Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/B185F28C72DF11F0A2456A95DAE4EC9C.roa
File: B185F28C72DF11F0A2456A95DAE4EC9C.roa (raw, json)
Hash identifier: JthSN0OOhvboQ7GailBpQ0PlPXIDL2fkxmvjlY0OCAE=
Subject key identifier: F6:A8:69:1D:84:A3:6B:38:E3:FA:88:AE:4D:A9:EA:5D:2A:E9:7A:E2
Certificate issuer: /CN=F36F731FAF/serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Certificate serial: 0301
Authority key identifier: F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/B185F28C72DF11F0A2456A95DAE4EC9C.roa
Signing time: Wed 06 Aug 2025 16:09:13 +0000
ROA not before: Wed 06 Aug 2025 16:09:08 +0000
ROA not after: Tue 06 Aug 2030 16:09:08 +0000
asID: 29571
IP address blocks: 102.209.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.mft
rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 769 (0x301)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F731FAF, serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Validity
Not Before: Aug 6 16:09:08 2025 GMT
Not After : Aug 6 16:09:08 2030 GMT
Subject: CN=68937e29-b1b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5e:06:73:53:2b:6d:3d:e8:c6:40:7d:4d:c4:
a9:96:cf:52:0f:37:f8:3e:df:0f:d8:e7:30:6a:13:
b6:70:19:66:04:e2:7d:b4:b3:86:02:a2:01:dd:cb:
ea:aa:27:d3:23:f8:d9:51:3a:51:0b:0b:68:27:6c:
8f:dd:99:2d:75:0d:b9:6c:e2:b8:af:46:be:8d:71:
83:07:91:07:fe:14:72:5b:32:e3:61:e0:2d:62:b6:
26:bd:5e:3a:79:42:c4:d7:44:64:5f:48:c1:ec:a7:
43:9f:b0:80:ca:77:22:1c:28:af:2c:51:10:7b:f7:
f0:5a:6d:e9:35:04:f0:2b:fa:24:11:73:c2:55:40:
26:91:13:a4:03:68:b5:df:21:60:8b:4a:60:0b:03:
6e:2c:5b:86:56:38:e2:5c:51:6c:ca:3a:60:d4:02:
79:94:42:dc:c8:d8:b4:3b:09:c6:85:2e:32:9a:31:
ab:0e:32:93:80:1c:a5:2c:10:d3:96:fb:2a:6e:3f:
82:31:bf:98:bc:a5:54:49:3a:1a:9d:3d:20:dd:f5:
cd:2d:4a:02:43:cf:b5:8f:ad:53:1d:b0:cf:22:9a:
00:bc:25:48:97:33:35:19:93:bd:a7:af:57:88:d2:
7f:ad:7c:36:17:6d:25:52:07:1e:88:29:61:fe:e0:
aa:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:A8:69:1D:84:A3:6B:38:E3:FA:88:AE:4D:A9:EA:5D:2A:E9:7A:E2
X509v3 Authority Key Identifier:
keyid:F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/B185F28C72DF11F0A2456A95DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.216.0/22
Signature Algorithm: sha256WithRSAEncryption
41:a0:4f:08:15:fd:8e:7d:6a:87:75:7e:71:6b:24:67:c7:9f:
f4:bd:5a:83:10:8c:12:a8:c3:73:dd:59:84:9b:3f:16:1d:49:
