Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/64797A88AD1611F0992966BDDAE4EC9C.roa
File: 64797A88AD1611F0992966BDDAE4EC9C.roa (raw, json)
Hash identifier: dN0yO8xGL+mUbU8wW7KJehC831uJIY80Koc8ErS6ffU=
Subject key identifier: CE:E3:90:C5:CD:82:BD:3B:11:3B:66:F2:62:F2:10:50:2B:64:29:D9
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 07DD
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/64797A88AD1611F0992966BDDAE4EC9C.roa
Signing time: Sun 19 Oct 2025 18:06:54 +0000
ROA not before: Sun 19 Oct 2025 18:06:46 +0000
ROA not after: Fri 28 Nov 2025 18:06:46 +0000
asID: 211826
IP address blocks: 102.177.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 18:09:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2013 (0x7dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Oct 19 18:06:46 2025 GMT
Not After : Nov 28 18:06:46 2025 GMT
Subject: CN=68f528be-d097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:06:a3:3b:ae:06:a8:64:fc:c9:90:69:69:b8:
07:c1:ad:91:65:43:fd:9e:1e:46:5b:9b:a6:ae:51:
e1:7e:32:fe:15:44:bb:f1:95:c9:4a:20:e9:d2:8d:
6f:3d:d7:c0:92:bb:b9:d8:64:b3:0f:e1:e9:fe:dc:
57:f8:90:47:44:5a:2a:11:ad:c8:c2:5d:e7:ae:df:
4c:95:38:8c:95:03:11:f5:11:1f:5f:43:9b:b0:13:
02:93:b4:1a:37:5d:91:d2:d2:6f:c3:ac:2d:a3:5c:
41:43:5c:22:cb:20:fa:e3:67:cf:af:34:98:54:14:
4a:19:c2:ef:f0:30:31:0c:a3:6c:2e:aa:de:51:1e:
6f:a2:87:c4:53:85:b8:7a:a5:3b:75:2c:59:6e:05:
a2:0b:17:58:48:52:7a:75:cb:fc:57:ce:10:a4:2d:
74:33:c4:26:90:2e:e1:af:f4:3e:f4:ca:c8:9c:ef:
e0:aa:ff:c2:77:80:5b:9d:0f:fb:22:b3:59:d3:8d:
8c:57:30:6e:1e:ab:ca:4a:92:37:f5:58:94:60:b5:
d3:46:f0:c0:5c:bf:5a:bb:0f:0a:1d:97:4b:c4:45:
a4:66:d5:d3:67:53:1b:4b:34:f0:f9:a5:c0:dd:21:
52:7b:3a:8d:d7:1e:d5:5b:2e:30:a1:c0:39:7e:ac:
cb:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:E3:90:C5:CD:82:BD:3B:11:3B:66:F2:62:F2:10:50:2B:64:29:D9
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/64797A88AD1611F0992966BDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.177.0/24
Signature Algorithm: sha256WithRSAEncryption
56:d3:f3:8c:65:6e:c8:ef:35:f8:a4:66:d2:9b:41:1d:3f:3c:
3e:db:82:5e:04:65:93:14:ad:e4:8a:f1:2c:76:10:68:62:80:
9c:b1:00:24:c4:8c:d1:b2:f0:95:ac:ed:4b:94:2b:cf:50:93:
88:4a:d0:19:5e:6e:17:e4:b7:30:a9:8c:d3:2b:d6:b8:dc:4a:
78:95:28:e6:d5:ef:4c:f9:5b:2a:2b:1a:65:94:3b:7f:52:4e:
a8:c3:67:9e:96:e2:3e:10:ec:95:e7:0d:95:cb:f6:fb:fc:e4:
17:3c:51:cf:b7:8d:0a:15:ff:0b:42:ef:a6:13:22:86:42:79:
16:63:8c:84:ae:b5:6c:14:83:81:cc:b0:27:a9:30:13:f8:8b:
1b:10:da:a8:67:0e:d3:40:f7:d4:c5:7f:93:03:5d:79:89:90:
84:1d:cf:a8:d3:f9:c2:81:a7:c4:50:64:4f:b1:31:a0:8d:0d:
57:fe:7a:2b:db:ef:8f:6e:96:73:af:75:39:f5:4e:46:c3:c5:
08:0d:2f:be:f6:3b:c6:4e:9d:c0:ed:3a:bb:67:da:67:c3:b7:
fb:69:3c:2b:e9:18:e8:f4:1a:88:29:f5:6b:c4:10:70:41:d0:
69:d7:4d:4d:8b:ee:15:61:da:cd:5d:a7:3e:1c:75:4f:90:f6:
59:9b:57:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:05:50 2025 by rpki-client