Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/13B429E4A82B11F08C7A96A4DAE4EC9C.roa
File: 13B429E4A82B11F08C7A96A4DAE4EC9C.roa (raw, json)
Hash identifier: KYrcNRS9qGwFheXL1jyE5bvgElaJoQSziRbqOSDolOc=
Subject key identifier: 05:3D:AE:2F:1D:7E:B2:14:F3:4C:E0:89:4B:52:2C:06:53:0D:B0:A7
Certificate issuer: /CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Certificate serial: 025D
Authority key identifier: A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/13B429E4A82B11F08C7A96A4DAE4EC9C.roa
Signing time: Mon 13 Oct 2025 11:52:22 +0000
ROA not before: Mon 13 Oct 2025 11:52:15 +0000
ROA not after: Thu 31 Oct 2030 11:52:15 +0000
asID: 37577
IP address blocks: 197.239.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.mft
rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 605 (0x25d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CB1BEAF, serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Validity
Not Before: Oct 13 11:52:15 2025 GMT
Not After : Oct 31 11:52:15 2030 GMT
Subject: CN=68ece7f6-b3bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:11:89:35:2b:81:dd:e2:85:28:e9:ea:d3:bd:
84:fe:18:ae:dd:b5:e4:b2:1d:93:b2:3e:42:f6:67:
f4:80:19:fb:fe:c3:10:03:2f:7c:bf:2c:e6:a2:2e:
89:e4:7a:e6:9e:90:95:bf:35:67:2a:0a:ac:4e:13:
ef:0c:a5:d1:18:84:0f:0b:c8:54:94:e4:c5:40:c2:
64:7e:5f:42:d6:57:31:09:5e:6b:b8:d3:d4:84:ce:
bc:8a:72:5d:66:b8:b5:50:e9:d7:8f:21:99:64:c9:
98:eb:ba:22:9b:6e:29:f9:79:97:28:35:78:20:86:
8e:94:83:c8:0d:25:77:13:a9:92:5b:56:9c:1e:ce:
4a:b0:cd:9a:39:e6:2d:b0:34:05:e1:28:5e:dd:5b:
96:9e:86:63:26:9e:77:98:6f:b9:2e:eb:df:68:8b:
9c:8a:67:63:63:ba:4a:a8:6e:f4:97:22:f6:c9:b7:
89:23:ac:51:7d:b0:ff:2a:63:c5:1a:57:9b:3e:72:
fe:be:94:96:c4:f3:d6:f9:b5:29:78:9d:8c:56:ce:
b2:b1:68:e6:72:da:ab:1f:57:44:62:d2:79:84:1b:
36:af:de:7a:2c:5f:86:f0:bf:a6:06:b0:83:4d:e1:
62:95:e5:0d:a3:8e:fc:5f:84:9d:58:8c:be:ab:db:
7b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:3D:AE:2F:1D:7E:B2:14:F3:4C:E0:89:4B:52:2C:06:53:0D:B0:A7
X509v3 Authority Key Identifier:
keyid:A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/13B429E4A82B11F08C7A96A4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.239.117.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f7:19:6e:6c:be:ce:02:57:d7:16:8c:2e:0d:04:81:30:e2:
5b:e3:0f:c5:42:49:9e:3c:3b:eb:5e:0f:33:78:7c:68:d5:9a:
c4:34:43:26:67:91:9f:74:4a:54:ea:c7:8b:9a:b5:50:54:4e:
b0:c7:67:80:72:cf:72:a1:38:00:d7:a1:a9:15:8a:99:d7:1a:
4a:72:0d:98:b1:34:64:65:c0:f3:88:c7:1c:c8:af:c0:b4:e8:
93:7a:82:cd:34:fd:04:4f:e4:3c:6a:f1:ba:3f:bc:20:5c:d5:
55:70:ec:4c:ca:84:2c:17:cd:61:52:b6:c8:62:79:7c:8d:69:
52:85:15:5f:ae:37:5e:51:97:a4:68:b3:95:a4:05:a8:8f:70:
ba:64:f9:27:17:3e:71:f1:f4:c7:f1:00:af:74:14:41:26:e3:
63:dd:e7:9d:28:7e:4e:3e:07:ba:fb:3e:44:19:6a:f1:cd:15:
70:ab:ac:0b:48:ac:cf:54:9c:b0:a5:e0:d0:4a:48:13:4e:02:
45:7a:79:c6:7a:c8:ac:43:00:f4:e4:bf:c3:b2:fd:f0:62:41:
a8:50:80:a0:ff:7d:9f:0d:a9:f7:f0:e1:24:1b:8d:47:39:fa:
cf:eb:0c:7d:98:00:cc:14:47:6e:df:59:95:01:93:d8:60:16:
f7:ea:04:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 17:05:27 2025 by rpki-client