Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/7DD153FE514D11F0A35C1C97DAE4EC9C.roa
File: 7DD153FE514D11F0A35C1C97DAE4EC9C.roa (raw, json)
Hash identifier: 8bWJ3tM27kTbYQCS7pka2UKCEjGC//pzMPNEA8dwKMk=
Subject key identifier: BE:44:51:6A:C7:24:70:D1:5D:1D:3A:8B:8D:88:A4:A2:06:69:D8:BF
Certificate issuer: /CN=F36877BBAF/serialNumber=0DC6A4C82109FF2CB39C1D1A58C38E3033C5A0FE
Certificate serial: 01E1
Authority key identifier: 0D:C6:A4:C8:21:09:FF:2C:B3:9C:1D:1A:58:C3:8E:30:33:C5:A0:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/DcakyCEJ_yyznB0aWMOOMDPFoP4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/7DD153FE514D11F0A35C1C97DAE4EC9C.roa
Signing time: Tue 24 Jun 2025 22:49:32 +0000
ROA not before: Tue 24 Jun 2025 22:49:27 +0000
ROA not after: Sat 30 Jun 2035 22:49:27 +0000
asID: 328721
IP address blocks: 2c0f:7840::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/DcakyCEJ_yyznB0aWMOOMDPFoP4.crl
rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/DcakyCEJ_yyznB0aWMOOMDPFoP4.mft
rsync://rpki.afrinic.net/repository/afrinic/DcakyCEJ_yyznB0aWMOOMDPFoP4.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 04:36:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 481 (0x1e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36877BBAF, serialNumber=0DC6A4C82109FF2CB39C1D1A58C38E3033C5A0FE
Validity
Not Before: Jun 24 22:49:27 2025 GMT
Not After : Jun 30 22:49:27 2035 GMT
Subject: CN=685b2b7c-b07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:63:c6:56:af:2f:c3:3d:9f:24:de:23:1b:9f:
10:1c:e1:99:89:77:65:7f:9b:f4:83:c8:4e:75:49:
36:75:60:6e:54:f5:c1:d6:03:7e:e4:52:b0:cb:5f:
14:63:52:65:cf:83:82:43:15:6b:a6:2e:c9:0e:8f:
fb:bb:b7:f7:81:42:f3:17:34:91:3b:aa:50:06:b4:
b2:73:a2:4f:44:59:64:de:6c:2a:78:7a:62:07:54:
cf:68:8b:03:80:e7:26:e0:4c:74:ac:93:b9:70:e2:
3e:93:1c:05:a8:32:84:ce:40:a6:54:4c:a9:32:0e:
5e:ce:09:3e:00:8f:cb:7e:6d:84:dc:20:23:24:77:
03:8e:bd:37:24:6b:e6:cd:8c:9d:f2:f3:7e:79:37:
c7:71:39:9a:8f:e7:f2:dd:e1:89:20:2c:0e:4d:88:
37:53:d2:db:1b:02:7c:2d:53:f8:98:63:79:d8:28:
d0:05:24:c0:be:f8:b6:75:51:8a:4e:cb:58:17:df:
f7:72:9e:da:b1:8a:88:cb:26:32:a6:04:38:ae:48:
98:48:6f:59:09:e7:7f:c3:c3:2b:b4:86:bd:88:43:
24:ea:76:ec:6e:e0:22:1c:08:47:49:43:a5:69:fa:
81:23:45:c7:6e:f2:23:fa:9f:ea:2b:86:f7:ca:7e:
50:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:44:51:6A:C7:24:70:D1:5D:1D:3A:8B:8D:88:A4:A2:06:69:D8:BF
X509v3 Authority Key Identifier:
keyid:0D:C6:A4:C8:21:09:FF:2C:B3:9C:1D:1A:58:C3:8E:30:33:C5:A0:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/DcakyCEJ_yyznB0aWMOOMDPFoP4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/DcakyCEJ_yyznB0aWMOOMDPFoP4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/7DD153FE514D11F0A35C1C97DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:7840::/64
Signature Algorithm: sha256WithRSAEncryption
a0:0b:5b:a9:7d:57:f4:9f:71:a3:84:78:cc:06:bd:ea:9d:1c:
b0:79:6f:e6:6c:d4:80:f2:c8:c9:f5:38:c4:43:40:9e:c1:a0:
49:f8:74:d9:f9:47:6b:b6:96:16:f3:52:77:d3:c4:d1:a6:58:
1b:7a:4a:91:f8:93:51:a5:e6:98:9f:ba:66:22:84:98:5b:82:
f0:df:19:b2:54:28:9c:b8:7e:b5:e3:dc:af:5a:bb:29:2a:e9:
95:fd:ae:08:d1:de:aa:a0:4f:10:9e:cf:b2:2d:79:91:49:87:
3c:5f:2c:f5:11:82:83:56:59:35:a4:20:90:06:14:b9:e7:80:
62:0b:f5:82:95:f0:8d:84:90:be:53:27:12:81:bd:9f:53:62:
29:1f:c9:a3:6f:12:6b:f2:b6:76:e3:8b:76:7a:14:0c:d1:01:
76:1d:68:92:49:9b:c9:ae:37:22:06:e7:3a:54:6a:16:21:4d:
c9:62:bc:b4:40:a5:f0:90:3c:6c:43:25:fb:8c:26:0d:3b:54:
a0:03:c7:0e:9f:b0:da:ff:26:2b:8f:37:db:20:66:01:1b:6c:
28:7a:3e:a1:af:d5:52:57:34:91:2d:92:6c:b3:0f:20:9c:d0:
f4:1a:71:f7:8d:2c:f1:05:45:eb:b4:c8:a3:a9:35:70:7a:0a:
a5:b9:de:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 18:19:54 2025 by rpki-client