Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365FABE/D9B8221A534111F0994039DADAE4EC9C/71089910A43C11F0A4AF11ADDAE4EC9C.roa
File: 71089910A43C11F0A4AF11ADDAE4EC9C.roa (raw, json)
Hash identifier: U5LDkkC16R2QjhJl9qo+wu8OGplriwnSfZRYIPerRao=
Subject key identifier: 38:D7:75:2C:0C:0A:20:01:C8:CC:38:13:39:B9:16:CD:BC:7A:36:A2
Certificate issuer: /CN=F365FABERI/serialNumber=8BE1A82CC9B891445839CBFEBE9960F3033DA542
Certificate serial: 6D
Authority key identifier: 8B:E1:A8:2C:C9:B8:91:44:58:39:CB:FE:BE:99:60:F3:03:3D:A5:42
Authority info access: rsync://rpki.afrinic.net/repository/ripe/i-GoLMm4kURYOcv-vplg8wM9pUI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365FABE/D9B8221A534111F0994039DADAE4EC9C/71089910A43C11F0A4AF11ADDAE4EC9C.roa
Signing time: Wed 08 Oct 2025 11:46:35 +0000
ROA not before: Wed 08 Oct 2025 11:46:30 +0000
ROA not after: Tue 26 Oct 2027 11:46:30 +0000
asID: 37453
IP address blocks: 193.110.104.0/24 maxlen: 32
193.110.105.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365FABE/D9B8221A534111F0994039DADAE4EC9C/i-GoLMm4kURYOcv-vplg8wM9pUI.crl
rsync://rpki.afrinic.net/repository/member_repository/F365FABE/D9B8221A534111F0994039DADAE4EC9C/i-GoLMm4kURYOcv-vplg8wM9pUI.mft
rsync://rpki.afrinic.net/repository/ripe/i-GoLMm4kURYOcv-vplg8wM9pUI.cer
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.crl
rsync://rpki.afrinic.net/repository/ripe/f3rBgIl5g-Kek3wKGHgDwHJ1VUU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/ripe-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:45:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109 (0x6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365FABERI, serialNumber=8BE1A82CC9B891445839CBFEBE9960F3033DA542
Validity
Not Before: Oct 8 11:46:30 2025 GMT
Not After : Oct 26 11:46:30 2027 GMT
Subject: CN=68e64f1b-95ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b1:2e:5a:38:e9:ec:0a:7d:4d:00:1e:ab:7b:
2e:c1:f0:ff:35:08:e7:9c:5d:ea:2e:b7:f0:fa:fe:
ad:17:28:e8:a0:9f:ba:88:d7:8c:49:14:fa:93:0d:
a4:4d:f7:82:3f:83:28:2b:8a:bc:9d:b8:67:63:0f:
eb:7e:02:9b:bc:f8:34:2a:ae:f7:91:2b:3e:85:e3:
32:75:de:d4:94:f0:c3:48:ba:cb:77:0e:08:52:a6:
8b:3b:98:52:5a:bf:86:6f:cb:14:99:53:cf:98:98:
90:ab:47:15:96:c2:6e:1e:bc:f2:a1:66:07:4a:b7:
5a:3b:4b:d4:de:31:9c:da:07:a9:36:c1:d5:96:41:
42:f1:03:6e:a9:9f:af:10:26:97:7e:31:63:25:5b:
37:74:85:45:60:fc:8b:69:1f:4c:de:8d:d0:95:0a:
97:04:78:28:fa:77:69:23:2a:59:14:f5:fb:1e:62:
5d:61:54:67:fa:6e:9a:82:d3:e2:08:eb:d0:4c:66:
f1:22:3b:52:ad:f0:6e:fe:21:c9:f8:3f:50:9a:47:
fb:b1:1f:60:29:89:7f:4c:05:d1:70:27:0b:9c:aa:
4e:c7:64:02:fd:cd:13:61:12:94:90:8e:87:72:d8:
0b:4b:10:44:e7:a3:c2:bb:5d:10:94:53:52:89:b9:
ad:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:D7:75:2C:0C:0A:20:01:C8:CC:38:13:39:B9:16:CD:BC:7A:36:A2
X509v3 Authority Key Identifier:
keyid:8B:E1:A8:2C:C9:B8:91:44:58:39:CB:FE:BE:99:60:F3:03:3D:A5:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365FABE/D9B8221A534111F0994039DADAE4EC9C/i-GoLMm4kURYOcv-vplg8wM9pUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/ripe/i-GoLMm4kURYOcv-vplg8wM9pUI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365FABE/D9B8221A534111F0994039DADAE4EC9C/71089910A43C11F0A4AF11ADDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
193.110.104.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:da:ca:98:06:22:b9:b6:ef:30:2f:e1:03:20:38:9b:72:ea:
79:3d:37:dc:bc:4e:a7:d7:eb:f0:b0:09:bd:ee:03:89:27:4f:
24:3a:2d:93:a9:6e:20:58:29:19:54:cf:b4:e6:71:16:5f:a2:
8e:64:89:c3:d5:4b:ea:da:1b:22:b0:79:e1:42:73:d4:96:b1:
a0:20:63:ed:68:28:f1:5d:cb:4e:42:b3:9b:1e:9f:a2:1e:82:
bc:21:8f:73:05:d6:0a:e6:d5:1a:a8:1b:34:0e:49:4f:c6:7c:
b5:e9:95:17:5e:9a:9d:a3:d5:fe:1d:b8:a9:10:fb:ca:ad:ef:
54:e2:74:00:03:3b:1a:21:1d:7b:8a:60:a5:2a:d4:0b:5b:3c:
42:7e:2d:31:78:8c:66:23:36:a8:4a:ad:33:08:72:28:b9:2f:
b3:8a:64:cd:9d:21:cd:e2:d4:df:b9:d7:ae:dc:f8:51:b3:29:
12:d1:3e:68:1b:5f:fe:fc:05:70:06:92:06:1d:70:50:50:45:
ad:dd:e2:82:ec:2b:b2:5f:7f:6c:a2:9d:de:42:4d:e2:72:95:
c3:f3:4d:fd:90:f1:f2:cb:bf:7a:96:b5:49:e8:ae:2e:ac:f9:
89:bd:e7:d8:51:4a:d7:98:5a:92:87:4d:17:7a:62:7f:e0:88:
ac:2c:c6:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:16:00 2025 by rpki-client