Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/C325E5FE7FF711F095C23BA2DAE4EC9C.roa
File: C325E5FE7FF711F095C23BA2DAE4EC9C.roa (raw, json)
Hash identifier: frmMM3rvIHIkW0Gkf6+eMuqTwPkcfRXNvSXk/rjV9mc=
Subject key identifier: 7D:FD:2B:7E:72:C7:AD:44:FC:1B:3C:0C:55:00:A4:57:3E:BC:AC:EE
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0775
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/C325E5FE7FF711F095C23BA2DAE4EC9C.roa
Signing time: Sat 23 Aug 2025 08:04:16 +0000
ROA not before: Sat 23 Aug 2025 08:04:11 +0000
ROA not after: Thu 28 Aug 2025 08:04:11 +0000
asID: 211826
IP address blocks: 102.177.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1909 (0x775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 23 08:04:11 2025 GMT
Not After : Aug 28 08:04:11 2025 GMT
Subject: CN=68a97600-c735
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d4:5f:da:eb:a5:82:32:58:dd:c4:01:67:ee:
34:c3:35:be:1f:ea:12:4c:f7:32:ad:1d:eb:be:8e:
25:be:3e:af:bd:26:b8:a2:7e:9f:d0:7d:d8:57:c0:
8d:6e:d9:dd:47:be:98:04:2f:9a:d9:04:85:c0:57:
e4:d5:8c:83:81:4c:39:e7:f7:27:f5:f5:0e:eb:8c:
19:86:b6:6d:70:0c:00:c9:8c:c3:dd:eb:2a:83:9f:
3c:c7:3a:71:f8:a9:ee:58:5d:10:25:cb:b1:60:bd:
ef:66:38:31:8d:21:ba:bf:87:a8:d7:8a:63:96:b7:
66:e9:ed:ec:11:3f:88:5b:28:9a:2b:5a:dc:ca:56:
af:d7:ed:8a:29:4e:ea:40:bb:d7:82:a8:e7:f8:1c:
b3:77:fd:e0:79:b3:c3:b7:c0:07:97:92:27:f1:23:
d1:1a:52:8e:3c:e7:fa:62:f5:de:55:3a:2d:c7:3d:
77:02:9e:84:09:9f:de:2a:7d:98:a8:a5:55:9a:dc:
62:07:11:e1:15:d8:ec:c2:49:08:7d:1e:42:4b:a6:
6a:11:ae:dc:ec:20:d7:89:09:cd:7e:a4:e9:d4:3a:
78:d7:45:5f:ed:4b:f5:bf:80:d1:82:2c:19:db:25:
10:c9:82:ee:cf:3d:27:4d:21:74:44:c4:c6:0a:44:
a0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:FD:2B:7E:72:C7:AD:44:FC:1B:3C:0C:55:00:A4:57:3E:BC:AC:EE
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/C325E5FE7FF711F095C23BA2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.177.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:93:d5:70:47:d0:18:fd:04:02:d6:23:35:aa:ea:28:6f:e3:
a2:2b:54:1b:44:f6:61:49:5a:f1:c1:8f:04:a4:14:fe:4a:8f:
b0:3b:4b:d9:31:e1:12:12:6b:77:09:0c:4d:c8:9e:bb:84:75:
67:f7:e9:ff:cc:f8:90:d9:86:7b:a4:f0:5f:e0:07:f2:9d:2c:
a3:88:cd:30:f4:91:bc:46:4c:8d:6f:bf:8d:59:db:52:33:24:
5b:2b:78:26:a3:93:92:e7:ed:1d:26:81:80:7a:68:c5:d3:5f:
2d:f4:51:99:4b:a4:c1:ea:76:c6:b0:1b:f4:65:13:f2:99:34:
16:3a:49:c1:c2:58:d2:2b:fa:e9:ec:40:1a:3f:00:a1:17:b2:
77:aa:3d:14:7b:bf:fd:58:94:a1:4b:67:6e:e4:82:e7:65:69:
7f:2a:2d:24:eb:a4:e1:57:e2:cd:95:08:60:08:e3:d7:68:2e:
64:71:c3:f1:c8:12:4b:4b:23:1b:5e:38:1a:0d:b2:c7:ab:7b:
5c:8e:3d:20:7d:47:bc:b1:61:6a:ec:96:06:d3:c5:5b:ca:ad:
32:73:2c:74:5b:4b:30:7c:68:ae:5d:0d:cf:db:e9:3a:95:59:
ac:b6:ef:5a:bd:7f:ef:65:c0:65:20:c3:e5:85:cd:a4:d1:16:
25:c8:b9:7e
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICB3UwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0RGQTRBRjExMC8GA1UEBRMoOTdDOTBFMjUyMTJEODg3Q0Y5RTFERTZGRERGNTUx
QkE4MTJGQTEzOTAeFw0yNTA4MjMwODA0MTFaFw0yNTA4MjgwODA0MTFaMBgxFjAU
BgNVBAMTDTY4YTk3NjAwLWM3MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCe1F/a66WCMljdxAFn7jTDNb4f6hJM9zKtHeu+jiW+Pq+9Jriifp/QfdhX
wI1u2d1HvpgEL5rZBIXAV+TVjIOBTDnn9yf19Q7rjBmGtm1wDADJjMPd6yqDnzzH
OnH4qe5YXRAly7Fgve9mODGNIbq/h6jXimOWt2bp7ewRP4hbKJorWtzKVq/X7Yop
TupAu9eCqOf4HLN3/eB5s8O3wAeXkifxI9EaUo485/pi9d5VOi3HPXcCnoQJn94q
fZiopVWa3GIHEeEV2OzCSQh9HkJLpmoRrtzsINeJCc1+pOnUOnjXRV/tS/W/gNGC
LBnbJRDJgu7PPSdNIXRExMYKRKA1AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUff0r
fnLHrUT8GzwMVQCkVz68rO4wHwYDVR0jBBgwFoAUl8kOJSEtiHz54d5v3fVRuoEv
oTkwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4QUVBMjI4L2w4a09K
U0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2w4a09KU0V0aUh6NTRkNXYzZlZSdW9Fdm9Uay5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjdERkE0LzA4QjhEODIwOTNBQzExRUJCMUQyQTgzMkY4
QUVBMjI4L0MzMjVFNUZFN0ZGNzExRjA5NUMyM0JBMkRBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmsbEwDQYJKoZIhvcNAQEL
BQADggEBAJyT1XBH0Bj9BALWIzWq6ihv46IrVBtE9mFJWvHBjwSkFP5Kj7A7S9kx
4RISa3cJDE3InruEdWf36f/M+JDZhnuk8F/gB/KdLKOIzTD0kbxGTI1vv41Z21Iz
JFsreCajk5Ln7R0mgYB6aMXTXy30UZlLpMHqdsawG/RlE/KZNBY6ScHCWNIr+uns
QBo/AKEXsneqPRR7v/1YlKFLZ27kgudlaX8qLSTrpOFX4s2VCGAI49doLmRxw/HI
EktLIxteOBoNssere1yOPSB9R7yxYWrslgbTxVvKrTJzLHRbSzB8aK5dDc/b6TqV
Way271q9f+9lwGUgw+WFzaTRFiXIuX4=
-----END CERTIFICATE-----
Generated at Sat Aug 23 22:07:07 2025 by rpki-client