Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/D3233AFC9AA911F0B28D9B9FDAE4EC9C.roa
File: D3233AFC9AA911F0B28D9B9FDAE4EC9C.roa (raw, json)
Hash identifier: /AcnxuzNTosQCZAUuKmzEaEbGn9pqXV7DzlTfeQ9uZg=
Subject key identifier: E1:56:BA:D8:16:21:2D:E2:28:33:58:9A:33:F1:D0:32:0B:2D:39:B0
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 07B8
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/D3233AFC9AA911F0B28D9B9FDAE4EC9C.roa
Signing time: Fri 26 Sep 2025 07:24:23 +0000
ROA not before: Fri 26 Sep 2025 07:24:19 +0000
ROA not after: Thu 30 Oct 2025 07:24:19 +0000
asID: 22724
IP address blocks: 102.177.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1976 (0x7b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Sep 26 07:24:19 2025 GMT
Not After : Oct 30 07:24:19 2025 GMT
Subject: CN=68d63fa7-ab15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:98:65:a4:86:22:41:8b:20:a7:58:95:16:83:
79:e8:6f:5c:10:43:e0:e4:d6:0f:2e:dc:53:a9:43:
7c:03:fa:6d:bb:ac:c3:79:79:29:79:49:31:bc:b7:
1c:aa:e1:ac:7b:46:0b:ce:52:db:2c:28:69:f9:1e:
de:bf:36:43:fb:6e:4c:ae:e9:7a:13:ce:c1:0d:ae:
95:a3:3a:49:c4:75:46:8b:be:a4:ec:06:a9:55:c9:
08:59:a8:ef:38:cb:c7:44:09:94:e7:bd:70:17:6e:
74:b2:e1:e3:63:27:b0:9b:cf:b7:80:2f:d3:02:cf:
33:45:4e:4d:3d:38:c9:43:90:54:33:c9:b5:c9:a8:
fd:be:17:85:37:c2:6d:1d:13:a8:c6:b8:fa:29:45:
9b:f2:19:c2:4e:f2:c0:48:fd:70:41:bb:33:b0:53:
f8:8e:2c:fe:1b:fb:74:11:70:3a:3f:02:51:a3:21:
a0:7c:60:75:b6:79:94:05:4e:a8:6b:a3:69:54:6f:
55:25:42:09:a5:5c:49:5b:5a:21:14:ed:a9:0f:22:
21:8f:32:fd:bc:fd:e4:8b:dc:fc:aa:4e:6e:20:98:
fe:3e:66:90:d1:9e:c1:6f:bc:fd:04:a3:03:6b:44:
9d:e1:61:6e:c6:6f:b7:ef:7d:61:2c:53:28:1b:20:
2d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:56:BA:D8:16:21:2D:E2:28:33:58:9A:33:F1:D0:32:0B:2D:39:B0
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/D3233AFC9AA911F0B28D9B9FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.167.0/24
Signature Algorithm: sha256WithRSAEncryption
47:5a:84:be:0b:04:57:38:b7:7a:2e:98:25:87:ad:21:7c:36:
9a:a5:e2:9f:b4:84:ad:b0:32:2d:35:08:77:8f:21:4a:19:b7:
14:d7:a5:ec:b5:b5:2f:9c:3e:d2:9a:0e:39:4c:be:d0:a5:d6:
57:c1:94:6d:fc:39:47:50:56:21:6b:e2:a0:6e:ba:ae:1e:16:
1f:89:d8:22:a3:93:57:d2:89:8f:03:68:30:dc:83:8b:67:34:
ad:d6:83:a9:71:b1:3c:be:5c:6a:d8:91:ea:0c:9d:d1:1c:01:
5c:f4:03:46:5d:11:af:05:97:42:2d:4e:f5:e9:83:09:61:ff:
a9:ba:0a:96:a9:cd:52:81:c7:0b:16:2e:03:84:e8:92:3a:19:
45:a0:37:10:30:8b:18:0f:a6:ec:0f:82:7c:8f:a9:0d:16:ef:
0d:bd:48:93:ae:9b:e7:e7:84:50:5d:c6:82:d2:2b:c0:21:0e:
cc:b2:71:ec:29:19:2d:41:20:a8:7b:0d:de:07:fb:30:5d:e5:
2c:c9:a9:05:50:25:8b:9a:8e:37:0a:23:06:09:4a:ef:8d:c4:
14:de:8c:47:c2:bd:7d:77:71:57:c4:ba:a2:75:b6:72:9d:e1:
11:35:16:4f:96:93:ce:c2:3a:ea:60:fe:92:9d:88:9a:97:47:
56:c3:ec:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 10:00:12 2025 by rpki-client