Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/8E75DA584D6111F083FA6595DAE4EC9C.roa
File: 8E75DA584D6111F083FA6595DAE4EC9C.roa (raw, json)
Hash identifier: DULZu5NdjWLBHQ9nCeFB0REGbrNQCky9pb1BZ89cFsU=
Subject key identifier: C3:97:6D:C1:41:B5:FB:28:59:A7:1B:C9:36:99:B6:2E:03:3C:ED:0A
Certificate issuer: /CN=F369BF27AF/serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Certificate serial: 0902
Authority key identifier: 60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/8E75DA584D6111F083FA6595DAE4EC9C.roa
Signing time: Thu 19 Jun 2025 23:03:05 +0000
ROA not before: Fri 20 Jun 2025 23:03:00 +0000
ROA not after: Sat 30 Jun 2035 23:03:00 +0000
asID: 37049
IP address blocks: 196.32.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.mft
rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Jul 2025 01:33:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2306 (0x902)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BF27AF, serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Validity
Not Before: Jun 20 23:03:00 2025 GMT
Not After : Jun 30 23:03:00 2035 GMT
Subject: CN=68549729-1c20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:29:ba:8e:03:70:bf:8e:a8:a7:2d:54:c7:71:
84:a6:ee:b2:9b:11:b4:60:ee:3f:e6:7f:0a:aa:ea:
88:9c:b4:ca:ae:b8:bf:4d:a2:79:65:a4:b8:e2:0e:
f0:09:2f:40:e5:0b:31:ac:e3:ac:d2:2e:a8:99:cb:
30:81:19:db:06:ca:6a:d9:55:38:b1:d0:fa:5d:1d:
ad:10:dc:69:d4:22:1c:9d:96:2f:c8:28:a5:76:2f:
4b:ce:70:04:91:f6:3e:8c:54:6a:f5:c1:f2:08:13:
96:5b:d4:3a:2e:95:f3:ec:4b:4a:7c:ee:b6:eb:00:
f9:5b:59:3f:f2:00:e1:c9:7a:4b:4a:c4:73:ef:2a:
ff:ad:a7:f4:05:07:c2:dc:95:6f:f5:0b:ff:5e:5e:
bf:d4:cc:92:18:e8:18:03:99:ce:d5:7e:65:d1:f2:
09:cc:02:81:4c:e3:6c:ca:a6:fc:50:2b:a6:9d:c3:
5c:57:ef:fe:7d:90:84:1b:d8:fb:44:2a:60:60:18:
96:24:7e:3f:ff:4e:4e:dc:1e:1b:77:e4:8e:f0:61:
b5:69:df:29:7d:00:2d:94:bf:1e:2f:14:c4:e7:1d:
8f:97:31:a1:20:ab:df:b5:f8:26:ee:d2:b6:0c:ec:
de:15:72:8f:ef:4c:8b:f7:e3:5d:b5:10:67:04:78:
8b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:97:6D:C1:41:B5:FB:28:59:A7:1B:C9:36:99:B6:2E:03:3C:ED:0A
X509v3 Authority Key Identifier:
keyid:60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/8E75DA584D6111F083FA6595DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.32.249.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:36:da:c1:8c:df:7e:5b:56:12:9e:af:7e:92:a7:48:7b:9f:
54:33:87:9e:06:55:7a:0d:f6:65:7d:11:0a:5b:99:b2:a3:e6:
7a:e0:87:18:0b:5c:74:1a:48:3b:1e:7b:41:52:f7:05:0b:15:
c7:56:60:ce:35:a8:11:ee:9f:ea:d3:3c:35:62:2c:f4:4e:65:
7d:03:c0:57:6c:97:44:00:ef:51:b8:33:a2:a7:53:3a:fe:8e:
50:d3:e5:90:a6:1b:98:c3:2a:0c:19:37:f7:d6:89:2e:d7:02:
3f:7b:d6:f6:d2:55:fe:64:55:1e:80:38:a6:4f:6f:15:a1:a8:
f2:1b:35:8d:d3:c9:af:6e:ec:07:aa:b4:74:ed:c8:44:23:92:
b1:f3:b9:b7:29:67:02:90:e5:66:da:26:16:4b:80:ea:67:3c:
69:59:d3:3e:18:01:35:1a:41:04:fd:37:43:34:ce:d6:c3:81:
33:59:a6:91:c7:99:0c:1a:ea:08:41:6b:43:8f:95:5e:97:2b:
9e:a2:2e:b0:9e:b7:47:64:f6:4f:4a:14:6b:65:f0:22:2f:21:
48:75:42:bf:f1:17:60:73:dc:8a:f6:d2:c4:5f:91:f5:f5:8f:
a2:29:9b:78:af:cc:c4:c3:7b:1e:58:a2:d0:3e:9a:76:18:f3:
a1:6b:1a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 20:00:51 2025 by rpki-client