Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/069971DEA80C11F0ABBD17E1DAE4EC9C.roa
File: 069971DEA80C11F0ABBD17E1DAE4EC9C.roa (raw, json)
Hash identifier: WcnVuk8znWk2E8XVbTz8BI0h+oYIfhMrZBOZ5CTfGPY=
Subject key identifier: D6:B1:00:C2:20:37:D8:EC:F4:8D:A4:DF:3E:FC:A8:F2:AB:2F:80:2B
Certificate issuer: /CN=F3662367AF/serialNumber=0BD00848F838FD90B99EDC37690720955FB00906
Certificate serial: 04DD
Authority key identifier: 0B:D0:08:48:F8:38:FD:90:B9:9E:DC:37:69:07:20:95:5F:B0:09:06
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/C9AISPg4_ZC5ntw3aQcglV-wCQY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/069971DEA80C11F0ABBD17E1DAE4EC9C.roa
Signing time: Mon 13 Oct 2025 08:10:05 +0000
ROA not before: Mon 13 Oct 2025 08:09:57 +0000
ROA not after: Sat 13 Oct 2035 08:09:57 +0000
asID: 328178
IP address blocks: 102.204.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/C9AISPg4_ZC5ntw3aQcglV-wCQY.crl
rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/C9AISPg4_ZC5ntw3aQcglV-wCQY.mft
rsync://rpki.afrinic.net/repository/afrinic/C9AISPg4_ZC5ntw3aQcglV-wCQY.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1245 (0x4dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3662367AF, serialNumber=0BD00848F838FD90B99EDC37690720955FB00906
Validity
Not Before: Oct 13 08:09:57 2025 GMT
Not After : Oct 13 08:09:57 2035 GMT
Subject: CN=68ecb3dd-4b5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:89:cd:09:bb:31:b0:16:ba:4f:06:2f:80:ff:
14:65:34:01:ae:b4:30:ee:78:79:64:b1:ec:7b:c4:
4e:6f:9e:ab:05:72:9e:9e:03:b2:c9:ec:70:33:74:
d5:dd:80:5a:fc:41:79:6f:d8:92:01:e5:d8:ac:f6:
39:d8:4c:bd:99:e7:58:7b:f4:2d:1b:13:09:69:6e:
ca:a6:3c:17:a6:6a:1e:0e:b1:85:f7:49:6d:31:22:
a2:33:93:d5:7e:83:4a:7b:4e:8a:aa:8b:6e:c5:84:
72:f1:5d:10:81:f4:88:66:6d:91:d2:fe:57:f0:13:
80:4e:8a:39:be:16:d0:42:d4:29:37:6d:4c:a2:2b:
33:5e:84:ec:40:cd:a4:03:c7:1a:14:ab:f0:3f:8c:
84:e9:1f:1f:d9:75:9e:b5:7f:56:22:81:6e:5d:57:
ae:cb:26:c6:6b:57:84:67:9d:ae:1a:68:0d:7e:1c:
47:a1:e9:6c:38:e0:8c:9b:bb:f9:f2:8e:e9:81:cb:
00:93:4b:d3:97:74:18:bd:f5:12:ba:09:df:75:bd:
26:0a:e8:87:3e:cf:c0:4b:ff:9f:f1:cd:ed:08:5c:
88:6d:e8:09:70:6f:43:e4:c6:c7:8d:28:e2:26:f4:
50:9a:bf:a2:50:17:5e:58:d3:3f:f5:1c:3c:6a:70:
cf:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B1:00:C2:20:37:D8:EC:F4:8D:A4:DF:3E:FC:A8:F2:AB:2F:80:2B
X509v3 Authority Key Identifier:
keyid:0B:D0:08:48:F8:38:FD:90:B9:9E:DC:37:69:07:20:95:5F:B0:09:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/C9AISPg4_ZC5ntw3aQcglV-wCQY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/C9AISPg4_ZC5ntw3aQcglV-wCQY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662367/B4508CE8082011ED828588F7F1222468/069971DEA80C11F0ABBD17E1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.204.92.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:d4:11:f9:76:a2:63:d9:68:99:a1:11:ac:e5:fe:bc:a0:48:
36:a2:b7:53:7f:ad:5e:40:1f:fd:26:7b:8e:34:a4:d2:45:b0:
00:d5:8c:f4:be:f0:d0:e4:c8:29:db:f4:9f:52:df:8a:0c:8b:
53:ba:90:0b:e6:93:52:65:29:61:9c:ee:16:f1:e8:49:d1:08:
c3:9b:96:f6:f7:09:24:7f:76:c6:aa:d9:39:ef:ea:12:f7:bd:
0b:38:a4:24:c9:4a:73:bb:53:f9:e7:28:42:00:86:ff:55:dc:
20:97:77:c9:39:61:b0:28:3c:85:c7:d2:2e:89:e1:e6:f0:1d:
00:b3:bb:6b:9f:48:09:0d:d2:25:36:ad:52:a9:ec:df:db:c9:
af:74:6d:cb:39:d9:4c:40:ad:7c:83:5a:78:08:37:d8:b9:12:
51:3b:89:bd:9e:2e:f1:16:b4:2a:9e:0a:30:0d:12:05:ca:bb:
96:66:d5:37:44:3e:2d:51:cb:6f:77:a2:c4:2d:7f:26:46:b6:
e5:8b:6f:14:b8:0a:f5:44:e4:19:6f:3d:61:39:22:b0:e0:81:
bf:8b:49:23:82:a4:81:90:a5:29:a3:38:b0:7f:54:d7:04:e5:
2f:20:5b:e7:fd:8d:31:ae:6a:ec:cf:af:46:eb:81:b5:26:9f:
1b:4f:77:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 06:50:43 2025 by rpki-client