Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/5391E35A514E11F0B3FBEA9BDAE4EC9C.roa
File: 5391E35A514E11F0B3FBEA9BDAE4EC9C.roa (raw, json)
Hash identifier: FgqtDyexUlItVpAKSV/WBoPJSeqrXF4SEH2sFDGm9KI=
Subject key identifier: CA:DB:2F:CC:4F:2A:17:8E:65:8D:17:BE:6B:9E:27:6E:AA:13:22:8A
Certificate issuer: /CN=F36877BBAF/serialNumber=0DC6A4C82109FF2CB39C1D1A58C38E3033C5A0FE
Certificate serial: 01E4
Authority key identifier: 0D:C6:A4:C8:21:09:FF:2C:B3:9C:1D:1A:58:C3:8E:30:33:C5:A0:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/DcakyCEJ_yyznB0aWMOOMDPFoP4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/5391E35A514E11F0B3FBEA9BDAE4EC9C.roa
Signing time: Tue 24 Jun 2025 22:55:30 +0000
ROA not before: Tue 24 Jun 2025 22:55:26 +0000
ROA not after: Fri 01 Jun 2035 22:55:26 +0000
asID: 328721
IP address blocks: 2c0f:7840::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/DcakyCEJ_yyznB0aWMOOMDPFoP4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/DcakyCEJ_yyznB0aWMOOMDPFoP4.mft
rsync://rpki.afrinic.net/repository/afrinic/DcakyCEJ_yyznB0aWMOOMDPFoP4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 04:35:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 484 (0x1e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36877BBAF, serialNumber=0DC6A4C82109FF2CB39C1D1A58C38E3033C5A0FE
Validity
Not Before: Jun 24 22:55:26 2025 GMT
Not After : Jun 1 22:55:26 2035 GMT
Subject: CN=685b2ce2-8b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:91:a7:82:64:e1:0e:3e:15:11:67:35:4c:a9:
80:3a:f6:33:71:76:fe:4a:c6:5a:86:ba:72:94:98:
f4:9b:ab:ff:c1:5f:4d:0a:09:24:a9:e8:f5:81:17:
53:58:2a:6d:ed:1e:fa:33:a6:5d:c8:3c:41:36:28:
88:e6:75:82:b7:00:4f:e8:85:f1:0a:9c:d9:0b:91:
92:7d:65:ce:42:2d:d7:4b:4f:66:b4:a1:c5:a2:12:
b7:6f:5e:93:39:72:d0:ef:28:48:16:25:aa:0b:be:
0b:a9:1c:8d:36:a1:e4:54:2b:98:47:fa:cb:f5:76:
2a:fa:c8:81:62:4e:ad:51:87:69:16:74:58:1d:2b:
65:35:c6:ac:d2:d3:83:17:89:a8:dc:3b:ed:a0:c8:
08:57:28:29:d1:ea:f8:cf:45:a4:9b:8e:4b:4c:96:
59:15:b4:6b:76:d1:52:29:1c:e7:2d:5a:61:e8:bb:
bb:b8:7d:8d:c5:a0:df:d5:a6:0a:c9:2c:c9:02:39:
32:ef:6e:07:ec:9e:0a:2e:a2:00:da:ec:4e:a6:37:
81:90:6d:78:de:19:d4:57:36:2e:2d:8e:99:bc:10:
15:7b:09:d8:b2:0e:0d:f7:0b:bd:2b:20:3f:05:c2:
6f:62:fc:17:15:69:13:74:35:33:94:df:b7:78:14:
e5:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:DB:2F:CC:4F:2A:17:8E:65:8D:17:BE:6B:9E:27:6E:AA:13:22:8A
X509v3 Authority Key Identifier:
keyid:0D:C6:A4:C8:21:09:FF:2C:B3:9C:1D:1A:58:C3:8E:30:33:C5:A0:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/DcakyCEJ_yyznB0aWMOOMDPFoP4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/DcakyCEJ_yyznB0aWMOOMDPFoP4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/5391E35A514E11F0B3FBEA9BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:7840::/32
Signature Algorithm: sha256WithRSAEncryption
1a:99:cc:c1:5b:20:ed:51:85:64:9d:87:95:0d:d6:8d:82:62:
59:4a:2e:1f:56:58:20:d1:5e:e3:d1:3c:3c:e8:30:5e:72:cd:
e3:f8:7a:15:a4:c3:3f:0e:df:20:97:0e:50:c2:7c:ec:e8:2d:
73:7e:c1:24:8e:81:c0:a5:9f:d0:ad:38:53:bb:cd:11:a1:45:
f0:fe:8c:41:1b:38:f3:03:04:3a:68:a2:80:e6:a9:34:10:63:
ab:72:66:3d:0e:32:59:f6:97:b6:8f:82:4b:7d:fc:ee:3e:94:
c3:1d:07:f4:ca:0c:28:3f:61:26:f3:c2:c6:c3:f5:0b:85:1e:
cc:c5:75:e9:0a:d9:25:38:87:a2:49:70:a0:a6:66:2d:53:b9:
c0:bb:49:86:f1:1c:d5:09:0d:05:e5:ef:87:b4:82:c5:5b:0d:
bd:ac:71:c6:f3:92:3c:38:f5:c7:c6:4f:cd:88:31:ef:8e:ea:
d0:98:d1:de:55:9a:c4:3d:19:70:1d:86:84:22:d2:2f:39:8b:
df:c1:c9:b8:3a:24:86:04:82:b8:7f:c3:d3:8d:47:6e:4d:da:
d3:f6:b5:f7:e8:dd:7f:ce:39:2d:41:b6:11:bc:ca:b4:34:5c:
64:24:91:d3:7c:3a:0f:80:3b:c2:46:14:61:2e:ab:1a:6d:dc:
91:ea:08:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 05:18:46 2025 by rpki-client