Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/80842C1C72DF11F0BF649F91DAE4EC9C.roa
File: 80842C1C72DF11F0BF649F91DAE4EC9C.roa (raw, json)
Hash identifier: aZOMO0+Z7igI3PaEyE+67UEBIfUxAUFnCbsi9OnPJZU=
Subject key identifier: BD:44:1D:CA:CB:20:35:E1:ED:ED:2D:F6:2A:F1:27:0F:B7:DA:8D:03
Certificate issuer: /CN=F36F731FAF/serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Certificate serial: 02FF
Authority key identifier: F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/80842C1C72DF11F0BF649F91DAE4EC9C.roa
Signing time: Wed 06 Aug 2025 16:07:51 +0000
ROA not before: Wed 06 Aug 2025 16:07:46 +0000
ROA not after: Tue 06 Aug 2030 16:07:46 +0000
asID: 29571
IP address blocks: 102.208.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.mft
rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 767 (0x2ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F731FAF, serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Validity
Not Before: Aug 6 16:07:46 2025 GMT
Not After : Aug 6 16:07:46 2030 GMT
Subject: CN=68937dd7-6f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:41:99:47:8e:15:b7:0f:c2:01:6d:fc:74:57:
a5:89:a2:eb:28:78:00:72:d8:4f:07:86:2a:9b:be:
e9:b3:b4:c5:51:b5:98:bc:fa:f1:e2:e8:a5:ff:ed:
d2:e2:29:37:a5:9d:39:84:92:02:2d:a4:cf:33:d7:
a2:c9:6f:a6:c6:fa:1f:b3:b1:73:ec:20:be:73:4e:
4f:8f:a0:e8:f8:f1:df:72:d9:5d:99:a5:4d:63:c6:
72:a4:dd:b0:db:14:d4:74:55:fc:06:c6:0e:6a:82:
99:7a:b2:89:57:ad:5a:41:b2:33:1b:83:30:af:8a:
e8:ce:9e:49:24:7a:13:43:ea:8e:27:28:c0:68:4b:
f5:24:de:6f:bb:a1:4a:92:db:18:fd:0d:84:d3:c0:
2b:4f:7b:53:24:49:12:0c:75:d0:40:40:58:14:b1:
fc:c3:81:c4:56:06:98:5c:d0:8f:f8:81:8f:8d:c7:
1f:50:fa:5c:9e:5b:f2:e7:b1:cc:f2:01:f2:3a:d8:
84:4b:0a:e6:ea:59:75:24:3c:96:16:82:bf:86:37:
41:e0:cc:a7:55:f1:24:9e:76:d0:7a:ff:1a:61:47:
07:51:17:4f:7a:cc:75:22:33:8f:0c:76:d1:0c:5a:
28:46:d6:b8:4a:8a:25:cb:25:ae:4b:af:64:82:b9:
6e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:44:1D:CA:CB:20:35:E1:ED:ED:2D:F6:2A:F1:27:0F:B7:DA:8D:03
X509v3 Authority Key Identifier:
keyid:F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/80842C1C72DF11F0BF649F91DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.208.172.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:54:a6:1b:06:1a:16:9d:53:0a:6f:cf:05:45:d3:d8:89:52:
3e:97:2f:85:86:b6:af:f4:e5:11:3e:07:60:a2:03:73:33:5d:
c4:f0:0f:f5:d3:39:47:24:0d:28:df:b1:65:da:32:fa:cd:7c:
db:09:4d:54:f3:12:9f:26:e7:ed:93:fe:af:00:d8:8a:96:8d:
60:2e:64:87:9a:25:a7:69:e6:dc:23:12:52:f9:40:e5:78:fb:
9b:e8:ac:00:f8:f0:27:78:28:3b:da:27:2b:40:23:be:37:92:
6d:4e:af:29:fd:76:6e:2e:55:e4:42:7d:61:88:8b:58:0b:90:
c5:e9:b5:0a:2a:c2:dd:e4:07:62:54:2f:16:53:f8:cc:11:68:
94:81:dd:55:60:9b:8f:e1:6a:78:13:e2:48:eb:eb:9a:74:ff:
33:a2:ca:a9:ef:bf:62:6e:e4:fb:18:86:f1:3c:d1:59:5e:bd:
be:96:72:c6:05:cd:7b:dd:b3:92:c0:ef:81:ee:c8:8a:3d:99:
e6:99:a6:94:24:8d:1f:1d:9b:d3:0d:55:f3:71:75:fd:2b:8e:
21:14:08:32:43:e0:8c:75:97:8c:b1:c5:a8:11:94:8b:bf:95:
a3:85:40:5e:09:72:f2:56:fb:90:79:30:97:75:71:ae:52:49:
94:38:62:a5
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RjczMUZBRjExMC8GA1UEBRMoRjVDMEI2M0JBQTVFN0FGN0E0Mzg2QjYzN0ZEMTIw
NkEzNjgyRDBDMzAeFw0yNTA4MDYxNjA3NDZaFw0zMDA4MDYxNjA3NDZaMBgxFjAU
BgNVBAMTDTY4OTM3ZGQ3LTZmMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDUQZlHjhW3D8IBbfx0V6WJousoeABy2E8HhiqbvumztMVRtZi8+vHi6KX/
7dLiKTelnTmEkgItpM8z16LJb6bG+h+zsXPsIL5zTk+PoOj48d9y2V2ZpU1jxnKk
3bDbFNR0VfwGxg5qgpl6solXrVpBsjMbgzCviujOnkkkehND6o4nKMBoS/Uk3m+7
oUqS2xj9DYTTwCtPe1MkSRIMddBAQFgUsfzDgcRWBphc0I/4gY+Nxx9Q+lyeW/Ln
sczyAfI62IRLCubqWXUkPJYWgr+GN0HgzKdV8SSedtB6/xphRwdRF096zHUiM48M
dtEMWihG1rhKiiXLJa5Lr2SCuW7PAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUvUQd
yssgNeHt7S32KvEnD7fajQMwHwYDVR0jBBgwFoAU9cC2O6peevekOGtjf9EgajaC
0MMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkY3MzFGL0ExODdERjkyMzc5NzExRUVBNEM0OTgzMTRBRDlFNkZDLzljQzJP
NnBlZXZla09HdGpmOUVnYWphQzBNTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzljQzJPNnBlZXZla09HdGpmOUVnYWphQzBNTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkY3MzFGL0ExODdERjkyMzc5NzExRUVBNEM0OTgzMTRB
RDlFNkZDLzgwODQyQzFDNzJERjExRjBCRjY0OUY5MURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm0KwwDQYJKoZIhvcNAQEL
BQADggEBAA5UphsGGhadUwpvzwVF09iJUj6XL4WGtq/05RE+B2CiA3MzXcTwD/XT
OUckDSjfsWXaMvrNfNsJTVTzEp8m5+2T/q8A2IqWjWAuZIeaJadp5twjElL5QOV4
+5vorAD48Cd4KDvaJytAI743km1Oryn9dm4uVeRCfWGIi1gLkMXptQoqwt3kB2JU
LxZT+MwRaJSB3VVgm4/hangT4kjr65p0/zOiyqnvv2Ju5PsYhvE80Vlevb6WcsYF
zXvds5LA74HuyIo9meaZppQkjR8dm9MNVfNxdf0rjiEUCDJD4Ix1l4yxxagRlIu/
laOFQF4JcvJW+5B5MJd1ca5SSZQ4YqU=
-----END CERTIFICATE-----
Generated at Sat Aug 23 18:56:31 2025 by rpki-client