Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/BB921280582A11F082413EC0DAE4EC9C.roa
File: BB921280582A11F082413EC0DAE4EC9C.roa (raw, json)
Hash identifier: uNGXnDI1G5CyDUQ0B2eKBb7/gWeHJujLDgmvv6LRYik=
Subject key identifier: 91:40:86:1F:D0:A5:11:87:B9:2E:88:FA:3A:69:1C:5B:00:56:0E:D6
Certificate issuer: /CN=F369591CAF/serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Certificate serial: 039F
Authority key identifier: C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/BB921280582A11F082413EC0DAE4EC9C.roa
Signing time: Thu 03 Jul 2025 16:28:21 +0000
ROA not before: Thu 03 Jul 2025 16:28:16 +0000
ROA not after: Tue 31 Dec 2030 16:28:16 +0000
asID: 15964
IP address blocks: 154.72.170.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.mft
rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 06 Jul 2025 00:06:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927 (0x39f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CAF, serialNumber=C1090D37DA9FFEEE1A9C229BAFF1190BD22E8934
Validity
Not Before: Jul 3 16:28:16 2025 GMT
Not After : Dec 31 16:28:16 2030 GMT
Subject: CN=6866afa5-e0ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:92:ed:ec:33:ec:00:9d:e6:fd:e0:e3:74:74:
fe:0a:04:92:62:83:53:27:1a:01:17:a5:cb:e4:31:
80:3d:65:74:e2:39:de:f7:11:92:ab:84:f4:c4:ea:
02:67:45:cc:75:03:a3:eb:80:86:49:0a:51:5f:ea:
1c:0f:ed:0f:3d:48:e0:64:ab:33:f7:d5:ca:3c:75:
22:3e:73:d7:d9:93:e8:00:6a:73:f4:26:b5:10:3e:
26:a5:68:3c:cb:0d:2e:c9:c0:1c:3c:3d:a1:97:70:
3c:d4:3a:0a:94:a0:5e:ef:26:d1:7a:41:12:0b:12:
13:d0:1d:29:bc:d9:3f:9a:3d:79:85:bd:7d:b5:e3:
c4:ea:d6:c6:d4:a3:48:27:51:30:3e:83:7e:41:43:
51:b0:9d:29:19:65:c9:a3:dc:16:56:2a:67:a2:07:
be:69:9c:69:9b:1a:9a:6e:57:f9:5e:0e:52:b3:19:
5b:83:90:32:b9:51:f3:44:e5:06:ac:43:80:56:b8:
d8:39:cc:52:67:df:1b:2b:02:2f:0a:cf:9c:a7:1c:
d0:46:dc:b2:fc:f8:73:ac:bc:17:72:14:59:db:a5:
03:56:16:e3:44:91:0b:c1:a3:cb:02:3f:24:80:ab:
ff:29:61:4e:f2:0c:e2:ce:53:08:99:5d:e0:62:c7:
3d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:40:86:1F:D0:A5:11:87:B9:2E:88:FA:3A:69:1C:5B:00:56:0E:D6
X509v3 Authority Key Identifier:
keyid:C1:09:0D:37:DA:9F:FE:EE:1A:9C:22:9B:AF:F1:19:0B:D2:2E:89:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/wQkNN9qf_u4anCKbr_EZC9IuiTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/wQkNN9qf_u4anCKbr_EZC9IuiTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/3474032EC24711EDAFA6C79FF1222468/BB921280582A11F082413EC0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.72.170.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:41:e8:9d:c4:ff:7d:26:85:de:64:93:48:91:29:26:b0:87:
d1:30:83:b8:30:e1:2b:c0:ac:1a:1f:19:d1:8c:fe:bf:a6:15:
3c:77:b8:39:68:4d:e3:1f:3a:54:1d:7f:e2:19:5d:74:19:69:
39:15:ce:42:d0:b5:1c:93:1c:0a:ba:10:3d:8b:f7:08:7b:aa:
b9:1a:d1:19:1d:d7:0b:e3:47:af:30:b4:a0:d9:30:34:88:71:
82:64:c7:13:60:82:4f:eb:8c:4a:ae:20:89:b8:70:4e:c9:d3:
79:4a:a3:63:60:2e:31:9a:6a:d5:ab:73:b4:86:ce:8a:cc:9f:
5e:e2:dc:fd:ee:de:d6:5c:ba:06:41:d3:f4:fc:98:5d:e5:7c:
13:c0:ef:80:85:b7:51:c3:7c:ef:62:12:4c:be:a3:da:a2:5e:
8c:1d:22:8a:e3:8e:b5:dd:9b:d0:ab:cb:d7:80:da:2f:42:c3:
09:c7:17:32:11:e0:f7:5c:6d:4b:48:13:07:17:51:83:e6:1e:
2b:43:6c:ce:0c:c1:09:03:d0:0a:97:cc:1d:83:73:2f:29:3b:
91:50:d8:f0:06:94:46:e4:86:28:0f:0d:a2:4e:f3:0d:39:26:
c5:4a:0f:fc:65:bc:8b:f6:4a:a0:cd:99:89:dd:66:a4:de:ba:
9d:4d:8e:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 06:12:46 2025 by rpki-client