Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/27EA6F2E9AAA11F09FCFB6A3DAE4EC9C.roa
File: 27EA6F2E9AAA11F09FCFB6A3DAE4EC9C.roa (raw, json)
Hash identifier: NcdTQCXD5mfTJdeb+3+wrwaMNibr4cT0Crtu6pLpunE=
Subject key identifier: 7D:A9:79:AF:65:01:D7:08:31:A4:E2:BA:CF:51:C2:6C:BD:64:10:BE
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 07BC
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/27EA6F2E9AAA11F09FCFB6A3DAE4EC9C.roa
Signing time: Fri 26 Sep 2025 07:26:46 +0000
ROA not before: Fri 26 Sep 2025 07:26:41 +0000
ROA not after: Thu 30 Oct 2025 07:26:41 +0000
asID: 22724
IP address blocks: 102.177.174.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1980 (0x7bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Sep 26 07:26:41 2025 GMT
Not After : Oct 30 07:26:41 2025 GMT
Subject: CN=68d64036-2146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d0:4a:26:7b:77:ed:e9:f3:0f:98:59:09:a5:
6b:15:fa:52:34:9f:6a:23:d7:97:27:6f:bb:c6:a9:
22:ff:7b:fd:3c:42:d4:50:b7:9e:4d:fa:b3:d7:49:
ed:67:17:0c:a4:de:b4:56:45:49:64:eb:34:3e:79:
c4:cf:b4:24:1a:d7:d3:61:da:36:2b:1e:bd:1c:45:
e1:39:cb:66:29:b1:c1:8c:16:0d:52:0a:d1:b9:4e:
30:6e:41:4b:68:7a:c7:b4:14:e2:29:e8:fc:59:85:
4b:27:b0:8b:de:25:54:8b:c8:5f:dc:0e:04:ab:b6:
0f:c7:0b:97:41:ee:c1:ad:c9:09:cf:db:1d:4c:20:
ef:c8:d7:bd:44:29:aa:70:59:56:e1:fb:eb:3a:51:
17:fe:71:14:41:11:32:59:76:2a:dc:de:b0:6f:10:
96:26:09:20:03:ce:dc:2d:bc:af:55:a8:bb:5c:fc:
dd:ad:1c:22:a6:d4:39:38:40:1c:ec:e9:4a:5e:fe:
da:41:5a:62:10:7e:c6:76:af:18:03:17:c5:66:8c:
d6:bd:ce:05:70:3f:b0:2f:2d:2d:12:01:89:1b:10:
6d:56:95:a0:9a:94:f0:61:08:15:6a:02:07:33:ca:
8c:2a:7e:6a:c0:a2:cf:71:42:7f:69:f1:f7:f3:f9:
c1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A9:79:AF:65:01:D7:08:31:A4:E2:BA:CF:51:C2:6C:BD:64:10:BE
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/27EA6F2E9AAA11F09FCFB6A3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.174.0/24
Signature Algorithm: sha256WithRSAEncryption
29:88:7b:46:0a:c0:9c:ea:36:78:48:c0:2d:3b:ef:b1:17:da:
59:f0:4b:35:86:07:1d:40:bc:60:7b:df:f0:44:4d:93:3c:c9:
ee:e0:30:d7:92:1a:de:2c:c4:01:47:cd:b4:69:66:47:ee:c8:
87:23:24:06:79:98:bb:aa:2c:98:5d:00:8b:ca:7d:fb:cf:61:
e3:82:e5:11:bf:1b:5b:89:00:d3:55:67:60:df:65:38:0e:1a:
db:73:48:b5:32:71:ca:a8:1a:92:8b:cc:cf:6a:d0:e4:46:30:
d4:3f:a2:c0:48:92:2a:5b:0f:40:2d:9c:f7:f7:d7:41:9c:b4:
34:32:f7:33:1c:58:4b:49:80:c7:f6:71:53:08:da:18:3f:fa:
79:e7:22:9e:ce:97:24:5f:d5:85:b8:ad:c9:cf:57:98:16:0c:
0f:1f:11:cb:77:b4:e3:4b:31:39:37:cc:43:8c:d4:f0:27:7f:
e3:85:94:dc:72:b4:49:0a:62:77:fc:e1:12:ae:f2:40:ea:57:
ac:d3:ea:d6:ed:bd:5e:cd:ea:5a:cd:79:8a:41:52:01:48:e2:
b8:b4:c5:5c:7c:5a:69:36:2c:91:0d:35:63:6f:84:ed:91:55:
a6:ab:9f:15:94:66:1e:2d:8b:07:a4:07:ce:0c:41:66:9f:f1:
3e:a4:f6:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 09:58:32 2025 by rpki-client