Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/CE94967E4D6111F0AAD95E97DAE4EC9C.roa
File: CE94967E4D6111F0AAD95E97DAE4EC9C.roa (raw, json)
Hash identifier: 7rdbTlAjTgRw8z1A0CsVSwKwjuBDcL8yOjtypnJ1RcY=
Subject key identifier: 3B:D1:62:CA:5C:C5:A1:4E:58:B1:C7:B8:CB:D8:D7:F0:86:D5:C5:56
Certificate issuer: /CN=F369BF27AF/serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Certificate serial: 0904
Authority key identifier: 60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/CE94967E4D6111F0AAD95E97DAE4EC9C.roa
Signing time: Thu 19 Jun 2025 23:04:53 +0000
ROA not before: Fri 20 Jun 2025 23:04:48 +0000
ROA not after: Sat 30 Jun 2035 23:04:48 +0000
asID: 37049
IP address blocks: 196.32.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.mft
rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 01:34:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2308 (0x904)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BF27AF, serialNumber=6057F489F5ADC4E9269C260D702C81AAB6AA2E6D
Validity
Not Before: Jun 20 23:04:48 2025 GMT
Not After : Jun 30 23:04:48 2035 GMT
Subject: CN=68549794-21d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:11:cc:36:d9:2b:94:0d:37:82:8f:8b:e6:30:
3d:fe:8d:9c:95:c7:ec:6a:64:47:86:08:ee:f4:02:
1c:d3:2c:c4:51:ad:75:85:ac:71:b0:c4:72:39:22:
13:35:c5:98:6c:94:3e:73:b8:df:07:a2:74:6d:07:
cf:a8:46:64:5b:91:29:f1:bb:88:61:9f:6d:77:c5:
dd:c9:61:b3:ae:d7:00:5d:75:d7:a2:b5:21:c8:91:
1a:ac:22:20:5f:0a:24:36:7a:db:02:22:ec:3f:6a:
dc:94:c1:bf:04:e2:d6:3a:48:61:bb:42:63:a1:2c:
64:00:0e:4d:34:c5:e7:3e:21:22:1f:52:c8:9a:bf:
49:64:9f:19:3a:e1:62:ba:82:c8:1e:72:4e:3a:22:
a0:42:73:94:16:8f:68:36:16:34:a0:9d:ce:97:f3:
ea:96:5f:55:1c:f2:e0:db:9d:6c:3f:1c:ce:99:47:
71:6f:57:2d:05:e9:e7:a6:fc:5e:2f:29:59:c2:a2:
6d:c7:0d:94:61:4d:1a:18:7f:95:fd:49:53:1e:4c:
91:8f:7e:49:48:5f:e3:b1:95:4b:34:68:44:e4:40:
e1:17:71:56:49:b3:17:46:17:88:da:39:95:16:1c:
4e:b5:ef:8b:70:a5:b3:3d:e8:f5:ea:16:94:64:be:
6f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D1:62:CA:5C:C5:A1:4E:58:B1:C7:B8:CB:D8:D7:F0:86:D5:C5:56
X509v3 Authority Key Identifier:
keyid:60:57:F4:89:F5:AD:C4:E9:26:9C:26:0D:70:2C:81:AA:B6:AA:2E:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/YFf0ifWtxOkmnCYNcCyBqraqLm0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YFf0ifWtxOkmnCYNcCyBqraqLm0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/451248DA91EA11E9BA92847AF8AEA228/CE94967E4D6111F0AAD95E97DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.32.250.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:4a:db:f7:7a:ac:b2:21:ce:7b:51:11:37:d5:02:e1:26:b3:
4f:01:62:cc:e5:b3:eb:2f:ae:70:cb:02:e8:f9:28:44:28:7e:
54:37:6c:4e:11:02:ce:8b:ae:0d:33:97:0c:ae:5f:8e:8e:f1:
06:9d:15:22:09:c4:f3:49:4a:58:0d:db:9d:f7:67:ed:04:ee:
e9:1d:97:0f:c5:d0:54:5c:c3:27:c2:d9:e2:47:69:2e:e2:99:
f1:25:81:b7:b2:22:e0:7b:76:e8:f6:75:ea:4a:b9:68:29:6d:
ba:a2:1c:5b:9f:bf:85:7b:43:b2:6c:d4:9e:6e:66:de:23:f1:
83:04:11:27:b7:da:42:5a:d8:3e:9c:5a:3e:1f:71:3f:c8:e0:
30:2c:79:97:f1:14:e6:e9:96:15:bf:79:48:5f:fc:02:e2:e9:
3b:a7:31:6a:2e:69:b2:17:8a:b1:4a:7d:9a:5c:bc:dc:ff:b4:
b7:7a:72:33:17:38:2d:c9:08:4b:c4:77:bb:cd:38:b2:8a:92:
3c:c8:5b:dc:20:35:80:82:36:ff:3e:e1:bc:11:38:4a:86:84:
d4:61:9c:c7:40:4a:77:ee:fa:9b:2b:ba:cc:0a:c8:ee:fa:26:
d0:ec:73:b3:c2:66:a1:f8:bc:d0:5a:2b:c7:9f:2c:20:1d:55:
15:fc:9d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 08:58:31 2025 by rpki-client