
Signature Algorithm: sha256WithRSAEncryption
30:80:6c:fb:32:0f:e6:0e:0c:8a:ae:13:bc:ec:05:7e:7e:a7:
a6:e7:6f:58:6e:66:3a:38:48:5a:78:55:f6:53:4c:6a:82:95:
84:75:5f:f4:8f:58:ff:26:90:07:18:4c:9c:b1:42:ab:3a:94:
ea:a7:cd:cd:f5:b9:7c:99:a6:f1:f3:15:92:5b:b7:e8:2d:52:
78:db:73:d8:a0:78:74:e8:f2:d5:58:5c:1a:e7:31:7f:96:1e:
ab:24:c9:8a:b9:95:47:b8:4b:66:72:cc:7d:3a:97:67:9e:df:
a7:bd:ba:5a:44:55:34:25:ed:9c:72:f2:31:f7:f7:e2:09:7e:
38:0e:80:ff:05:80:ec:53:99:96:59:78:3c:3f:78:d1:89:c5:
20:d0:38:53:55:3d:24:7d:90:e4:33:12:05:c1:28:79:3a:a9:
a9:9f:34:c1:4f:ac:8a:6a:54:b5:35:1c:33:09:6f:a1:5a:c3:
fc:d0:46:bc:39:5e:10:ff:39:e7:23:ce:a6:68:a3:81:94:3f:
fa:44:91:e8:90:99:85:9c:ad:35:db:fa:ca:2d:39:e9:4b:ce:
e3:75:32:3c:34:41:4f:14:0b:77:4b:d5:b1:5d:c7:bd:25:a6:
f1:8d:12:67:e4:b0:64:f6:82:fd:82:76:40:0c:33:e7:db:cc:
ab:e1:47:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:40:11 2025 by rpki-client