Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/D555ACF47ED111F08EE5E58BDAE4EC9C.roa
File: D555ACF47ED111F08EE5E58BDAE4EC9C.roa (raw, json)
Hash identifier: 47vFvhPfYF8MRZPiu19cy9fhXJPFVZu9WXQ1eMHjtak=
Subject key identifier: A5:96:D9:98:8F:2E:31:75:BE:F0:F4:6F:41:2E:A8:26:D6:4A:A4:5A
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 0769
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/D555ACF47ED111F08EE5E58BDAE4EC9C.roa
Signing time: Thu 21 Aug 2025 21:00:14 +0000
ROA not before: Thu 21 Aug 2025 21:00:08 +0000
ROA not after: Sun 30 Aug 2026 21:00:08 +0000
asID: 328608
IP address blocks: 102.177.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1897 (0x769)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Aug 21 21:00:08 2025 GMT
Not After : Aug 30 21:00:08 2026 GMT
Subject: CN=68a788de-1f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:78:b4:d7:9b:72:e2:e2:31:bd:68:a5:65:a9:
5d:64:31:92:82:ce:5f:d9:ef:cc:1f:a8:ec:ac:2c:
8d:e6:9a:bc:51:b5:40:e9:74:62:7f:ab:4b:d6:c3:
9e:19:f7:00:a9:9b:c2:cb:d5:6c:13:66:5b:09:9b:
4a:59:18:d1:1f:aa:0f:34:6b:ed:30:e5:58:7d:85:
2a:50:4e:ad:0c:09:92:94:71:c1:b2:1d:09:a1:68:
0f:fe:01:9f:6a:53:09:28:68:59:2c:91:68:b8:b3:
82:7b:8c:bb:39:f6:3d:37:c7:5e:a2:4a:e1:ee:53:
6d:77:6c:14:91:a3:6a:52:0e:24:fb:43:e2:f5:94:
55:a0:13:69:51:06:7d:a3:ca:52:16:1d:65:75:d6:
72:b7:89:48:6e:df:47:77:7f:e1:9a:26:80:56:23:
0b:2d:c5:0e:88:6f:7d:ee:0d:b8:14:80:fb:f5:3b:
c0:56:1b:3c:8b:bc:99:f1:d6:e3:b0:2e:36:ba:15:
77:22:98:10:24:99:62:f5:dd:68:78:c3:d7:4f:dd:
b6:15:1a:80:c3:9e:27:f3:c4:bf:c8:a5:66:c8:bc:
be:47:bc:19:09:7f:69:95:34:50:52:8a:38:06:6e:
57:e0:59:d7:f2:1a:3d:86:87:ea:97:95:51:5f:44:
e1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:96:D9:98:8F:2E:31:75:BE:F0:F4:6F:41:2E:A8:26:D6:4A:A4:5A
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/D555ACF47ED111F08EE5E58BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.128.0/18
Signature Algorithm: sha256WithRSAEncryption
14:f9:83:c8:ca:91:48:53:56:5d:f5:61:cb:5f:d8:50:4d:92:
c2:45:30:3e:9e:52:d4:ab:eb:13:c7:81:b8:c6:62:47:16:a3:
31:1c:bf:c4:ca:ac:5c:48:cd:fc:eb:28:24:f8:ea:e5:5e:d1:
5d:5b:f0:8a:de:a5:21:ad:73:e3:c0:07:f0:50:ec:ac:f0:4c:
af:1a:fb:f1:ac:21:0b:84:20:e3:6e:1a:19:a3:e1:9e:75:01:
36:ec:0a:35:1d:ec:b0:36:d5:a5:3f:5f:24:2a:a1:0c:d8:c8:
e4:5a:2d:7a:b8:2d:5f:77:6d:c6:03:74:31:23:41:c8:21:02:
82:93:3f:1f:fe:c4:58:c6:de:45:14:01:c5:8a:21:1b:9c:37:
66:bd:43:a5:f2:bf:4f:c0:3c:7f:fa:25:f1:fc:a3:b1:5b:da:
e7:66:c2:9c:b3:1d:d9:49:5b:28:60:45:4a:3b:91:75:7a:10:
d4:c7:73:2a:d9:d2:95:88:f4:1e:d1:80:b6:f8:0f:3e:1d:da:
a0:85:c2:39:6e:e1:65:c1:78:50:1a:d9:25:e9:48:80:ce:9d:
f0:0d:f0:f5:88:54:bc:1e:8c:2b:65:67:78:2b:2c:2a:e2:d5:
a5:2a:12:1c:6f:d2:f2:84:19:e4:09:dc:ab:06:a3:df:76:d6:
96:56:b6:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:27:43 2025 by rpki-client