Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/738BAA144E9811F0A9D2BB89DAE4EC9C.roa
File: 738BAA144E9811F0A9D2BB89DAE4EC9C.roa (raw, json)
Hash identifier: ck6Hfa9o+rOyWD/476KdJpzgAepi3ZyVmrVELgOsXy8=
Subject key identifier: AF:A6:CA:B8:FC:57:C5:2F:3A:DB:C2:F7:C7:56:31:C7:D0:81:A7:1C
Certificate issuer: /CN=F3644FF0AF/serialNumber=E89EFE351E60252A26256D8DEE8F69E7724CAD5A
Certificate serial: 03B2
Authority key identifier: E8:9E:FE:35:1E:60:25:2A:26:25:6D:8D:EE:8F:69:E7:72:4C:AD:5A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/738BAA144E9811F0A9D2BB89DAE4EC9C.roa
Signing time: Sat 21 Jun 2025 12:08:33 +0000
ROA not before: Sat 21 Jun 2025 12:08:29 +0000
ROA not after: Sun 29 Mar 2026 12:08:29 +0000
asID: 329027
IP address blocks: 102.223.156.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.mft
rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Jul 2025 00:06:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 946 (0x3b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3644FF0AF, serialNumber=E89EFE351E60252A26256D8DEE8F69E7724CAD5A
Validity
Not Before: Jun 21 12:08:29 2025 GMT
Not After : Mar 29 12:08:29 2026 GMT
Subject: CN=6856a0c1-5b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:52:80:dc:11:64:ce:af:c5:f7:cb:9c:bc:d0:
3d:ea:a6:1b:1a:d6:43:d8:87:6b:38:7a:2a:0e:8e:
a1:15:6d:71:cd:1e:45:7e:a7:46:dd:39:c1:27:22:
aa:6a:40:40:2d:e0:4f:d3:ec:34:39:db:d8:4d:41:
ae:12:16:59:35:b2:c7:11:0b:5c:11:eb:2f:91:eb:
c8:e5:67:f1:8e:82:ab:e1:90:68:6b:46:24:a5:48:
42:13:ac:72:8c:9f:94:ee:27:6f:48:3c:71:65:93:
1f:07:07:32:19:38:d4:b6:cb:9c:cc:fb:ff:98:1d:
5c:f2:c2:3f:78:d1:90:50:af:bd:04:86:ac:71:c9:
00:ea:d9:9d:e3:92:16:e3:d2:4b:87:57:2d:31:99:
40:c7:20:68:6b:cc:66:b1:78:3c:05:53:78:77:7b:
b2:94:18:aa:53:54:20:89:d3:51:4a:a7:dc:20:96:
96:81:81:46:ff:d1:1a:d0:0d:54:bb:5a:fd:49:c3:
b6:cd:8e:f6:fd:59:74:30:c9:4e:11:e3:f8:b4:3a:
72:2c:2e:87:8c:27:b7:f7:15:a7:c2:fb:3f:ad:2c:
bd:1e:f1:e0:0d:65:8c:0b:8b:69:53:47:10:c6:b6:
fd:2c:d0:ff:b0:e8:9e:31:b4:d4:29:d4:a9:9e:66:
5f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A6:CA:B8:FC:57:C5:2F:3A:DB:C2:F7:C7:56:31:C7:D0:81:A7:1C
X509v3 Authority Key Identifier:
keyid:E8:9E:FE:35:1E:60:25:2A:26:25:6D:8D:EE:8F:69:E7:72:4C:AD:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/738BAA144E9811F0A9D2BB89DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.156.0/22
Signature Algorithm: sha256WithRSAEncryption
65:fd:07:48:2e:76:7d:72:35:24:43:14:a5:b3:98:60:0b:08:
00:96:33:95:8b:63:12:5a:0d:07:07:08:50:2c:c9:2d:d7:0d:
65:c6:5c:50:5d:19:ac:71:bd:33:cb:cd:2b:29:82:12:5e:c4:
de:be:0b:71:0a:a2:5c:01:9c:e5:ed:a1:68:1a:c8:65:bc:e6:
76:a0:80:36:55:87:fd:ae:73:1c:a1:78:aa:2f:92:e0:02:bd:
32:7c:e0:29:d3:f4:e9:e3:12:41:5d:f7:b8:34:88:59:be:4c:
18:66:7b:64:fd:d9:1f:81:30:9a:32:26:8f:48:b6:1d:3c:25:
07:4e:e8:c5:29:7c:f9:8a:91:72:f2:98:c4:68:53:03:c9:14:
0e:0a:54:f5:19:62:fd:f5:58:d8:a2:93:bb:8b:32:0f:85:0e:
7e:75:7e:3d:d6:fc:de:d8:aa:88:eb:41:29:c4:a3:6f:99:05:
14:ab:ab:4b:5a:8e:36:62:fa:75:42:4d:0e:12:ee:86:2a:a2:
a2:68:2e:56:42:bd:b1:36:45:d8:a1:3a:e2:d3:29:e1:d7:a6:
a6:2d:6d:46:f5:02:3e:5a:4d:80:00:5e:c3:da:37:b6:12:70:
d8:40:ff:1e:b8:8f:41:fd:7c:d3:3a:a8:58:7c:5d:44:a9:e1:
2c:4b:ca:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 10:14:36 2025 by rpki-client