Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8771237E7EC211F099678AA8DAE4EC9C.roa
File: 8771237E7EC211F099678AA8DAE4EC9C.roa (raw, json)
Hash identifier: zffaPiL1Y8lSkQQ6ScEJK71SQvlLK9x+FiM4WbmwqxA=
Subject key identifier: 3B:F5:4F:4B:BA:6C:83:60:62:5B:C9:5C:42:7B:75:83:2B:04:E1:07
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0767
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8771237E7EC211F099678AA8DAE4EC9C.roa
Signing time: Thu 21 Aug 2025 19:10:41 +0000
ROA not before: Thu 21 Aug 2025 19:10:37 +0000
ROA not after: Sun 30 Nov 2025 19:10:37 +0000
asID: 138160
IP address blocks: 102.177.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1895 (0x767)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 21 19:10:37 2025 GMT
Not After : Nov 30 19:10:37 2025 GMT
Subject: CN=68a76f31-9f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9b:31:23:f8:2f:ce:fb:85:8d:5d:26:45:07:
05:15:3c:84:dc:91:59:52:3d:69:1e:a1:7e:da:2c:
d0:bc:b6:3e:e6:bf:0b:08:6e:6c:75:5a:3d:51:98:
e0:cd:e5:16:08:6b:e9:25:1c:4f:bd:43:72:65:15:
de:94:20:5b:fe:bb:2b:f9:b7:ec:66:ab:49:f7:a1:
c5:45:e8:4c:14:67:52:df:a4:0a:6a:67:62:f7:a0:
5f:93:3b:2f:50:b5:0e:1b:f5:57:86:01:11:27:ba:
63:7e:d0:50:e7:f6:c7:eb:5a:14:5c:54:d7:6d:44:
02:72:8a:e1:08:53:7e:53:81:70:ba:2f:a3:45:0b:
f7:36:cc:8e:31:27:e8:f3:df:b8:0a:5d:5e:d4:1e:
25:d2:24:61:23:c6:00:ad:98:4f:ec:4b:04:01:a2:
1b:05:0f:ff:6c:19:c5:6d:ae:64:5a:12:0d:5e:9f:
d5:3c:83:a5:b4:05:75:21:e7:50:ea:3d:5a:cb:47:
6e:ff:b9:2f:ba:ed:12:da:ee:82:85:6d:94:36:d3:
1b:3c:03:ac:0e:a2:d6:29:cc:1c:b6:f5:5f:8d:e9:
5e:42:2e:1b:ad:c6:25:65:54:7b:f2:e3:76:5e:56:
b2:65:05:b4:78:74:40:69:ad:b8:07:a7:b5:2b:e0:
68:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F5:4F:4B:BA:6C:83:60:62:5B:C9:5C:42:7B:75:83:2B:04:E1:07
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8771237E7EC211F099678AA8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.128.0/18
Signature Algorithm: sha256WithRSAEncryption
c6:04:70:cd:aa:14:5a:f1:db:e4:3c:4b:89:3c:14:51:5b:84:
a3:0b:ab:c0:db:aa:f8:d5:63:ca:84:e2:41:e6:61:b7:09:09:
3f:e5:15:94:d0:82:19:c0:0f:05:96:b8:ae:e0:58:52:d8:8a:
25:35:e9:9e:e1:ee:37:2f:eb:ce:b3:2f:88:ae:58:22:3b:f4:
a0:cb:dc:f5:9b:84:b8:58:b0:ed:72:7e:2e:a8:29:be:92:c4:
64:f8:61:cc:4d:f7:2f:b6:62:06:6c:5a:53:f7:c5:21:41:be:
13:bf:0a:0c:f7:58:6b:b2:2c:5e:04:ee:4f:42:4f:5b:58:6e:
db:0e:ca:ed:b3:7d:fc:5d:7a:cb:03:d8:bd:86:ad:c3:b4:2a:
cf:f5:91:81:dd:a6:b8:20:0f:0d:a2:45:90:29:c7:be:ee:2e:
b6:82:c1:43:95:64:eb:fb:15:61:d8:90:df:fb:ad:b1:66:a6:
a7:11:7f:53:6d:cf:32:aa:bb:a3:cb:a1:f5:c7:1e:f1:40:1d:
8f:60:16:dd:35:78:3e:eb:2a:eb:1c:7e:7b:61:4a:45:26:88:
43:bd:35:89:f1:1e:0f:8f:16:d5:04:70:36:1a:9f:f8:15:e9:
5c:69:d0:7a:0c:62:58:3b:dc:08:e8:8b:1b:0f:44:7f:bd:35:
5d:14:96:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:34:11 2025 by rpki-client