Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/14A07164952F11F0ADEC64A3DAE4EC9C.roa
File: 14A07164952F11F0ADEC64A3DAE4EC9C.roa (raw, json)
Hash identifier: QI/ulBnHBuS3dRtLpTM6p4UrwXheqwhQAXcs85bhLNM=
Subject key identifier: 48:4B:5A:13:05:7A:35:F6:48:9F:51:04:A0:3D:4A:2D:E9:F8:5A:D3
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 07A7
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/14A07164952F11F0ADEC64A3DAE4EC9C.roa
Signing time: Fri 19 Sep 2025 08:03:09 +0000
ROA not before: Fri 19 Sep 2025 08:03:04 +0000
ROA not after: Tue 28 Oct 2025 08:03:04 +0000
asID: 211826
IP address blocks: 102.177.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1959 (0x7a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Sep 19 08:03:04 2025 GMT
Not After : Oct 28 08:03:04 2025 GMT
Subject: CN=68cd0e3d-337c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:40:56:92:92:da:a5:99:19:85:cd:28:0d:ff:
fe:32:b7:66:7a:04:d0:3e:c8:6d:ae:09:1b:d4:96:
44:2f:20:d0:0b:eb:f9:27:af:d9:da:5e:9e:ab:8b:
10:85:c0:5c:aa:88:04:28:74:ea:bf:cb:83:1d:1f:
a7:a3:60:c4:fe:ac:c6:41:19:d4:59:6f:86:2f:05:
77:45:03:f7:1c:f7:2d:0a:64:11:62:25:21:99:4a:
79:eb:fb:e9:fd:2c:2f:06:0b:6f:9b:bb:f3:e7:dd:
a7:f5:fe:37:c6:84:4c:26:19:6a:26:73:e0:99:da:
64:9e:98:fd:8c:28:48:2c:54:4e:ac:5f:8b:cc:68:
9b:53:a7:d1:c1:c6:a2:69:ca:ca:a9:14:8e:19:f8:
fe:7e:a4:87:3a:55:91:ae:57:f7:fa:3a:17:9d:88:
74:4d:82:c3:c5:fc:25:e4:26:1c:c9:57:81:76:e6:
9f:a7:f4:a3:76:7b:c5:63:19:7d:fa:24:c8:e2:23:
29:bc:8b:13:fc:cd:77:e1:32:09:d5:91:aa:a3:78:
6f:47:86:ca:f0:3c:4a:b2:0d:c8:ec:50:40:10:76:
a8:66:0c:53:9c:ac:3e:9d:87:0a:b3:22:84:32:b4:
ba:2a:e4:3e:2c:c7:6b:4d:05:a6:e3:69:6c:c5:0c:
8e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:4B:5A:13:05:7A:35:F6:48:9F:51:04:A0:3D:4A:2D:E9:F8:5A:D3
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/14A07164952F11F0ADEC64A3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.177.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:e6:89:35:05:c2:53:05:9b:f2:28:6f:48:65:4d:1e:f4:8f:
9c:86:ae:4c:1f:f1:39:c9:fd:0e:79:b4:59:2f:09:d5:05:ba:
d5:e2:6e:ba:08:69:df:a3:cd:69:c5:8c:11:30:09:a9:0b:15:
da:2b:58:61:30:3e:c9:33:e1:b7:18:6e:00:d4:73:dc:ff:90:
5a:28:73:f9:02:9a:b7:75:d0:0c:7a:c5:f4:84:17:97:0a:a0:
19:9a:1e:6f:42:a2:02:76:8f:51:57:08:3e:db:22:68:ce:3b:
51:a0:07:50:03:66:64:70:62:c0:bc:ff:ab:32:2f:5e:1a:7e:
fa:d2:34:16:43:2a:71:11:cc:13:3f:c9:93:b1:82:08:1c:07:
9d:b2:99:8d:67:8a:7a:2e:85:10:54:1c:51:39:38:57:00:5a:
ac:c4:40:f4:71:3c:61:05:02:21:12:1f:ff:6c:41:60:bd:a8:
c6:eb:cd:9f:65:dd:a1:c4:5f:c1:3f:8d:2d:e0:42:2a:ba:85:
79:c8:39:76:67:a3:99:46:fa:5e:aa:ea:7b:dd:9c:c9:0a:0b:
7b:ff:ea:df:16:2c:87:9d:04:c4:13:01:2b:55:82:1a:8d:aa:
bb:ec:e0:1b:03:fd:71:ce:c0:e8:94:9f:7c:f0:5c:af:81:67:
fb:e5:b0:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:26:53 2025 by rpki-client