Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/84F696F64D5D11F080180D7BDAE4EC9C.roa
File: 84F696F64D5D11F080180D7BDAE4EC9C.roa (raw, json)
Hash identifier: swzBgBe/f/e8nnNX8zXOKzJcs3dORLtUJ8Tf1x7g3Lc=
Subject key identifier: CA:7D:B2:27:ED:C7:FA:8C:15:58:15:46:2B:DB:26:6C:D6:B3:BB:5B
Certificate issuer: /CN=F369BF27AF/serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Certificate serial: 08FE
Authority key identifier: 60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/84F696F64D5D11F080180D7BDAE4EC9C.roa
Signing time: Thu 19 Jun 2025 22:34:11 +0000
ROA not before: Fri 20 Jun 2025 22:34:06 +0000
ROA not after: Wed 20 Jun 2035 22:34:06 +0000
asID: 37049
IP address blocks: 41.222.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.mft
rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 01:34:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2302 (0x8fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BF27AF, serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Validity
Not Before: Jun 20 22:34:06 2025 GMT
Not After : Jun 20 22:34:06 2035 GMT
Subject: CN=68549063-854f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:ec:d5:b4:0d:35:7a:5c:f6:63:a4:28:ad:2d:
d0:3f:fb:47:18:34:49:13:01:56:39:b2:b6:f1:d6:
fd:79:aa:5d:b2:bb:07:6b:4d:53:d0:f1:aa:ea:32:
23:c3:3e:c2:e1:aa:a3:d8:cd:4d:4b:c7:3e:b8:1f:
02:0c:d3:5a:d2:f0:e6:e3:eb:cf:f2:9d:74:f6:fa:
9b:03:b3:3f:cd:f5:56:ae:c8:1b:e9:83:fc:df:61:
32:a0:fe:4d:bf:fd:db:00:0c:4b:bf:c8:7d:44:ec:
9e:7e:49:71:7b:2f:fb:85:72:c8:7b:64:fd:00:e7:
d1:03:67:31:0f:77:e6:e3:22:d8:c0:2e:cf:ef:07:
8f:ac:7e:4e:6e:22:aa:f1:b7:90:f1:65:9e:9f:3f:
14:24:76:ee:a1:93:4e:4f:d7:e7:86:3a:73:13:30:
63:b1:4a:db:81:eb:27:f7:0c:d5:fa:50:bb:f3:39:
0d:99:57:e9:c5:ab:fe:93:90:6d:14:67:c7:4d:e3:
41:4c:d3:0c:7b:59:7c:8d:9e:b5:43:8b:90:7e:b4:
29:0a:0f:d8:29:80:8b:0b:09:54:a6:0c:c0:85:ea:
96:d9:47:b2:34:cd:1b:9f:c8:f7:78:90:57:21:df:
d7:a6:da:e8:f5:b1:4b:63:14:f3:5b:1d:01:4d:e7:
42:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7D:B2:27:ED:C7:FA:8C:15:58:15:46:2B:DB:26:6C:D6:B3:BB:5B
X509v3 Authority Key Identifier:
keyid:60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/84F696F64D5D11F080180D7BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.137.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:59:cb:69:0e:a6:f4:8d:17:89:4f:ea:2c:49:09:66:27:36:
11:cb:ed:2b:c8:0c:ed:70:05:79:b4:35:b8:d5:6f:4f:e3:08:
8e:7e:f0:6f:42:db:56:ec:43:2a:cc:40:8d:53:3b:cc:39:82:
81:e7:7a:a3:d3:e9:c5:fd:71:6c:68:22:51:4c:d9:9b:be:9a:
bc:09:8f:63:a1:3a:93:2b:21:d2:08:28:67:10:fc:54:c8:34:
41:5a:47:db:3f:64:69:21:14:3b:ff:ab:f8:de:1e:5d:c3:ef:
a4:b2:a6:57:14:d5:1f:56:ae:89:6f:1b:0e:0f:e1:c8:34:1e:
55:78:d1:43:f4:38:7c:06:48:fc:38:a0:b1:52:f8:1e:34:d9:
f5:01:45:1f:08:c8:12:e2:15:42:7e:4f:dc:2e:35:9f:26:d8:
c6:10:d1:16:29:bd:02:0d:85:ae:76:e7:d8:9a:8b:b8:88:c6:
57:45:5d:04:0f:26:8a:f9:3f:82:c0:b2:e3:10:0e:de:d5:2e:
de:e7:c9:35:d5:16:3b:4f:f7:a8:b8:62:f1:bf:50:3e:89:d9:
7c:5e:3f:c2:ad:fa:94:5f:d9:25:aa:59:ea:aa:e0:01:51:ab:
53:f3:c4:c3:57:b6:ae:9d:e1:cc:5b:70:16:f0:06:65:11:12:
58:ca:5d:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 17:39:31 2025 by rpki-client