Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36AD6A0/9EC9ADCC776D11F0BB2F2EC9DAE4EC9C/28EA7144776E11F0AA3B2ECDDAE4EC9C.roa
File: 28EA7144776E11F0AA3B2ECDDAE4EC9C.roa (raw, json)
Hash identifier: z8x4zegua5aDN/K6PnuCdH+nQv873VD50NfZxOF1vT0=
Subject key identifier: 88:04:E8:F7:51:5B:AF:9C:C0:81:80:77:A8:72:32:47:8D:A8:7D:FA
Certificate issuer: /CN=F36AD6A0AF/serialNumber=8BECC034162A76E4D3FB765EECA7C590BFCF8875
Certificate serial: 02
Authority key identifier: 8B:EC:C0:34:16:2A:76:E4:D3:FB:76:5E:EC:A7:C5:90:BF:CF:88:75
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/i-zANBYqduTT-3Ze7KfFkL_PiHU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36AD6A0/9EC9ADCC776D11F0BB2F2EC9DAE4EC9C/28EA7144776E11F0AA3B2ECDDAE4EC9C.roa
Signing time: Tue 12 Aug 2025 11:19:07 +0000
ROA not before: Tue 12 Aug 2025 11:19:02 +0000
ROA not after: Tue 12 Jun 2035 11:19:02 +0000
asID: 36924
IP address blocks: 102.205.36.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36AD6A0/9EC9ADCC776D11F0BB2F2EC9DAE4EC9C/i-zANBYqduTT-3Ze7KfFkL_PiHU.crl
rsync://rpki.afrinic.net/repository/member_repository/F36AD6A0/9EC9ADCC776D11F0BB2F2EC9DAE4EC9C/i-zANBYqduTT-3Ze7KfFkL_PiHU.mft
rsync://rpki.afrinic.net/repository/afrinic/i-zANBYqduTT-3Ze7KfFkL_PiHU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36AD6A0AF, serialNumber=8BECC034162A76E4D3FB765EECA7C590BFCF8875
Validity
Not Before: Aug 12 11:19:02 2025 GMT
Not After : Jun 12 11:19:02 2035 GMT
Subject: CN=689b232b-f5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:63:b6:5b:af:e6:f2:91:e2:2b:fa:d0:94:0e:
64:bc:49:5d:58:4e:34:d8:97:a4:46:55:c7:64:c4:
33:0f:7c:bd:0a:2c:50:33:ec:cd:e5:d3:ae:40:f4:
20:db:02:bb:56:ba:36:19:b3:f3:00:8d:0b:ed:4c:
66:aa:ec:b0:e9:a3:44:69:72:dd:d4:31:ee:7f:3a:
04:23:c2:e1:01:4a:1e:28:e9:62:fd:96:b9:03:bc:
3d:1c:4d:79:a5:15:b8:62:13:5c:43:ee:68:7c:5b:
fd:77:4f:50:c9:05:0c:a2:79:b6:6f:59:ca:18:da:
ab:42:96:c1:1d:c3:c5:a6:8c:56:cc:63:a8:31:7a:
07:91:99:5a:0d:38:d6:11:81:91:3b:7d:fc:b2:2b:
ef:74:78:d4:fb:62:61:1b:88:f8:b2:39:90:78:c2:
8e:b9:c6:7d:7c:23:6e:5d:c7:6c:55:5d:91:66:34:
58:21:2a:42:76:65:96:ef:5a:91:a3:56:5b:2f:67:
0c:ac:3a:fd:d1:61:95:77:1b:68:11:32:1f:8f:f6:
6c:49:6d:fd:5f:1a:8a:14:d7:f7:fc:7d:a2:cd:f5:
0e:30:4f:4f:85:e3:b1:03:2f:85:0d:2c:44:d2:2d:
6b:b0:ac:e1:cc:30:f6:60:e2:8d:a7:fd:19:01:af:
7f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:04:E8:F7:51:5B:AF:9C:C0:81:80:77:A8:72:32:47:8D:A8:7D:FA
X509v3 Authority Key Identifier:
keyid:8B:EC:C0:34:16:2A:76:E4:D3:FB:76:5E:EC:A7:C5:90:BF:CF:88:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36AD6A0/9EC9ADCC776D11F0BB2F2EC9DAE4EC9C/i-zANBYqduTT-3Ze7KfFkL_PiHU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/i-zANBYqduTT-3Ze7KfFkL_PiHU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36AD6A0/9EC9ADCC776D11F0BB2F2EC9DAE4EC9C/28EA7144776E11F0AA3B2ECDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.205.36.0/22
Signature Algorithm: sha256WithRSAEncryption
24:fb:50:10:0b:a1:97:35:69:2c:e4:b2:e6:8f:ce:47:20:58:
7f:ec:e3:b8:94:37:84:4f:ed:df:cb:9b:dd:ee:58:db:37:39:
9a:dc:00:d1:5d:88:c1:3e:35:0f:63:16:15:b8:8a:04:e8:8e:
a3:04:36:d7:41:d9:9c:20:0c:de:64:dd:9e:5a:1d:b9:9f:55:
7e:5e:ce:70:cd:30:39:dc:7e:59:c6:86:b5:ec:b0:17:d9:22:
ac:be:58:9e:ba:cc:f9:ab:43:ee:40:1b:3c:34:7c:8a:5d:1b:
ce:c3:6a:2e:4a:b1:f3:69:0f:e6:46:f8:1e:69:08:bf:ba:19:
15:b9:1b:bc:03:20:92:75:0b:aa:fc:5d:2b:ae:fa:c7:b0:a6:
28:26:d4:3c:30:ef:c8:1f:56:ad:ff:e8:1d:de:0a:f2:6e:cb:
1c:28:82:8e:a8:da:82:52:0b:b9:7b:49:5a:9f:79:78:01:87:
b8:6e:ff:2c:01:46:ad:f6:3a:17:79:fa:07:9d:75:9d:83:5d:
c1:52:07:c1:71:4f:d3:d7:eb:24:3c:ff:ec:34:ac:23:3d:12:
37:bd:1d:cd:c8:ac:f8:94:58:11:9e:50:ca:ce:06:d5:7b:9f:
c2:46:bc:2e:e0:85:b8:4e:8b:14:80:cf:54:24:65:23:e5:3c:
82:4d:f4:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:11:59 2025 by rpki-client