Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/336AF4AE7FF711F0AE8DC99FDAE4EC9C.roa
File: 336AF4AE7FF711F0AE8DC99FDAE4EC9C.roa (raw, json)
Hash identifier: yi/0UKPuZDZknDx1KAXUUOHrS4jbyRIkdAZT/3eBN5Q=
Subject key identifier: 87:69:1D:03:0B:6E:62:A4:53:97:A3:6E:2B:9F:9B:57:1B:F2:2A:E9
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0771
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/336AF4AE7FF711F0AE8DC99FDAE4EC9C.roa
Signing time: Sat 23 Aug 2025 08:00:15 +0000
ROA not before: Sat 23 Aug 2025 08:00:10 +0000
ROA not after: Fri 29 Aug 2025 08:00:10 +0000
asID: 22724
IP address blocks: 102.177.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1905 (0x771)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 23 08:00:10 2025 GMT
Not After : Aug 29 08:00:10 2025 GMT
Subject: CN=68a9750f-0aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0d:e8:4a:a7:b7:ae:28:fe:6a:1e:43:f1:81:
ed:d2:8d:f5:31:c6:8c:51:07:dd:19:f5:22:93:9c:
38:5c:71:a4:28:e5:2a:e2:31:16:28:bc:d9:1b:8b:
9e:a3:2e:21:96:c7:82:d0:1a:d9:1c:a3:73:f0:e6:
18:92:23:46:33:ba:7d:0b:dc:38:9c:f1:cc:91:08:
b7:08:9c:f4:f9:9c:75:6c:c9:51:9e:e2:89:75:ce:
36:d9:a9:70:2c:74:5b:02:27:a2:f8:60:9b:82:8f:
67:6f:5d:03:d5:c6:6f:11:c6:a4:f4:d6:56:1a:cb:
57:ca:9f:43:8a:c4:47:8b:ad:40:4e:b8:93:41:e4:
bb:f1:00:52:d9:70:01:fe:c8:92:f0:50:09:57:73:
d6:72:9e:26:a7:ec:cd:ac:2e:2b:ca:ab:d3:ce:c8:
2d:16:59:ad:d7:0c:2c:e2:0e:84:9c:54:87:b2:61:
2f:86:18:c6:bb:65:f1:49:8b:0c:44:a3:1a:ff:9a:
84:fb:70:1d:03:88:6c:f1:45:fa:22:54:cd:49:34:
db:78:79:cc:bf:1f:9d:ea:89:19:66:f6:93:b7:48:
5a:49:4b:22:c7:1d:f4:8d:fe:10:30:01:02:2c:3c:
a6:08:ad:24:85:9e:98:91:eb:71:93:97:bb:6b:f2:
6b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:69:1D:03:0B:6E:62:A4:53:97:A3:6E:2B:9F:9B:57:1B:F2:2A:E9
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/336AF4AE7FF711F0AE8DC99FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.160.0/20
Signature Algorithm: sha256WithRSAEncryption
15:6d:18:a7:dc:59:b4:e8:5b:85:70:e3:5f:da:c5:f2:23:e6:
9b:dc:fc:ff:b7:b6:15:5b:8a:21:d5:ca:93:f7:f8:30:b5:bf:
d1:16:cc:e8:99:4b:bc:0d:4c:e3:c5:c6:49:75:7e:aa:9c:e9:
51:a7:06:c1:42:ba:c4:8a:0c:09:f3:9b:3f:be:81:94:3c:09:
dc:8e:c4:59:54:05:01:2d:99:bb:bc:3e:59:c5:b9:95:68:a4:
09:ff:6b:6a:80:de:8c:97:6f:d1:f2:78:78:f9:79:74:cc:84:
f3:5c:6f:93:99:c5:62:aa:f3:34:46:c6:fc:db:ed:7a:29:70:
66:39:3a:fc:c8:32:ac:20:9d:be:46:30:5c:54:74:b4:c5:00:
4c:30:4b:03:c8:c6:09:3e:7a:1b:e7:55:2a:f4:b3:bd:13:c7:
57:21:27:45:59:99:1a:ab:3a:22:93:6d:29:45:c6:ac:fc:9d:
1e:dc:8f:6c:62:9e:ef:22:42:6b:57:44:84:4f:60:75:c0:ef:
12:59:d8:e0:71:89:0f:f5:c0:f4:90:d9:db:ed:c0:b2:c2:7e:
5b:d0:51:90:69:52:b6:9e:7a:3a:30:78:44:ae:11:7a:89:bd:
16:10:13:7e:85:6c:6e:a9:a9:46:9c:57:60:ab:85:4a:5c:d7:
2e:f0:52:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 23:43:48 2025 by rpki-client