Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8A61286E7FF711F09FCD1AA0DAE4EC9C.roa
File: 8A61286E7FF711F09FCD1AA0DAE4EC9C.roa (raw, json)
Hash identifier: eNx+Z8eGCYd1M2EoRJu2Fq2mFEVZ/lkh/ulC27TsPPk=
Subject key identifier: 7F:37:C6:3A:AD:27:DA:DB:1F:72:EC:46:BC:55:95:8B:06:BB:43:18
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0773
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8A61286E7FF711F09FCD1AA0DAE4EC9C.roa
Signing time: Sat 23 Aug 2025 08:02:41 +0000
ROA not before: Sat 23 Aug 2025 08:02:36 +0000
ROA not after: Thu 28 Aug 2025 08:02:36 +0000
asID: 200113
IP address blocks: 102.177.184.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1907 (0x773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 23 08:02:36 2025 GMT
Not After : Aug 28 08:02:36 2025 GMT
Subject: CN=68a975a1-86b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:08:d1:8b:1f:fe:c9:02:95:f7:df:da:c4:99:
79:17:9d:59:b6:53:11:30:76:60:15:fe:1e:ce:c9:
d4:77:3b:0a:2f:70:97:b0:82:58:ab:03:71:6a:ea:
11:d6:a2:f1:27:75:a1:99:fa:c3:97:f9:c8:0b:6d:
18:60:e1:73:f4:57:a6:cc:d1:25:a1:3c:d8:6a:e0:
ec:63:b6:77:0f:bf:47:5d:b3:fe:b8:e8:16:f1:80:
29:88:46:16:01:08:c9:e5:b6:d5:12:47:61:05:ac:
75:87:d6:0c:7c:43:97:9b:0c:80:a5:03:05:49:56:
28:3f:0f:08:86:f8:e1:18:32:04:f4:eb:b4:c8:94:
1c:01:03:3b:e2:65:ba:58:e1:ed:7b:29:f3:f4:55:
f9:6f:16:58:d0:92:6a:6a:88:cc:95:94:4a:04:a4:
0f:36:2f:de:ed:23:31:7f:40:aa:43:31:2e:8a:b0:
5e:43:65:b1:7f:be:25:3d:55:6c:ea:e8:74:5a:18:
64:2f:07:56:87:34:df:c0:d6:10:e0:bc:44:86:7b:
62:d7:97:bd:0d:a9:fe:78:91:b3:96:5f:a0:c8:30:
7d:18:4d:76:ac:4b:14:77:10:b3:6e:c4:79:c1:dc:
7f:60:5a:e8:a5:56:d3:f6:b4:72:99:37:c4:61:af:
8b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:37:C6:3A:AD:27:DA:DB:1F:72:EC:46:BC:55:95:8B:06:BB:43:18
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/8A61286E7FF711F09FCD1AA0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.184.0/24
Signature Algorithm: sha256WithRSAEncryption
42:a5:3a:6b:b1:aa:4a:f5:6d:c7:1a:7c:e8:9f:2c:b5:65:ee:
36:98:43:e6:73:30:51:49:e6:ac:e5:6f:f0:12:32:33:09:80:
4b:da:a5:c0:00:2a:ba:9b:60:69:33:b9:62:e6:94:bd:4f:6a:
ee:6e:cd:20:d3:6d:5c:be:6a:e4:de:e1:91:71:f2:82:52:09:
85:c1:8d:d0:dd:42:6f:d1:8b:81:12:be:1d:8a:ec:cd:78:3d:
33:89:cd:87:8b:ad:85:31:56:b6:53:01:66:c4:d3:33:2b:21:
ea:a5:96:a2:25:45:db:76:ef:b3:8a:27:64:92:3b:5c:53:b3:
a8:86:7e:46:97:51:16:95:8c:f6:8b:60:d0:4c:84:b8:ee:87:
aa:19:2c:4e:9e:c5:3c:62:89:88:85:94:5b:cd:a7:47:ae:46:
3e:1d:6d:ee:df:2f:30:97:71:37:0c:1a:e3:97:2a:05:52:48:
77:7b:05:da:0f:15:60:52:e6:14:20:fb:bd:ea:ce:b3:c5:25:
56:5c:a2:cd:12:7f:be:1c:40:3c:85:f1:36:95:bf:71:1d:62:
1a:17:ff:b2:48:e8:f0:aa:61:cd:db:f1:f2:00:7b:38:a7:10:
7d:af:00:cc:7d:92:df:4f:9c:a8:ae:88:9b:df:2e:a9:85:a1:
63:a4:a4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 21:55:24 2025 by rpki-client