Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365FABE/1D3B5B38534211F097EA85DADAE4EC9C/5BFC886CA43A11F09DF5B99FDAE4EC9C.roa
File: 5BFC886CA43A11F09DF5B99FDAE4EC9C.roa (raw, json)
Hash identifier: qRzDlU/qHUyC2u1ZlXfDmCut9uXsJqNgW766/Y6J1Zk=
Subject key identifier: DF:40:56:BC:4B:57:BF:AA:4C:A1:69:75:28:52:FA:07:F4:A5:A2:7F
Certificate issuer: /CN=F365FABEAF/serialNumber=325EE3B250B9C682BFB020B336CBA289E1BCD230
Certificate serial: 6B
Authority key identifier: 32:5E:E3:B2:50:B9:C6:82:BF:B0:20:B3:36:CB:A2:89:E1:BC:D2:30
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Ml7jslC5xoK_sCCzNsuiieG80jA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365FABE/1D3B5B38534211F097EA85DADAE4EC9C/5BFC886CA43A11F09DF5B99FDAE4EC9C.roa
Signing time: Wed 08 Oct 2025 11:31:41 +0000
ROA not before: Wed 08 Oct 2025 11:31:26 +0000
ROA not after: Mon 26 Oct 2026 11:31:26 +0000
asID: 37453
IP address blocks: 2c0f:f558::/32 maxlen: 128
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365FABE/1D3B5B38534211F097EA85DADAE4EC9C/Ml7jslC5xoK_sCCzNsuiieG80jA.crl
rsync://rpki.afrinic.net/repository/member_repository/F365FABE/1D3B5B38534211F097EA85DADAE4EC9C/Ml7jslC5xoK_sCCzNsuiieG80jA.mft
rsync://rpki.afrinic.net/repository/afrinic/Ml7jslC5xoK_sCCzNsuiieG80jA.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107 (0x6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365FABEAF, serialNumber=325EE3B250B9C682BFB020B336CBA289E1BCD230
Validity
Not Before: Oct 8 11:31:26 2025 GMT
Not After : Oct 26 11:31:26 2026 GMT
Subject: CN=68e64b9d-c5cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0f:cd:63:76:d5:66:72:e9:27:30:5e:25:18:
69:c2:63:9d:72:dd:dc:e1:29:6b:27:13:ff:9d:d8:
7e:d6:5e:5b:fb:fa:64:c9:04:74:8d:9c:95:f2:31:
a4:67:07:43:84:f4:62:ec:30:ab:b2:83:ac:dd:88:
21:a9:72:0a:67:60:f0:23:11:85:b6:8c:07:89:a9:
bf:a0:5f:1d:58:38:d2:05:67:58:67:b8:21:2f:2f:
21:cc:37:9b:af:ae:17:6a:30:0b:68:08:28:6a:7b:
31:d6:2c:c5:64:12:b7:b7:bd:70:8f:fb:1a:a5:8c:
78:a4:c8:aa:31:f5:4f:fb:7d:27:b1:fd:31:d2:e0:
8a:85:c1:79:f0:0b:cf:df:0c:6d:49:44:ec:9f:8a:
2a:a8:ae:de:a8:65:8a:03:96:cf:ca:02:b7:2c:ba:
c1:0f:6f:5c:60:aa:67:bb:34:42:05:3d:0b:49:82:
06:d2:2d:a8:b9:50:2c:0a:69:8e:b2:d5:f1:67:24:
ae:7a:a8:75:fd:1b:2e:89:fb:dc:2b:6c:62:08:8f:
79:c6:97:b1:69:41:a4:1e:32:0a:42:15:6a:27:e6:
96:b0:bd:35:c8:56:9d:e7:37:3e:28:05:d0:87:5e:
bb:c1:20:c3:d5:f8:69:54:47:01:ea:cf:13:93:0a:
de:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:40:56:BC:4B:57:BF:AA:4C:A1:69:75:28:52:FA:07:F4:A5:A2:7F
X509v3 Authority Key Identifier:
keyid:32:5E:E3:B2:50:B9:C6:82:BF:B0:20:B3:36:CB:A2:89:E1:BC:D2:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365FABE/1D3B5B38534211F097EA85DADAE4EC9C/Ml7jslC5xoK_sCCzNsuiieG80jA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Ml7jslC5xoK_sCCzNsuiieG80jA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365FABE/1D3B5B38534211F097EA85DADAE4EC9C/5BFC886CA43A11F09DF5B99FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f558::/32
Signature Algorithm: sha256WithRSAEncryption
d0:c1:74:dd:19:a6:c3:7f:6c:ba:90:f2:ec:5a:54:fe:4c:28:
d6:29:a6:e8:31:dc:ad:eb:fa:14:a8:73:59:83:2e:16:c8:03:
b0:9f:a5:1b:69:d9:9f:3b:57:d6:4a:74:df:cb:35:bb:23:62:
0d:27:a0:f5:69:23:7a:91:9e:ac:d4:1b:9d:3d:d4:ca:72:96:
23:ac:d9:d5:fe:86:7b:46:b2:74:52:66:ea:b0:42:07:af:e8:
73:ec:51:c6:e7:0e:60:c6:0a:6d:ab:3c:19:e3:eb:7e:6a:20:
06:37:07:7f:0f:6b:81:bf:2b:a3:4e:0b:90:a5:f1:d7:9d:d4:
d7:85:90:5a:42:2e:1a:11:cc:15:e3:f0:6c:34:c8:69:eb:d9:
3c:5b:63:99:aa:fe:f9:a2:68:32:f7:8c:4b:fc:18:82:bd:31:
0f:bb:9b:83:f6:44:c2:77:ab:69:af:02:fb:59:7e:bf:c2:c1:
dc:08:97:6b:8c:fd:05:5f:c7:24:13:84:e1:04:3b:09:75:ae:
e5:e1:59:79:16:fd:ec:06:17:cb:02:1b:2f:a2:09:30:cf:b3:
2f:29:29:4e:79:9c:72:38:97:f7:66:72:d4:f2:cb:15:a5:aa:
c7:18:35:7c:0e:fb:a8:07:da:51:a1:93:82:0e:21:16:e1:ee:
b7:5a:c3:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 19:39:23 2025 by rpki-client