Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/9DC8C2C82CAE11F085B92DEADAE4EC9C.roa
File: 9DC8C2C82CAE11F085B92DEADAE4EC9C.roa (raw, json)
Hash identifier: s4BJx/7blgbPVpMP6/xtoHDTm3C4tHe27u7Cb4Hry2k=
Subject key identifier: 70:64:24:72:24:AC:CF:C7:71:16:F7:9D:AD:27:B1:F8:1D:6D:16:C8
Certificate issuer: /CN=F364791EAF/serialNumber=292584A1ECFE2AF309322D72E62D8D5C6A5EF7AF
Certificate serial: 02A6
Authority key identifier: 29:25:84:A1:EC:FE:2A:F3:09:32:2D:72:E6:2D:8D:5C:6A:5E:F7:AF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/KSWEoez-KvMJMi1y5i2NXGpe968.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/9DC8C2C82CAE11F085B92DEADAE4EC9C.roa
Signing time: Fri 09 May 2025 08:21:34 +0000
ROA not before: Fri 09 May 2025 08:21:29 +0000
ROA not after: Fri 11 May 2035 08:21:29 +0000
asID: 329206
IP address blocks: 102.207.60.0/22 maxlen: 24
102.209.20.0/22 maxlen: 24
102.213.4.0/22 maxlen: 24
2c0f:7580::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/KSWEoez-KvMJMi1y5i2NXGpe968.crl
rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/KSWEoez-KvMJMi1y5i2NXGpe968.mft
rsync://rpki.afrinic.net/repository/afrinic/KSWEoez-KvMJMi1y5i2NXGpe968.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 15 May 2025 03:58:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 678 (0x2a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F364791EAF, serialNumber=292584A1ECFE2AF309322D72E62D8D5C6A5EF7AF
Validity
Not Before: May 9 08:21:29 2025 GMT
Not After : May 11 08:21:29 2035 GMT
Subject: CN=681dbb0d-2e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:69:c4:5f:8d:ec:f3:de:01:55:09:31:e9:64:
35:df:43:f4:a5:5f:e1:49:cb:b2:91:41:24:f3:d7:
72:20:64:2e:b6:fb:e7:98:59:a9:56:ae:44:1d:32:
9b:48:ab:b2:4a:f8:4e:0e:6c:e1:fe:72:df:86:4d:
79:ae:b6:c1:cb:95:c9:7f:30:ab:44:65:4e:8e:0d:
0c:38:4a:88:46:e2:55:3e:9c:be:4c:c7:de:b1:2b:
8f:af:e9:43:aa:53:6f:b5:63:38:ea:ac:74:65:bc:
0c:98:77:9a:c2:4f:72:30:6e:1b:64:f4:b9:23:dd:
47:71:07:4b:10:ad:24:81:87:24:ff:df:31:ff:6b:
34:0d:8e:41:e6:2f:88:4f:8e:ba:b1:70:6c:8d:d5:
27:78:44:8d:7f:56:ff:e7:b4:31:7a:49:c0:28:cd:
2a:a5:ae:c3:52:e7:60:b6:83:24:19:d8:d2:af:91:
eb:ed:07:4e:e1:80:8b:1a:68:bf:b2:1e:8d:47:2a:
be:e7:b2:1f:52:70:04:19:2e:59:33:8e:d0:60:ed:
6c:77:06:b9:c8:8a:cf:dc:3d:e9:1d:69:32:86:0a:
34:cb:48:82:4b:1c:b0:9a:2e:ea:0d:85:bd:ee:f4:
56:98:25:6f:9f:1f:e4:8b:d2:94:89:96:4a:28:bf:
bc:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:64:24:72:24:AC:CF:C7:71:16:F7:9D:AD:27:B1:F8:1D:6D:16:C8
X509v3 Authority Key Identifier:
keyid:29:25:84:A1:EC:FE:2A:F3:09:32:2D:72:E6:2D:8D:5C:6A:5E:F7:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/KSWEoez-KvMJMi1y5i2NXGpe968.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/KSWEoez-KvMJMi1y5i2NXGpe968.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F364791E/7EC3F6362F8511EEA83976724AD9E6FC/9DC8C2C82CAE11F085B92DEADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.207.60.0/22
102.209.20.0/22
102.213.4.0/22
IPv6:
2c0f:7580::/32
Signature Algorithm: sha256WithRSAEncryption
0b:eb:60:1f:78:ba:17:e4:05:2c:30:8c:fe:7c:e6:d7:c5:d4:
f9:90:e9:b2:28:7e:13:81:6b:f6:a3:89:af:72:ac:d4:06:b0:
ca:dd:57:76:e3:93:33:76:7d:4b:c7:e8:80:33:69:02:10:09:
56:fa:21:ef:20:cc:23:aa:05:d4:1e:ba:54:07:f1:4c:0d:bf:
89:8c:ab:25:2f:ff:84:1c:39:3a:60:05:c7:a0:25:ee:9a:66:
48:ae:97:ab:cc:96:85:97:a4:34:4a:55:71:4a:8d:a0:5c:55:
d8:b8:bb:58:97:5d:bb:78:a0:f7:d9:76:37:2a:9f:c9:38:6a:
a6:c4:30:d4:a3:e5:23:c3:8c:42:01:b1:50:ac:e7:4e:17:3a:
2a:16:d0:c0:f5:42:fe:7a:89:e6:7f:a4:a1:3c:86:22:cd:8f:
73:55:d3:c0:6f:c1:4c:e6:c8:5e:54:a7:94:79:84:0c:39:d7:
e2:69:86:28:af:df:9c:cb:b9:8e:f7:01:ef:34:80:be:f2:32:
4e:c9:1a:66:21:9a:1f:89:84:18:a7:4a:42:5c:f8:5d:2a:3c:
b2:20:0a:c0:f6:b3:a5:ee:6b:d1:53:a4:d8:79:95:54:5f:c5:
f2:3a:aa:01:17:f5:f6:60:12:36:43:74:11:99:cd:c1:58:8b:
93:4a:15:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 05:56:05 2025 by rpki-client