Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AB1CD/9D49B92681BC11EA92D8485EF8AEA228/274D32BAA87211F0A513AFDCDAE4EC9C.roa
File: 274D32BAA87211F0A513AFDCDAE4EC9C.roa (raw, json)
Hash identifier: dMmC61qu86t31B1siiWb387Uypaf5odQkXtxFjVGQaY=
Subject key identifier: D6:D1:85:EF:7B:1B:A6:84:F9:16:8D:8E:43:A9:14:7E:CE:9B:39:30
Certificate issuer: /CN=F36AB1CDAF/serialNumber=35EC3294282FA7A35478F82F9094B03FE2606FB6
Certificate serial: 0813
Authority key identifier: 35:EC:32:94:28:2F:A7:A3:54:78:F8:2F:90:94:B0:3F:E2:60:6F:B6
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/NewylCgvp6NUePgvkJSwP-Jgb7Y.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AB1CD/9D49B92681BC11EA92D8485EF8AEA228/274D32BAA87211F0A513AFDCDAE4EC9C.roa
Signing time: Mon 13 Oct 2025 20:21:09 +0000
ROA not before: Mon 13 Oct 2025 20:21:00 +0000
ROA not after: Wed 13 Oct 2027 20:21:00 +0000
asID: 328266
IP address blocks: 102.135.240.0/21 maxlen: 24
102.204.228.0/22 maxlen: 24
102.208.236.0/22 maxlen: 24
102.216.76.0/22 maxlen: 24
2c0f:ef18::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AB1CD/9D49B92681BC11EA92D8485EF8AEA228/NewylCgvp6NUePgvkJSwP-Jgb7Y.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AB1CD/9D49B92681BC11EA92D8485EF8AEA228/NewylCgvp6NUePgvkJSwP-Jgb7Y.mft
rsync://rpki.afrinic.net/repository/afrinic/NewylCgvp6NUePgvkJSwP-Jgb7Y.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2067 (0x813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AB1CDAF, serialNumber=35EC3294282FA7A35478F82F9094B03FE2606FB6
Validity
Not Before: Oct 13 20:21:00 2025 GMT
Not After : Oct 13 20:21:00 2027 GMT
Subject: CN=68ed5f35-172d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:08:3e:c3:f2:9a:39:c8:11:00:95:bf:68:a9:
44:5f:59:b0:d3:d3:be:3f:13:05:88:51:ea:2c:fc:
f7:d3:41:e4:14:d8:18:2c:2f:8a:ff:1e:1e:b4:93:
08:28:74:79:28:33:b0:da:a2:5c:fe:eb:36:fe:cb:
37:06:66:58:25:bf:5d:13:9b:df:b3:c3:3b:4c:dd:
fd:74:b7:1c:c3:47:5b:57:19:f9:49:8f:b0:8b:30:
ea:5c:6a:b2:95:5d:93:37:29:f5:43:9e:c8:94:5d:
e1:5c:1a:25:13:a2:4e:4c:db:26:34:98:d5:5c:10:
c6:70:de:c9:dc:89:ec:bd:6d:ab:39:ea:17:9c:11:
50:3b:1a:d8:32:b1:4b:b4:28:8d:e7:35:2a:e3:4c:
7b:ba:a8:1f:27:cc:3a:7a:e0:c8:74:e8:50:30:9a:
db:12:06:27:68:f0:7d:8c:2a:98:63:53:45:6e:e3:
ac:50:2d:25:7d:6e:1b:fa:2b:66:28:3e:df:8f:f6:
21:76:17:3c:5f:d5:8a:99:79:4f:f2:75:d7:1c:73:
5d:06:64:17:9e:52:f7:6f:eb:4a:b4:11:a3:65:74:
d3:df:80:28:ce:0f:e6:ff:f5:b7:96:b7:76:6b:33:
6b:c5:52:4e:76:99:7d:50:1d:67:9f:db:42:6e:57:
78:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D1:85:EF:7B:1B:A6:84:F9:16:8D:8E:43:A9:14:7E:CE:9B:39:30
X509v3 Authority Key Identifier:
keyid:35:EC:32:94:28:2F:A7:A3:54:78:F8:2F:90:94:B0:3F:E2:60:6F:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AB1CD/9D49B92681BC11EA92D8485EF8AEA228/NewylCgvp6NUePgvkJSwP-Jgb7Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/NewylCgvp6NUePgvkJSwP-Jgb7Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AB1CD/9D49B92681BC11EA92D8485EF8AEA228/274D32BAA87211F0A513AFDCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.135.240.0/21
102.204.228.0/22
102.208.236.0/22
102.216.76.0/22
IPv6:
2c0f:ef18::/32
Signature Algorithm: sha256WithRSAEncryption
b7:5e:f6:a3:0a:21:e8:d6:91:42:c8:aa:3e:42:2c:c0:12:6a:
26:c9:37:ee:43:9f:87:d0:c4:d2:15:43:80:01:75:0e:d5:b2:
25:0d:bb:76:f4:e2:9f:2c:36:c5:ae:50:b3:4c:71:89:88:c2:
07:ce:05:60:c1:19:7c:57:ed:17:4d:f1:0d:a4:9b:fb:aa:2b:
46:67:00:1b:ce:7d:71:6d:f0:33:5d:3e:ed:1a:d0:2d:de:96:
9e:36:63:a7:ed:8e:ab:d8:31:e1:c3:3e:aa:9c:be:9a:01:7f:
3c:60:51:ff:56:6a:e0:ba:f9:ab:fc:18:5e:7f:55:21:2b:b3:
40:cd:43:d8:a2:88:47:95:0e:24:17:ea:c6:37:85:c5:59:31:
61:a8:d6:93:e6:3e:cf:bf:95:98:57:cf:18:dc:6c:b5:20:16:
2a:b9:67:ca:62:25:66:8d:3e:04:3b:ae:08:2c:0c:42:cd:54:
79:5f:7b:4b:15:0f:35:14:0a:55:6c:94:8f:31:06:58:97:58:
e1:e9:95:2f:5f:4d:59:ed:fa:0e:30:01:8b:05:ec:eb:75:93:
b5:c1:d8:58:32:0b:10:99:98:4e:36:b2:75:7b:13:f0:7a:bc:
0a:6a:3e:87:48:ef:2c:c0:f7:06:7a:ce:d5:a2:21:1d:f3:a9:
cd:64:93:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:50:20 2025 by rpki-client