Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C11E4/13DDD38883AD11EEA0A81B324AD9E6FC/0EF6C094979E11F0A1367EE0DAE4EC9C.roa
File: 0EF6C094979E11F0A1367EE0DAE4EC9C.roa (raw, json)
Hash identifier: rudQgiGZO9W2N58KhjAh5JgOESyQ2q7XBM+cgROdak8=
Subject key identifier: 7F:F2:6F:98:55:14:42:40:27:B9:8D:DE:EC:95:07:D1:0E:E3:9A:74
Certificate issuer: /CN=F36C11E4AF/serialNumber=F023B97708196FF9F20BC9287D56C42CAAE5140F
Certificate serial: 02C6
Authority key identifier: F0:23:B9:77:08:19:6F:F9:F2:0B:C9:28:7D:56:C4:2C:AA:E5:14:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/8CO5dwgZb_nyC8kofVbELKrlFA8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C11E4/13DDD38883AD11EEA0A81B324AD9E6FC/0EF6C094979E11F0A1367EE0DAE4EC9C.roa
Signing time: Mon 22 Sep 2025 10:22:36 +0000
ROA not before: Mon 22 Sep 2025 10:22:31 +0000
ROA not after: Tue 22 Sep 2026 10:22:31 +0000
asID: 328169
IP address blocks: 102.214.161.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C11E4/13DDD38883AD11EEA0A81B324AD9E6FC/8CO5dwgZb_nyC8kofVbELKrlFA8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C11E4/13DDD38883AD11EEA0A81B324AD9E6FC/8CO5dwgZb_nyC8kofVbELKrlFA8.mft
rsync://rpki.afrinic.net/repository/afrinic/8CO5dwgZb_nyC8kofVbELKrlFA8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 710 (0x2c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C11E4AF, serialNumber=F023B97708196FF9F20BC9287D56C42CAAE5140F
Validity
Not Before: Sep 22 10:22:31 2025 GMT
Not After : Sep 22 10:22:31 2026 GMT
Subject: CN=68d1236c-b477
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e9:25:0d:38:5e:73:b1:b7:db:e9:1d:d8:1e:
22:85:c4:40:81:96:2b:40:e2:78:68:db:1e:f8:93:
02:ab:92:5b:63:9d:76:9e:cb:7c:c1:94:55:8a:f3:
f8:61:80:f3:75:cd:cf:9d:9f:01:76:be:36:a3:05:
4c:e3:a3:e8:07:65:16:dd:cc:2c:66:c0:d0:e4:66:
35:ed:61:ed:29:90:44:9d:5d:8e:3b:d7:da:fe:11:
4f:41:0e:0d:3b:92:fc:bb:15:a0:23:e5:cc:62:b7:
4b:6d:11:e6:61:c5:85:1b:5a:9b:c9:9e:5d:be:83:
0b:71:ea:b9:e0:e7:77:c9:ad:0d:4e:13:58:68:ce:
3b:3b:15:32:dd:91:f8:a5:23:0f:fe:d0:f9:2a:51:
ba:32:02:57:93:a3:4b:e8:48:66:a6:ef:35:e0:71:
1c:0f:25:42:dd:42:29:53:9d:f7:c4:7c:54:06:78:
f8:cf:2b:70:41:4d:e1:b0:d6:89:e7:14:13:13:1c:
5c:3d:59:42:9c:c8:9e:2f:08:a3:a1:58:e2:50:7a:
ed:3d:78:75:64:f2:7f:d9:95:5f:fb:a1:03:70:6a:
7e:91:d7:2a:c0:ca:a0:8e:1e:43:ca:86:eb:ad:07:
1b:84:3c:fd:9a:12:ef:6c:9c:af:d1:88:b0:d5:ad:
fe:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F2:6F:98:55:14:42:40:27:B9:8D:DE:EC:95:07:D1:0E:E3:9A:74
X509v3 Authority Key Identifier:
keyid:F0:23:B9:77:08:19:6F:F9:F2:0B:C9:28:7D:56:C4:2C:AA:E5:14:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C11E4/13DDD38883AD11EEA0A81B324AD9E6FC/8CO5dwgZb_nyC8kofVbELKrlFA8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/8CO5dwgZb_nyC8kofVbELKrlFA8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C11E4/13DDD38883AD11EEA0A81B324AD9E6FC/0EF6C094979E11F0A1367EE0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.161.0/24
Signature Algorithm: sha256WithRSAEncryption
56:72:6e:7b:3e:da:30:3f:0f:f8:65:65:95:91:79:ff:62:3f:
48:be:6a:0e:07:33:fc:73:b0:43:0a:ac:51:94:13:b3:1f:1d:
e8:b0:ff:fe:8a:48:26:8d:38:f8:9b:ce:14:e7:68:77:0f:d9:
0e:51:99:97:a0:a3:73:b8:e1:fb:bc:de:a3:67:83:54:a6:d9:
a2:e7:7d:53:d3:4b:2b:a8:04:2b:44:13:3d:98:c4:4f:1e:87:
c8:59:d8:02:d5:6a:c0:80:b2:13:8b:7e:51:f6:42:4f:58:0d:
b6:8d:27:b4:5e:16:a2:15:7d:60:de:a6:0c:37:fb:8e:2a:73:
a8:76:52:1b:53:20:8d:85:1c:31:8b:c4:ba:4c:71:cb:dd:30:
2e:fc:31:5a:e9:c9:7a:6e:1b:09:08:f6:cf:3e:74:05:20:31:
e1:28:39:61:22:d5:ee:c2:8e:36:5a:2f:7f:98:cc:3d:52:73:
26:ac:36:1c:25:27:c6:b4:57:9c:ba:be:e0:19:80:da:e2:42:
af:ab:61:77:33:1e:d7:54:67:2e:14:0d:5f:3b:12:82:31:dd:
e2:8c:d4:f6:01:2f:1d:b4:00:18:de:a4:3c:b6:92:2c:b8:c8:
2f:c5:46:be:5b:04:ee:39:84:45:ba:8d:84:29:38:fb:df:a8:
30:fd:de:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 14:53:27 2025 by rpki-client