Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A6479/AB9C3F72734611F09CF009B9DAE4EC9C/73CA891A736811F09D170497DAE4EC9C.roa
File: 73CA891A736811F09D170497DAE4EC9C.roa (raw, json)
Hash identifier: pYUWwMnMdYLE0/+EEZ5ug8r0HuLvrbP5UAE/bN16luw=
Subject key identifier: 9B:6E:57:3B:84:9A:20:CE:5B:45:CF:7F:DD:6F:AE:67:3B:22:D6:2D
Certificate issuer: /CN=F36A6479AF/serialNumber=7153C5AF5226196F3210CCF067BFB03979ABE16A
Certificate serial: 04
Authority key identifier: 71:53:C5:AF:52:26:19:6F:32:10:CC:F0:67:BF:B0:39:79:AB:E1:6A
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/cVPFr1ImGW8yEMzwZ7-wOXmr4Wo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A6479/AB9C3F72734611F09CF009B9DAE4EC9C/73CA891A736811F09D170497DAE4EC9C.roa
Signing time: Thu 07 Aug 2025 08:28:11 +0000
ROA not before: Thu 07 Aug 2025 08:28:06 +0000
ROA not after: Mon 31 Aug 2026 08:28:06 +0000
asID: 214354
IP address blocks: 102.205.44.0/24 maxlen: 24
102.205.45.0/24 maxlen: 24
2c0f:2cc0::/41 maxlen: 42
2c0f:2cc0:200::/40 maxlen: 40
2c0f:2cc0:300::/40 maxlen: 40
2c0f:2cc0:400::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A6479/AB9C3F72734611F09CF009B9DAE4EC9C/cVPFr1ImGW8yEMzwZ7-wOXmr4Wo.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A6479/AB9C3F72734611F09CF009B9DAE4EC9C/cVPFr1ImGW8yEMzwZ7-wOXmr4Wo.mft
rsync://rpki.afrinic.net/repository/afrinic/cVPFr1ImGW8yEMzwZ7-wOXmr4Wo.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A6479AF, serialNumber=7153C5AF5226196F3210CCF067BFB03979ABE16A
Validity
Not Before: Aug 7 08:28:06 2025 GMT
Not After : Aug 31 08:28:06 2026 GMT
Subject: CN=6894639b-e8e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:03:59:1f:2a:f7:5c:70:4c:e4:50:a7:5c:bd:
0e:0e:04:68:86:c5:a6:f4:a1:e8:72:cf:c3:c5:e6:
e4:9c:46:5c:6e:e5:56:6d:35:04:c0:74:e2:7b:fd:
f5:29:f4:c7:68:36:14:44:46:b3:92:0d:47:0a:35:
ce:c2:5b:f3:2a:51:50:5e:90:0d:a2:09:06:b8:d0:
d2:78:83:9b:5e:e7:a2:c1:a4:62:1b:a9:3f:95:37:
54:11:24:c3:70:54:46:f1:c9:b6:7b:08:36:e5:d6:
78:9f:26:7c:17:32:3e:9d:13:87:15:ac:6f:96:fb:
61:d3:11:2b:22:28:3b:2e:3a:8f:5c:cf:ef:7f:87:
88:ad:b1:80:10:64:b1:21:30:04:53:e8:82:8a:94:
db:a3:c7:36:3f:42:e5:9e:13:ab:fa:3d:03:a7:da:
25:46:33:20:72:40:29:bc:f9:2a:58:0c:92:d6:af:
fd:a0:32:bd:7c:fa:fb:5b:70:1a:ec:f3:80:05:39:
c4:8b:95:ac:4b:16:63:93:eb:8b:57:4f:97:61:da:
49:a3:b4:39:a5:d7:3d:af:63:fe:d8:f8:39:49:28:
0c:e2:6a:fc:28:42:1e:a6:41:a7:0c:46:35:aa:21:
6c:d1:1e:86:38:cf:63:dd:38:07:9c:95:a2:b7:4a:
52:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:6E:57:3B:84:9A:20:CE:5B:45:CF:7F:DD:6F:AE:67:3B:22:D6:2D
X509v3 Authority Key Identifier:
keyid:71:53:C5:AF:52:26:19:6F:32:10:CC:F0:67:BF:B0:39:79:AB:E1:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A6479/AB9C3F72734611F09CF009B9DAE4EC9C/cVPFr1ImGW8yEMzwZ7-wOXmr4Wo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/cVPFr1ImGW8yEMzwZ7-wOXmr4Wo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A6479/AB9C3F72734611F09CF009B9DAE4EC9C/73CA891A736811F09D170497DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.205.44.0/23
IPv6:
2c0f:2cc0::/41
2c0f:2cc0:200::-2c0f:2cc0:4ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
67:4c:26:82:99:bf:a4:5b:53:de:ef:f7:87:e3:f8:53:86:8f:
07:c5:dd:79:b7:d1:99:7b:ea:7a:cf:50:1c:bf:07:b1:cc:c3:
54:22:1c:28:e9:63:9c:92:32:66:9e:14:0a:34:12:3d:42:0b:
88:ac:28:b5:5d:96:6e:a1:ce:55:34:12:bb:17:cb:93:e7:e8:
3d:49:51:48:70:34:bf:9f:60:46:b8:2d:70:7f:96:cb:64:34:
b9:9a:96:58:53:69:26:6e:c5:03:f3:19:48:eb:0a:24:82:d8:
df:c3:c6:58:6c:8c:19:be:4e:7e:3f:c6:ab:08:62:c2:12:81:
7d:a6:ba:bb:1b:dd:71:4d:83:68:26:a7:94:c5:77:1c:88:eb:
86:97:1d:25:70:5b:02:04:a9:14:2d:12:03:4b:6c:ee:ee:c1:
e4:7c:21:f4:0c:d4:2d:20:fe:91:c3:c5:6c:55:da:c5:4b:f7:
88:54:df:63:1c:ba:17:94:b9:97:02:c4:61:da:b8:2d:04:58:
c7:f9:34:fe:e7:86:d3:c4:0f:4d:e9:26:3e:6b:ff:4b:8c:8c:
d6:0b:5b:35:8f:14:62:4e:17:7e:a2:f1:bc:31:06:8b:ab:fa:
b2:8f:0f:09:e3:3e:41:e2:43:82:18:3e:ae:81:0b:a6:22:f3:
76:1c:3e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:10:22 2025 by rpki-client