Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/ACDC62868EF811F0B874D3ECDAE4EC9C.roa
File: ACDC62868EF811F0B874D3ECDAE4EC9C.roa (raw, json)
Hash identifier: gcePUOR2oUEsoFnIKxLEhaaLK2XmBs4XjWgIXYAV5aE=
Subject key identifier: 76:0C:7B:10:C4:E0:39:55:27:39:B3:B3:68:73:A0:58:0E:E3:73:D5
Certificate issuer: /CN=F36A1CEFAF/serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Certificate serial: 067B
Authority key identifier: 82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/ACDC62868EF811F0B874D3ECDAE4EC9C.roa
Signing time: Thu 11 Sep 2025 10:18:35 +0000
ROA not before: Thu 11 Sep 2025 10:18:31 +0000
ROA not after: Tue 11 Sep 2035 10:18:31 +0000
asID: 37645
IP address blocks: 102.206.60.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.mft
rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1659 (0x67b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A1CEFAF, serialNumber=82F1C6611A3A1467DB3D78A4A5FED50A08A57B13
Validity
Not Before: Sep 11 10:18:31 2025 GMT
Not After : Sep 11 10:18:31 2035 GMT
Subject: CN=68c2a1fb-aec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:89:cc:b7:75:34:80:2d:7c:30:f7:1e:89:56:
1c:76:89:db:ce:64:29:7e:b3:21:5f:9e:85:74:42:
f6:6e:b4:5a:c4:68:f8:41:57:d2:aa:7e:0f:1a:8b:
38:76:36:9a:a2:1a:b6:44:8a:35:b5:06:f2:32:c2:
3b:51:fd:2a:77:6a:b0:06:af:12:05:65:46:f5:35:
08:6b:7f:6d:3e:fb:20:9c:df:4d:fe:08:04:12:13:
9b:2b:40:a2:1c:f1:2b:da:da:a9:97:77:76:b5:53:
ae:35:4a:5d:1d:54:4c:71:24:cf:f0:52:6e:80:fc:
f9:14:13:7e:78:fd:e2:8f:13:12:a1:78:75:90:d3:
9c:a5:ca:11:f9:c8:f0:e5:f8:46:2b:37:29:98:2a:
e1:47:56:f7:12:00:64:d3:ea:ed:2c:b1:e6:6b:db:
6f:50:77:48:96:a8:fb:0b:77:91:c8:8f:cd:6a:b1:
3d:9f:aa:ba:07:64:68:90:49:3f:f0:f6:37:25:f9:
88:5d:cd:78:25:4f:e0:fc:bc:93:2a:0b:92:43:e4:
7e:a9:fd:9e:fa:4b:26:bf:ce:a5:54:6a:d6:0e:dd:
a7:1f:bf:a2:8d:af:76:9b:b0:7f:1e:31:78:50:e6:
95:8d:f2:69:86:5e:2a:3c:5a:92:2b:2e:81:3e:a4:
22:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0C:7B:10:C4:E0:39:55:27:39:B3:B3:68:73:A0:58:0E:E3:73:D5
X509v3 Authority Key Identifier:
keyid:82:F1:C6:61:1A:3A:14:67:DB:3D:78:A4:A5:FE:D5:0A:08:A5:7B:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/gvHGYRo6FGfbPXikpf7VCgilexM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/gvHGYRo6FGfbPXikpf7VCgilexM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A1CEF/7F388DE4F13811EB917FD717D8A014CE/ACDC62868EF811F0B874D3ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.206.60.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:4a:4e:06:02:8b:be:52:c9:fc:9e:b1:16:90:f1:98:60:78:
4b:48:4a:9f:1b:62:5d:c7:17:fe:33:e1:58:be:27:bb:70:30:
6e:8c:e4:e7:74:1b:4a:5d:8e:2f:a8:76:78:ce:2e:74:88:8b:
dd:8c:22:39:c4:e5:6c:8c:d3:ae:bd:5b:0a:99:97:06:b4:77:
39:e5:7f:a4:53:7d:f0:50:bb:90:f6:aa:5d:2e:e9:7d:a9:1d:
2c:90:86:fb:17:5e:46:91:95:5a:db:cd:16:c8:b4:08:23:1f:
2c:a7:5f:d9:23:d5:ca:5d:0c:4d:79:d1:2e:9b:dd:83:c3:90:
f2:c2:be:56:2c:ab:31:49:0d:be:05:8e:17:53:85:47:e4:fa:
60:70:d2:61:87:98:bd:21:4f:77:d7:5b:e8:18:a1:ea:0e:f0:
5a:88:81:42:5b:4f:e6:7e:ee:cd:e3:a3:3d:d4:d2:3c:2d:ea:
77:90:95:76:60:ac:59:1e:3d:15:3b:cd:57:cc:35:9e:a9:45:
75:3a:56:7b:7f:0d:3b:9e:59:84:c1:f2:fa:80:43:2c:f3:da:
83:5b:64:5d:9d:7a:61:6c:13:30:f4:32:f1:2d:7f:e7:94:b1:
95:15:69:c6:41:2b:95:76:0b:db:86:70:f7:29:aa:58:d5:20:
59:d6:d3:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:49:06 2025 by rpki-client