Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/4768ED5E2C0911F0B49BB296DAE4EC9C.roa
File: 4768ED5E2C0911F0B49BB296DAE4EC9C.roa (raw, json)
Hash identifier: JfyuCm+yo6tvIJJf4bmi9B75hqkTpM2MIb9GL0cW4fc=
Subject key identifier: 70:95:D2:46:4C:3B:02:AD:78:04:E1:51:9E:27:69:17:87:A9:25:BF
Certificate issuer: /CN=F3659F22AF/serialNumber=5556D637278A4D6987D448763BD3CAEBA058A50F
Certificate serial: 019B
Authority key identifier: 55:56:D6:37:27:8A:4D:69:87:D4:48:76:3B:D3:CA:EB:A0:58:A5:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/4768ED5E2C0911F0B49BB296DAE4EC9C.roa
Signing time: Thu 08 May 2025 12:38:02 +0000
ROA not before: Thu 08 May 2025 12:37:57 +0000
ROA not after: Sun 31 May 2026 12:37:57 +0000
asID: 37739
IP address blocks: 102.222.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.mft
rsync://rpki.afrinic.net/repository/afrinic/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:06:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 411 (0x19b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F22AF, serialNumber=5556D637278A4D6987D448763BD3CAEBA058A50F
Validity
Not Before: May 8 12:37:57 2025 GMT
Not After : May 31 12:37:57 2026 GMT
Subject: CN=681ca5aa-e635
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fa:7b:74:4a:60:44:ed:bc:e0:85:7f:41:d8:
e8:5a:e2:b3:3d:12:c0:f9:b8:6d:4f:a8:ec:d7:8e:
cb:51:5a:1e:77:b0:e4:d3:a0:1a:03:23:7f:ae:4e:
77:f5:36:1f:33:c5:32:dd:c7:b5:56:50:e1:34:a9:
db:b4:6e:13:a9:b9:09:01:1f:a6:9f:4b:e9:eb:8b:
35:a4:aa:66:fe:5b:42:37:6c:97:2b:66:dc:5f:93:
2a:f3:03:e7:b9:f7:41:85:af:85:f7:36:c4:df:bc:
b2:e3:09:be:de:10:8b:a1:07:ec:57:c8:62:a8:2e:
a6:a0:9f:4d:66:47:c6:b4:01:fe:66:4f:58:83:7d:
9b:0d:e4:0f:cf:d2:9a:52:55:d3:c7:0a:7b:23:b8:
9e:9a:a9:5a:f2:14:46:6c:51:43:b6:4a:c4:d5:c3:
a0:1f:66:31:77:7f:f4:0d:a5:83:c5:af:6f:44:68:
a4:d2:b7:72:1e:5e:2a:e3:9d:c5:57:bf:0c:8c:7a:
36:e2:59:5f:04:b7:7b:f2:66:fc:e6:0b:61:26:9d:
0d:e0:52:de:87:6c:37:a9:51:cc:ee:b2:c8:6b:e2:
7a:8e:a8:eb:b6:2b:89:e6:aa:aa:51:e9:41:11:ab:
ad:d4:02:94:e4:12:b2:61:99:6e:3b:ef:a8:c2:16:
da:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:95:D2:46:4C:3B:02:AD:78:04:E1:51:9E:27:69:17:87:A9:25:BF
X509v3 Authority Key Identifier:
keyid:55:56:D6:37:27:8A:4D:69:87:D4:48:76:3B:D3:CA:EB:A0:58:A5:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/VVbWNyeKTWmH1Eh2O9PK66BYpQ8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F22/9A0832F6FCAB11EEA6901B3D017001B1/4768ED5E2C0911F0B49BB296DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.156.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:7f:f8:72:96:be:2d:09:28:c6:d8:11:a4:5f:c7:7b:0a:fd:
b0:ae:b2:04:76:58:ba:6d:05:4c:e4:1d:87:67:71:86:23:92:
b6:ab:8f:56:62:be:10:56:c0:47:a7:70:c9:b5:14:43:a9:eb:
89:c2:6b:a1:90:ae:20:26:a8:e7:5c:f1:0c:62:7e:f5:7b:a5:
25:07:07:ab:d5:ba:19:ef:14:da:58:f5:0a:8f:69:3d:90:7e:
ee:4a:89:71:1b:00:c1:85:ba:13:a6:d4:de:16:8f:ba:25:7a:
72:b2:7f:da:ca:4a:9d:5d:d5:17:ea:04:04:04:00:07:0a:c6:
bf:87:39:f3:b5:b5:0b:ec:de:c0:4b:b8:39:f3:7b:86:80:3d:
10:b5:19:09:14:b4:ea:d6:b0:69:be:dc:61:99:dd:3f:18:a4:
60:da:33:bc:c8:d3:79:00:c2:98:88:56:fa:eb:f6:2f:c5:03:
ba:9e:9a:23:60:b5:71:80:1f:c7:d3:0b:86:11:2c:a8:bc:cc:
9b:50:82:76:48:92:49:b4:f7:43:16:c7:8b:9e:cd:4e:f0:e8:
82:94:16:f6:62:66:62:a6:fa:44:5b:f4:d5:d2:80:bd:cf:8f:
8c:98:c1:8f:01:38:57:e8:af:40:e5:76:d4:8c:60:28:1b:0c:
90:85:dc:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 09:29:15 2025 by rpki-client