Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3672E90/D779C03273A511ECA57469985A40D577/6A99DE584E7011F08BE3C38ADAE4EC9C.roa
File: 6A99DE584E7011F08BE3C38ADAE4EC9C.roa (raw, json)
Hash identifier: XsWgln8vG4e/xqc9ncPsPEMbepHsGpN9yBMj9MFLOwI=
Subject key identifier: 10:CE:00:C1:55:19:66:B3:AE:D5:96:EC:25:5C:29:39:6D:88:58:1E
Certificate issuer: /CN=F3672E90AF/serialNumber=F4738B6A78023918807437FA1907C4CAD7293EF9
Certificate serial: 0510
Authority key identifier: F4:73:8B:6A:78:02:39:18:80:74:37:FA:19:07:C4:CA:D7:29:3E:F9
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9HOLangCORiAdDf6GQfEytcpPvk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3672E90/D779C03273A511ECA57469985A40D577/6A99DE584E7011F08BE3C38ADAE4EC9C.roa
Signing time: Sat 21 Jun 2025 07:21:58 +0000
ROA not before: Sat 21 Jun 2025 07:21:54 +0000
ROA not after: Mon 31 Dec 2035 07:21:54 +0000
asID: 328961
IP address blocks: 102.217.84.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3672E90/D779C03273A511ECA57469985A40D577/9HOLangCORiAdDf6GQfEytcpPvk.crl
rsync://rpki.afrinic.net/repository/member_repository/F3672E90/D779C03273A511ECA57469985A40D577/9HOLangCORiAdDf6GQfEytcpPvk.mft
rsync://rpki.afrinic.net/repository/afrinic/9HOLangCORiAdDf6GQfEytcpPvk.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Jul 2025 02:45:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1296 (0x510)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3672E90AF, serialNumber=F4738B6A78023918807437FA1907C4CAD7293EF9
Validity
Not Before: Jun 21 07:21:54 2025 GMT
Not After : Dec 31 07:21:54 2035 GMT
Subject: CN=68565d96-36e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c7:7f:6d:c3:79:d2:54:1d:9c:f3:30:f5:57:
e4:e1:f2:db:b0:36:42:24:6f:66:c5:c1:8f:b3:8f:
f0:17:50:0a:49:94:29:a1:80:39:99:c5:82:58:2e:
13:df:4b:61:3b:7e:2d:52:0a:07:ec:eb:e0:a7:1e:
10:d9:0d:4e:87:72:fe:89:16:79:a8:7d:86:44:c1:
53:b7:81:58:c2:49:5d:f2:ae:a4:e6:ee:1c:68:cf:
61:1e:c9:de:74:c4:cf:54:4a:a9:5f:e7:25:0b:5a:
68:50:bf:c8:d7:e3:16:28:d9:3b:6a:22:17:da:b4:
c2:d0:fc:b3:1e:e4:85:3f:ee:66:2f:f3:ff:d2:a7:
2e:8b:65:2a:ea:9f:ed:e1:84:5a:14:2a:58:f5:94:
fd:6e:bc:d9:ae:94:08:35:eb:a7:7d:ab:a3:93:08:
ad:1b:88:f3:3b:4b:37:c9:5b:d7:30:3a:4a:8e:c3:
e0:11:ad:6e:34:6b:63:96:be:7f:0a:c0:e4:b3:9c:
e1:98:75:e7:ba:7b:97:43:fd:92:f9:d4:fc:5b:ae:
76:a9:31:0e:c5:af:92:45:07:80:21:2b:1d:9a:5d:
a0:a0:4b:1a:41:29:60:a5:e3:70:16:95:db:b9:13:
fb:ca:5d:89:5a:46:13:28:1b:47:3c:50:40:d8:ee:
8d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CE:00:C1:55:19:66:B3:AE:D5:96:EC:25:5C:29:39:6D:88:58:1E
X509v3 Authority Key Identifier:
keyid:F4:73:8B:6A:78:02:39:18:80:74:37:FA:19:07:C4:CA:D7:29:3E:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3672E90/D779C03273A511ECA57469985A40D577/9HOLangCORiAdDf6GQfEytcpPvk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9HOLangCORiAdDf6GQfEytcpPvk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3672E90/D779C03273A511ECA57469985A40D577/6A99DE584E7011F08BE3C38ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.84.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:4d:ca:ae:f6:a7:48:19:90:11:b9:92:5a:96:41:9a:95:44:
aa:10:f3:f0:f2:87:29:11:e1:94:6f:74:5f:97:83:4a:cb:32:
a0:73:a8:ec:9b:e2:8d:de:47:e9:af:28:7a:23:d0:43:31:26:
2b:ed:90:6c:c0:ef:b3:27:d0:81:bd:03:ce:32:a5:36:a0:e3:
03:84:ee:f8:36:b0:d9:fd:1f:34:19:f3:98:33:01:9d:e2:89:
13:2a:c5:97:bb:0a:4b:f8:9d:34:5a:6e:07:38:0a:f5:fd:18:
1c:8c:95:28:e8:50:69:49:ab:cf:21:10:eb:7e:e9:09:55:08:
a4:15:2b:ef:aa:5c:50:1f:82:cc:62:5f:4c:b3:cd:c6:68:33:
9f:46:72:63:e0:c0:42:28:e7:41:19:4e:04:eb:44:a6:9e:a5:
e4:15:cb:1b:a7:fa:de:07:b6:0a:6c:5c:c2:07:de:f6:22:e3:
69:61:1e:5e:f4:5c:2b:e9:67:be:17:35:c5:07:27:70:b1:6a:
81:60:41:2f:eb:a6:a1:c7:a9:fd:22:24:41:b1:1b:41:db:44:
10:5f:c7:dd:e8:cf:ee:6e:30:e5:3c:3e:ba:b9:c7:b2:b2:f9:
88:d3:76:2c:09:e2:c2:65:a6:c2:19:01:2c:9e:95:e5:16:ad:
1b:70:c1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 23:09:35 2025 by rpki-client