Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/5A8C7874784411F0BE639EBDDAE4EC9C.roa
File: 5A8C7874784411F0BE639EBDDAE4EC9C.roa (raw, json)
Hash identifier: Tso2x+6Cusvv7XHczF8aF240Wh6DYRs6taSZ6HxpTbM=
Subject key identifier: 9B:08:32:81:9D:D6:C9:B8:BA:C7:08:CC:89:BD:8B:75:5C:63:69:B5
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 075D
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/5A8C7874784411F0BE639EBDDAE4EC9C.roa
Signing time: Wed 13 Aug 2025 12:52:22 +0000
ROA not before: Wed 13 Aug 2025 12:52:18 +0000
ROA not after: Sat 28 Feb 2026 12:52:18 +0000
asID: 37527
IP address blocks: 102.177.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1885 (0x75d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 13 12:52:18 2025 GMT
Not After : Feb 28 12:52:18 2026 GMT
Subject: CN=689c8a86-e36f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f5:9a:78:f2:c0:ee:05:87:4d:6b:58:a3:28:
12:44:cb:5f:42:95:d8:41:78:59:40:a2:4e:a8:24:
72:79:17:8b:c1:06:10:71:98:08:4a:22:11:8a:5c:
4d:49:2a:25:0e:91:40:53:c6:8e:f6:8b:dc:4f:d5:
62:ae:74:a1:f4:61:6e:45:ba:4e:7d:03:fe:77:c9:
3f:75:24:a2:c0:0d:3d:80:bd:68:ad:44:fd:b5:ab:
5d:b1:42:61:79:09:5a:d0:df:e5:b2:03:03:e9:ad:
93:3f:ff:98:ac:17:33:66:d4:08:e6:bb:b7:70:24:
92:87:f5:53:bd:af:07:95:8e:3c:3d:ad:25:b8:bd:
75:bc:4b:88:7a:26:2d:c6:b0:d9:fe:d9:1a:fa:2d:
1a:fc:5f:b5:90:47:60:de:6d:54:ab:e2:b8:41:d8:
50:a5:98:f0:d7:c2:44:22:29:ec:bc:29:d0:71:a1:
8c:87:70:51:76:3d:57:5d:86:8d:9d:55:3d:76:89:
f1:81:72:8b:2b:13:b2:3b:ff:88:4a:5a:00:75:0c:
30:24:f8:0b:23:8a:8d:7e:a1:c9:8a:56:de:5e:57:
19:5d:df:d7:e0:fe:09:a1:05:71:02:e7:36:2a:44:
be:0f:83:f4:c3:b5:35:90:5c:49:6a:40:33:ff:e2:
7c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:08:32:81:9D:D6:C9:B8:BA:C7:08:CC:89:BD:8B:75:5C:63:69:B5
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/5A8C7874784411F0BE639EBDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.138.0/24
Signature Algorithm: sha256WithRSAEncryption
16:1a:01:27:b2:4a:e2:3c:a4:3c:4f:58:0b:a4:16:56:04:99:
22:5a:a7:b5:31:56:ee:09:6b:e6:af:c3:e3:84:47:c4:3b:47:
96:1e:8f:6f:1e:9d:44:73:07:5b:23:10:fe:9b:20:b5:01:1a:
ed:42:80:a3:97:fd:b2:62:61:77:bf:ca:56:08:68:7c:36:f8:
7c:03:76:cd:b9:ff:01:fb:99:aa:96:29:e4:83:d1:4c:48:b3:
de:c4:f6:ab:18:4e:1a:31:96:a9:8b:8e:70:ed:42:cc:8b:4e:
c8:03:1a:9f:dc:f1:25:7e:b6:c5:fb:02:ad:df:70:7d:43:c7:
91:c3:43:32:f6:2e:42:29:a0:13:de:f8:9b:b2:cd:00:43:36:
3c:22:af:5d:54:4b:0e:81:14:ad:ff:83:03:32:5a:df:34:93:
ea:d9:63:ee:06:70:da:38:26:bc:bf:c3:39:cc:e5:40:02:80:
35:cb:52:f9:cf:9b:61:cf:34:bf:b2:32:fd:3a:d8:27:06:3b:
f7:54:cd:24:36:46:d6:24:73:11:f8:7f:1e:36:93:0e:d6:82:
95:a2:1e:bc:7a:90:60:0d:da:a5:1e:10:2e:af:58:10:56:af:
74:eb:6a:f1:f4:0c:5e:fe:f0:83:f1:c3:4d:95:3b:91:fb:3d:
83:9a:2c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:35:46 2025 by rpki-client