Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/FC1758EE9AA911F0AE71D7A1DAE4EC9C.roa
File: FC1758EE9AA911F0AE71D7A1DAE4EC9C.roa (raw, json)
Hash identifier: p/wfawO4neZnr2GieDAQqFFqk793W4O10ZeBofiAz3I=
Subject key identifier: 6F:77:89:22:A5:9D:85:4F:3B:85:69:F0:90:D7:EF:C9:8C:BD:0B:18
Certificate issuer: /CN=F367DFA4AF/serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Certificate serial: 07BA
Authority key identifier: 97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/FC1758EE9AA911F0AE71D7A1DAE4EC9C.roa
Signing time: Fri 26 Sep 2025 07:25:32 +0000
ROA not before: Fri 26 Sep 2025 07:25:28 +0000
ROA not after: Thu 30 Oct 2025 07:25:28 +0000
asID: 22724
IP address blocks: 102.177.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.mft
rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1978 (0x7ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367DFA4AF, serialNumber=97C90E25212D887CF9E1DE6FDDF551BA812FA139
Validity
Not Before: Sep 26 07:25:28 2025 GMT
Not After : Oct 30 07:25:28 2025 GMT
Subject: CN=68d63fec-a491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bd:86:da:25:36:da:42:81:e3:20:80:18:10:
9e:fc:cf:84:88:30:99:64:70:29:82:36:e3:08:58:
65:9c:52:50:68:ce:41:5e:1f:a2:43:59:5e:0b:d5:
d4:bf:f3:c0:70:09:78:c1:ef:09:d0:44:a0:7b:e1:
42:45:df:55:8c:c5:ef:14:f0:3f:26:40:a7:d1:60:
cf:68:65:19:98:ba:33:af:68:35:db:0c:01:9b:a2:
f2:a4:eb:19:c6:71:7b:f8:9f:00:5e:46:1d:f9:df:
d4:b1:13:0e:c7:28:a3:86:6f:9b:7c:d5:75:7b:9e:
19:9c:4d:86:cb:97:e2:e3:06:76:5a:00:6c:59:d1:
c0:be:5d:31:7c:5f:74:cf:b6:a4:45:92:a8:2a:7e:
b9:95:e6:a9:2d:b2:2a:24:bf:39:ed:85:e9:71:16:
87:cc:a2:f2:d4:35:8b:a6:44:31:9d:75:c0:36:94:
a8:91:7e:a1:44:64:6c:74:5e:68:65:3b:46:5c:91:
7d:f2:50:a4:ea:62:92:59:82:ed:ed:c9:bb:cd:58:
a7:b9:5e:52:f0:0a:ca:74:aa:67:7b:0d:51:5a:63:
2b:9f:68:db:c4:cd:d7:9b:5d:9d:3d:ad:68:e1:da:
89:d2:36:c8:03:0b:87:c1:36:48:cf:5e:f8:af:1d:
0c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:77:89:22:A5:9D:85:4F:3B:85:69:F0:90:D7:EF:C9:8C:BD:0B:18
X509v3 Authority Key Identifier:
keyid:97:C9:0E:25:21:2D:88:7C:F9:E1:DE:6F:DD:F5:51:BA:81:2F:A1:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/l8kOJSEtiHz54d5v3fVRuoEvoTk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/l8kOJSEtiHz54d5v3fVRuoEvoTk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367DFA4/08B8D82093AC11EBB1D2A832F8AEA228/FC1758EE9AA911F0AE71D7A1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.177.168.0/24
Signature Algorithm: sha256WithRSAEncryption
af:50:32:a7:01:9d:0c:33:e4:3e:e2:bd:04:06:69:01:3d:4b:
12:0d:07:e2:df:37:94:e7:e2:3b:71:ec:4f:18:9e:11:d7:0d:
6a:44:cc:7b:f0:6c:56:48:65:26:73:5b:35:90:c6:a7:26:0e:
df:ab:3c:69:83:07:8f:85:94:5f:34:1e:e4:fc:05:75:22:6c:
40:9a:ae:6f:91:9f:5a:2f:43:b6:8b:d1:ab:c6:f2:d5:2b:f7:
2f:14:6a:78:63:0f:ec:21:f6:e2:72:06:5c:a4:e7:5f:32:78:
30:2c:6e:20:9f:43:bc:dd:2f:a4:e2:4c:34:4f:d5:20:1b:b6:
bc:a1:ca:f9:78:c3:68:5a:2d:98:69:62:81:78:3a:e7:f8:70:
da:a6:d5:8b:40:f0:30:b3:9b:8f:cb:36:ce:a4:98:a3:e7:0d:
a3:c5:3d:88:6c:69:6b:e9:96:14:eb:08:76:e5:0e:da:36:2f:
fe:7e:cb:67:4a:fe:a6:9f:22:f9:99:c2:23:6b:5e:4a:a8:a4:
2a:a5:f2:84:59:5b:ac:97:ba:e9:b6:0f:48:8f:9d:cd:49:ea:
95:86:da:c0:0c:07:2e:cb:47:35:bc:cc:a1:86:c5:7b:15:32:
de:9a:4e:c1:29:fb:12:08:cc:f1:d0:38:04:40:f3:7e:45:d6:
48:1b:7e:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 10:00:45 2025 by rpki-client