79:bc:4d:ed:a3:c3:24:12:3b:ca:53:7b:79:2b:7f:37:5a:26:
d0:73:7a:74:9f:16:ae:79:e5:02:70:be:44:0e:1a:4b:ab:29:
8e:6b:a1:1b:23:0c:0a:8c:91:f2:38:2c:67:12:f2:b8:81:b5:
c6:d3:33:54:51:8e:93:ac:ba:4d:a5:be:97:1d:ac:b2:f0:42:
22:4d:a7:63:ff:1a:84:8e:f9:04:c9:bb:e5:9b:e2:4f:44:59:
d9:e2:d4:cd:39:39:85:01:d9:b9:53:ac:45:31:d8:73:84:fb:
17:16:e4:4a:98:e2:e3:2a:aa:37:d3:17:93:7d:33:9d:7d:60:
0f:d8:8c:d2:4d:6f:71:a8:47:50:3c:a5:e3:c5:70:5a:23:30:
2c:73:8a:61:a1:9c:af:54:42:00:f7:49:89:b2:d6:a0:00:ed:
06:b8:e8:bc:3f:b2:8e:85:7e:b0:3c:bf:d3:65:24:62:c9:dc:
e8:78:92:a9:5a:b5:01:64:38:92:ca:11:84:77:04:1f:4d:06:
26:c3:04:aa:62:ac:a1:eb:27:9d:6f:fb:77:c3:de:7c:5a:24:
55:1d:e9:c7
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAwEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RjczMUZBRjExMC8GA1UEBRMoRjVDMEI2M0JBQTVFN0FGN0E0Mzg2QjYzN0ZEMTIw
NkEzNjgyRDBDMzAeFw0yNTA4MDYxNjA5MDhaFw0zMDA4MDYxNjA5MDhaMBgxFjAU
BgNVBAMTDTY4OTM3ZTI5LWIxYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDhXgZzUyttPejGQH1NxKmWz1IPN/g+3w/Y5zBqE7ZwGWYE4n20s4YCogHd
y+qqJ9Mj+NlROlELC2gnbI/dmS11Dbls4rivRr6NcYMHkQf+FHJbMuNh4C1itia9
Xjp5QsTXRGRfSMHsp0OfsIDKdyIcKK8sURB79/Babek1BPAr+iQRc8JVQCaRE6QD
aLXfIWCLSmALA24sW4ZWOOJcUWzKOmDUAnmUQtzI2LQ7CcaFLjKaMasOMpOAHKUs
ENOW+ypuP4Ixv5i8pVRJOhqdPSDd9c0tSgJDz7WPrVMdsM8imgC8JUiXMzUZk72n
r1eI0n+tfDYXbSVSBx6IKWH+4KrXAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU9qhp
HYSjazjj+oiuTanqXSrpeuIwHwYDVR0jBBgwFoAU9cC2O6peevekOGtjf9EgajaC
0MMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkY3MzFGL0ExODdERjkyMzc5NzExRUVBNEM0OTgzMTRBRDlFNkZDLzljQzJP
NnBlZXZla09HdGpmOUVnYWphQzBNTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljLzljQzJPNnBlZXZla09HdGpmOUVnYWphQzBNTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkY3MzFGL0ExODdERjkyMzc5NzExRUVBNEM0OTgzMTRB
RDlFNkZDL0IxODVGMjhDNzJERjExRjBBMjQ1NkE5NURBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJm0dgwDQYJKoZIhvcNAQEL
BQADggEBAEGgTwgV/Y59aod1fnFrJGfHn/S9WoMQjBKow3PdWYSbPxYdSXm8Te2j
wyQSO8pTe3krfzdaJtBzenSfFq555QJwvkQOGkurKY5roRsjDAqMkfI4LGcS8riB
tcbTM1RRjpOsuk2lvpcdrLLwQiJNp2P/GoSO+QTJu+Wb4k9EWdni1M05OYUB2blT
rEUx2HOE+xcW5EqY4uMqqjfTF5N9M519YA/YjNJNb3GoR1A8pePFcFojMCxzimGh
nK9UQgD3SYmy1qAA7Qa46Lw/so6FfrA8v9NlJGLJ3Oh4kqlatQFkOJLKEYR3BB9N
BibDBKpirKHrJ51v+3fD3nxaJFUd6cc=
-----END CERTIFICATE-----
Generated at Sat Aug 23 16:11:17 2025 by rpki-client