Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/4DF5B646A83E11F0B115F29CDAE4EC9C.roa
File: 4DF5B646A83E11F0B115F29CDAE4EC9C.roa (raw, json)
Hash identifier: 1I4QlyRJtH58+FmbvgaBVwb8TmvTGwmLG/FBtNGEc2U=
Subject key identifier: FA:A5:62:00:B5:81:5E:89:92:05:C9:05:1A:D3:A9:D0:79:9F:ED:48
Certificate issuer: /CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Certificate serial: 0426
Authority key identifier: C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/4DF5B646A83E11F0B115F29CDAE4EC9C.roa
Signing time: Mon 13 Oct 2025 14:10:00 +0000
ROA not before: Mon 13 Oct 2025 14:09:55 +0000
ROA not after: Tue 31 Dec 2030 14:09:55 +0000
asID: 15964
IP address blocks: 41.204.64.0/21 maxlen: 21
41.204.67.0/24 maxlen: 24
41.204.68.0/24 maxlen: 24
41.204.69.0/24 maxlen: 24
41.204.75.0/24 maxlen: 24
41.204.80.0/20 maxlen: 20
41.204.80.0/21 maxlen: 21
41.204.81.0/24 maxlen: 24
41.204.86.0/24 maxlen: 24
41.204.88.0/21 maxlen: 21
41.204.88.0/22 maxlen: 22
41.204.89.0/24 maxlen: 24
41.204.92.0/22 maxlen: 22
41.204.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.mft
rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1062 (0x426)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CAF, serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Validity
Not Before: Oct 13 14:09:55 2025 GMT
Not After : Dec 31 14:09:55 2030 GMT
Subject: CN=68ed0838-5dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bd:be:8f:bd:12:a1:a8:a8:20:01:d3:3d:84:
c3:74:50:f0:b7:27:a1:70:13:e5:1c:29:80:23:26:
16:97:b5:e8:44:37:6a:ab:ad:1a:4d:c3:ed:e1:85:
0e:20:9d:50:ab:8d:09:08:f4:40:94:d7:7c:16:05:
9f:7c:6f:f8:6c:6a:42:43:36:77:76:1b:d3:d0:30:
bb:12:d4:61:2e:ee:5b:0a:c8:57:9f:ae:08:72:72:
cc:5b:2b:be:0b:38:9e:75:79:f9:4e:95:cc:80:29:
57:8a:e2:35:5b:0c:7e:44:6a:ea:0c:e0:6c:40:58:
7d:23:30:c1:1e:c0:a0:42:77:39:bc:d1:e5:3a:26:
3a:cf:8c:cf:97:84:46:06:a4:4e:00:92:4b:5b:1d:
fd:37:ce:91:20:aa:39:3e:c5:5b:5e:b6:ed:87:4b:
62:91:95:e1:b2:40:63:e1:1f:3e:76:5f:09:4f:a6:
3f:68:94:11:15:79:91:5a:99:d6:59:dc:cc:68:04:
3a:95:35:15:7a:f0:11:d6:e1:9f:6c:03:bd:10:13:
18:7f:17:5b:7f:27:a9:11:ee:32:b7:85:60:11:5e:
72:db:14:f0:f4:a5:ca:75:81:c5:07:79:1b:2c:fa:
97:a9:b3:b7:6d:13:2c:35:29:36:1a:bf:00:59:05:
01:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:A5:62:00:B5:81:5E:89:92:05:C9:05:1A:D3:A9:D0:79:9F:ED:48
X509v3 Authority Key Identifier:
keyid:C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/4DF5B646A83E11F0B115F29CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.204.64.0/21
41.204.75.0/24
41.204.80.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:ae:36:83:20:c8:42:08:ba:f1:49:5a:72:f6:96:f8:40:1d:
94:75:16:c2:17:c0:4a:bd:5e:bb:81:49:e2:96:4b:65:46:8b:
ed:fe:8a:51:16:21:5b:3e:30:86:60:6f:34:1a:01:b4:e6:ac:
c0:de:5b:49:24:43:cc:55:c6:7b:06:ca:b1:4c:ec:06:9b:1d:
ee:10:e3:b7:b5:50:9e:53:ff:36:c1:46:14:90:fb:67:c7:52:
89:a9:e8:d1:64:e6:7f:33:d4:0e:db:db:60:46:9a:95:8f:31:
fe:7f:04:6f:10:56:13:06:a6:70:8c:3e:3e:f5:69:53:71:02:
0c:e5:08:bb:ba:a1:88:fd:30:8d:60:0d:0a:d5:8a:b5:31:30:
e5:d5:d0:b0:5d:80:be:94:92:8b:a2:67:92:6f:e1:18:9a:da:
85:5a:c5:1d:17:8a:36:7d:e7:e9:ee:35:72:26:dd:2b:4f:d2:
26:4f:44:82:74:67:31:2b:da:ac:3e:f5:e8:1a:5d:d9:80:06:
dd:fb:a1:91:57:28:34:7b:c1:a5:05:d3:07:29:54:fa:70:73:
0a:a9:b2:5a:cd:68:6b:37:a2:86:36:6e:1b:71:91:8a:8c:69:
1e:56:6e:33:87:9e:d0:cd:bd:75:f2:04:16:f3:af:73:a4:17:
d5:ab:e8:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 20:02:04 2025 by rpki-client