Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/852AD7B827E711F0BFC09DF5DAE4EC9C.roa
File: 852AD7B827E711F0BFC09DF5DAE4EC9C.roa (raw, json)
Hash identifier: NefVteUHYyDwbTOkKR0OdJps3C0o9kNvy2BeEIzbcG4=
Subject key identifier: D0:1B:68:BF:87:45:F8:3C:60:9A:E4:7E:17:16:A6:D4:DE:CA:91:C7
Certificate issuer: /CN=F369AFDDAF/serialNumber=E7C680360024EDB9F3451DC913EA33059BC904A5
Certificate serial: 0675
Authority key identifier: E7:C6:80:36:00:24:ED:B9:F3:45:1D:C9:13:EA:33:05:9B:C9:04:A5
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/852AD7B827E711F0BFC09DF5DAE4EC9C.roa
Signing time: Sat 03 May 2025 06:26:18 +0000
ROA not before: Sat 03 May 2025 06:26:13 +0000
ROA not after: Thu 03 May 2035 06:26:13 +0000
asID: 211407
IP address blocks: 41.216.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/58aANgAk7bnzRR3JE-ozBZvJBKU.crl
rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/58aANgAk7bnzRR3JE-ozBZvJBKU.mft
rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 07 May 2025 02:19:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1653 (0x675)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369AFDDAF, serialNumber=E7C680360024EDB9F3451DC913EA33059BC904A5
Validity
Not Before: May 3 06:26:13 2025 GMT
Not After : May 3 06:26:13 2035 GMT
Subject: CN=6815b70a-8637
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:56:95:90:e4:d4:58:c3:69:6a:75:05:b6:da:
b8:66:60:56:65:fa:df:ad:72:88:b8:4d:68:63:5b:
1c:54:12:0d:53:39:40:75:bd:f8:32:cb:05:26:18:
7d:74:66:82:c3:45:9a:c2:5b:e0:a7:f9:10:7e:17:
47:7f:1b:a4:0c:73:d5:64:14:63:99:0c:66:a4:cf:
bd:62:cc:29:6f:41:37:06:2d:b6:88:fc:64:57:c4:
9c:bd:5a:cb:65:a0:43:cd:1e:65:30:c3:9e:62:28:
e4:5d:24:95:42:58:f9:f2:be:13:ee:27:89:05:a4:
7c:da:03:36:7c:d1:06:22:6b:4a:f5:9c:5d:ad:ec:
fa:55:7a:a8:b1:13:fd:98:49:34:2b:77:42:86:1d:
b8:9a:aa:42:0a:5e:cf:2e:ba:91:8f:79:2f:b6:a3:
c8:61:57:50:cd:bd:93:4e:2f:98:70:67:ea:27:ae:
3e:b9:19:4d:5b:c4:cb:36:08:06:e2:5e:dc:37:ba:
dc:4d:87:13:1b:13:16:af:c4:28:cf:9a:61:33:1a:
d0:34:bf:57:d5:b8:30:b0:08:7e:e3:d8:98:87:62:
e2:d4:1b:30:7d:7d:e3:1c:38:1f:62:a5:79:5c:c4:
01:58:7f:1a:a4:de:cc:63:db:a2:ab:04:88:cf:fd:
55:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:1B:68:BF:87:45:F8:3C:60:9A:E4:7E:17:16:A6:D4:DE:CA:91:C7
X509v3 Authority Key Identifier:
keyid:E7:C6:80:36:00:24:ED:B9:F3:45:1D:C9:13:EA:33:05:9B:C9:04:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/58aANgAk7bnzRR3JE-ozBZvJBKU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/852AD7B827E711F0BFC09DF5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.216.191.0/24
Signature Algorithm: sha256WithRSAEncryption
af:39:9b:16:94:f0:1b:cd:02:e7:37:c7:7e:30:bc:fe:23:66:
f8:98:73:a9:e2:aa:2c:ac:1f:1f:04:02:77:d2:87:51:6d:d1:
fc:f4:cf:42:b1:3f:7c:61:bf:fc:fc:bc:80:f8:9e:15:c5:95:
e0:6e:de:92:3b:42:f3:d7:10:8b:3d:24:c2:93:d2:6a:2d:9d:
95:d6:8d:7c:e9:44:b5:c5:c3:9f:ee:50:f1:77:ee:57:c1:3b:
20:15:53:66:31:76:bd:60:97:60:88:32:a6:cb:80:3b:8a:9d:
0d:93:65:6a:62:60:1a:6f:45:ec:c5:b3:60:89:ae:5f:91:0a:
ef:78:c3:1e:49:17:46:c0:d9:a4:53:65:a1:84:c4:1c:a1:9a:
97:2c:16:66:9a:67:74:e2:e8:c4:cb:8a:ea:f2:8b:fc:a9:bd:
7b:1b:73:cf:91:20:bf:88:0d:52:91:ea:78:84:46:1f:cb:e7:
f4:dc:14:6c:ce:74:b9:ac:a7:3c:84:5c:a7:8d:cd:fe:2c:f5:
f3:fa:87:49:5f:ca:cb:c7:f7:be:41:d2:bc:db:df:95:03:bb:
a8:3b:44:8e:31:5a:d2:db:de:4e:81:d3:74:84:80:39:a0:2e:
4f:53:2b:6a:9b:1d:24:5d:18:bc:6d:53:44:5b:61:5b:c0:83:
05:3f:eb:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 10:40:15 2025 by rpki-client