Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/85CD27B24E9711F09324FC84DAE4EC9C.roa
File: 85CD27B24E9711F09324FC84DAE4EC9C.roa (raw, json)
Hash identifier: MJo/Fmjp6Om1z6KmVpCasQfCype9BDqhT5uExmuvCzs=
Subject key identifier: F4:FC:8F:67:DA:8D:13:F0:D1:CD:53:AD:0B:35:93:67:DD:A7:64:F3
Certificate issuer: /CN=F3644FF0AF/serialNumber=E89EFE351E60252A26256D8DEE8F69E7724CAD5A
Certificate serial: 03AD
Authority key identifier: E8:9E:FE:35:1E:60:25:2A:26:25:6D:8D:EE:8F:69:E7:72:4C:AD:5A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/85CD27B24E9711F09324FC84DAE4EC9C.roa
Signing time: Sat 21 Jun 2025 12:01:54 +0000
ROA not before: Sat 21 Jun 2025 12:01:49 +0000
ROA not after: Mon 30 Mar 2026 12:01:49 +0000
asID: 37284
IP address blocks: 102.223.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.mft
rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 00:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 941 (0x3ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3644FF0AF, serialNumber=E89EFE351E60252A26256D8DEE8F69E7724CAD5A
Validity
Not Before: Jun 21 12:01:49 2025 GMT
Not After : Mar 30 12:01:49 2026 GMT
Subject: CN=68569f32-7e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c9:77:dd:d1:9a:fe:cd:ea:6e:79:26:db:b7:
b9:99:e0:56:25:20:3e:fe:5a:7d:00:25:09:18:2d:
67:23:1e:73:32:6a:7b:9d:2f:0f:b2:63:00:b3:f4:
6c:7b:89:3c:97:df:c7:e8:cd:83:0b:15:9f:16:54:
1e:46:ad:80:a2:31:2b:d7:1c:a3:1f:a9:cd:cd:c9:
18:8f:15:d6:64:db:33:72:18:13:28:82:cb:09:ea:
63:ee:f5:b3:12:57:15:bf:e8:ac:4a:dc:ac:f7:67:
d4:95:fc:a5:34:ca:9c:cf:d1:4d:e8:ea:7d:a6:a1:
7a:3d:2d:db:87:4e:1b:71:9d:5f:e4:a6:34:27:0b:
be:c6:d4:41:06:33:83:22:7e:02:58:8a:3c:c3:b9:
22:e2:15:96:72:20:f5:cf:c7:c8:9f:3c:6e:64:76:
fa:57:86:9e:83:24:f8:cf:b4:ca:29:cc:5d:50:e7:
31:b7:c2:cd:a9:16:13:6e:54:11:da:13:06:57:28:
6d:43:2c:ac:23:4c:14:80:1f:cb:fb:95:bb:6f:2f:
18:9c:c9:50:c6:22:21:ac:2f:41:b4:58:11:77:19:
1d:16:f6:06:6d:92:b8:d1:dd:9a:78:07:99:58:a6:
39:c9:2d:aa:97:9a:bb:7a:11:09:ba:b7:cc:11:bf:
8e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:FC:8F:67:DA:8D:13:F0:D1:CD:53:AD:0B:35:93:67:DD:A7:64:F3
X509v3 Authority Key Identifier:
keyid:E8:9E:FE:35:1E:60:25:2A:26:25:6D:8D:EE:8F:69:E7:72:4C:AD:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/6J7-NR5gJSomJW2N7o9p53JMrVo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/6J7-NR5gJSomJW2N7o9p53JMrVo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3644FF0/745F62409B4511ED93C950AEF1222468/85CD27B24E9711F09324FC84DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.223.159.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:09:0b:85:7e:ee:f9:af:b4:c6:78:86:b0:c5:01:18:a1:dc:
82:ff:bc:5a:5c:6b:ed:50:c3:04:5e:b7:92:0f:b1:0c:16:19:
47:5d:af:b5:d2:84:54:be:2b:fc:4f:2d:be:5e:b9:1f:ce:63:
60:63:5c:5b:b4:4e:e9:87:93:0a:ab:d5:01:1a:db:87:36:8f:
c9:bd:b5:7c:ad:39:8a:bd:da:a1:f3:89:85:5f:8b:45:2d:c9:
e7:e2:ba:0a:44:f4:0e:c0:fd:49:cd:83:dd:86:de:3b:1d:1c:
81:93:31:d8:fb:0b:88:07:ae:8c:24:32:3c:6e:82:40:81:2a:
93:38:30:ff:1b:8f:c4:b1:e5:62:6c:b4:7f:51:17:53:b8:5a:
bc:b8:ef:3b:ef:3a:ab:9c:4a:76:ac:9c:36:5f:12:e2:46:26:
53:b0:70:92:bc:d0:4f:cd:c5:57:99:b2:4c:5d:bc:33:60:8d:
29:25:1c:19:4c:61:48:ac:ee:38:3b:42:45:99:ff:7e:e5:07:
9a:71:1a:c4:d2:25:2b:7b:4b:ca:44:a5:f1:2e:76:d1:e2:f6:
57:8b:b6:a7:9a:4c:cd:38:c6:8c:76:ce:1d:15:ae:94:25:d2:
b5:4b:d5:7b:46:21:e3:60:59:6b:7c:96:d4:7f:45:3b:c3:8f:
7f:74:74:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 06:52:16 2025 by rpki-client