Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BD167/B4412F3CDEEC11EFBFCCA28B762E951A/D3D6067449F411F0B90F0DC7DAE4EC9C.roa
File: D3D6067449F411F0B90F0DC7DAE4EC9C.roa (raw, json)
Hash identifier: Q+BFKYSnO6fuQCFkfzwVQZk6vXnihXirdAglo9VE170=
Subject key identifier: 2E:06:43:51:BC:53:5F:E0:6A:0A:B7:0C:0F:7E:EC:62:07:8A:13:21
Certificate issuer: /CN=F36BD167AF/serialNumber=A39B37E60D5C20E96EB5A20F45D22CEEF87FE5BC
Certificate serial: 91
Authority key identifier: A3:9B:37:E6:0D:5C:20:E9:6E:B5:A2:0F:45:D2:2C:EE:F8:7F:E5:BC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/o5s35g1cIOlutaIPRdIs7vh_5bw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BD167/B4412F3CDEEC11EFBFCCA28B762E951A/D3D6067449F411F0B90F0DC7DAE4EC9C.roa
Signing time: Sun 15 Jun 2025 14:27:13 +0000
ROA not before: Sun 15 Jun 2025 14:27:06 +0000
ROA not after: Thu 14 Jun 2035 14:27:06 +0000
asID: 44592
IP address blocks: 102.210.60.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BD167/B4412F3CDEEC11EFBFCCA28B762E951A/o5s35g1cIOlutaIPRdIs7vh_5bw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BD167/B4412F3CDEEC11EFBFCCA28B762E951A/o5s35g1cIOlutaIPRdIs7vh_5bw.mft
rsync://rpki.afrinic.net/repository/afrinic/o5s35g1cIOlutaIPRdIs7vh_5bw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 05:13:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145 (0x91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BD167AF, serialNumber=A39B37E60D5C20E96EB5A20F45D22CEEF87FE5BC
Validity
Not Before: Jun 15 14:27:06 2025 GMT
Not After : Jun 14 14:27:06 2035 GMT
Subject: CN=684ed841-24e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6d:79:e0:12:2c:90:40:03:cf:ac:92:6c:a5:
e1:20:39:3a:33:8b:4c:53:ec:dd:c6:d4:14:f3:94:
5e:1e:3e:f5:bd:39:10:14:4a:b8:48:a8:41:20:9c:
cd:b6:2b:74:2e:99:e1:85:14:e7:f9:99:50:53:9b:
a8:d6:f4:1e:7e:85:8b:89:b2:2a:89:a3:da:15:91:
7e:72:5a:79:a5:c1:45:00:ec:d8:70:ff:fa:c9:88:
4b:6d:20:70:02:31:8e:b7:43:77:50:51:ee:75:2b:
ea:b3:6f:22:34:8a:35:42:79:b8:2e:70:5b:72:7f:
99:bd:41:a3:67:5c:fc:d0:d6:7a:35:cb:a5:df:b5:
d7:e1:b8:fb:37:e1:41:47:6c:fa:0d:d4:b4:b0:bc:
58:a0:89:c5:3f:e9:aa:b5:30:55:71:67:ad:39:42:
fa:18:83:e8:17:28:4c:18:f1:58:85:40:55:9a:89:
d8:2b:48:2b:bd:14:b0:3c:3f:c9:7a:64:33:e4:80:
bf:96:5b:45:a4:f2:98:0c:df:a5:97:c0:89:6d:67:
eb:fe:db:ad:56:54:f6:78:50:34:ae:44:29:62:fa:
e4:91:b5:e4:e0:fa:76:5f:d5:ca:32:ee:df:76:fa:
e7:2a:83:5f:97:f0:28:4b:0a:bf:ab:62:8f:d4:11:
dd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:06:43:51:BC:53:5F:E0:6A:0A:B7:0C:0F:7E:EC:62:07:8A:13:21
X509v3 Authority Key Identifier:
keyid:A3:9B:37:E6:0D:5C:20:E9:6E:B5:A2:0F:45:D2:2C:EE:F8:7F:E5:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BD167/B4412F3CDEEC11EFBFCCA28B762E951A/o5s35g1cIOlutaIPRdIs7vh_5bw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/o5s35g1cIOlutaIPRdIs7vh_5bw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BD167/B4412F3CDEEC11EFBFCCA28B762E951A/D3D6067449F411F0B90F0DC7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.60.0/22
Signature Algorithm: sha256WithRSAEncryption
21:74:b1:12:1b:a4:49:d1:a7:21:95:17:be:07:41:4e:e5:a4:
90:98:da:1e:fc:9e:be:bc:90:47:30:e5:92:95:df:af:35:40:
67:b1:88:e7:70:7f:a9:5d:1c:49:82:3a:2c:bd:ab:5c:21:eb:
27:34:bc:96:0f:39:26:b0:61:04:41:be:7a:77:58:c2:cf:ce:
67:f8:3b:64:04:23:4b:38:aa:4b:9f:51:33:1d:ba:80:51:ea:
66:11:bd:2d:09:a4:f4:84:07:c9:de:75:c0:b2:87:a5:35:df:
0d:b1:86:fa:44:01:fa:d4:d1:6d:15:66:07:30:1b:e8:24:2d:
30:60:64:e2:9b:06:b0:fb:04:4e:35:3d:6c:c1:e2:06:77:bc:
1c:4e:84:d1:3d:b8:9d:a1:02:6d:f7:db:b3:b0:36:47:d6:dd:
44:2f:fb:a6:8f:06:88:57:34:da:1a:e4:a2:42:9d:31:a9:76:
59:70:be:ad:16:bb:90:fc:72:c0:95:6a:52:fd:9c:ab:61:ac:
7f:cf:ec:8d:f5:54:b2:b6:ac:cd:4b:22:cd:3a:86:35:c8:6b:
35:36:2e:1f:5e:60:d2:6b:59:99:f2:51:b5:b4:af:e2:79:a2:
08:0e:e6:a3:45:f2:c2:84:94:98:ef:6f:04:e1:72:fc:fd:48:
4e:86:83:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 00:40:02 2025 by rpki-client