Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BF59B/4AAAA214C75111EEA02EB392775412E6/115654BA470F11F09EF91AD4DAE4EC9C.roa
File: 115654BA470F11F09EF91AD4DAE4EC9C.roa (raw, json)
Hash identifier: vMQh/YP4a5LXI3WA/Ms3M4IR033AuBOJkO5TrwO/vPw=
Subject key identifier: 16:0A:E0:F7:8B:FE:74:DA:DA:9D:0D:6A:A6:07:D0:94:73:B9:64:2F
Certificate issuer: /CN=F36BF59BAF/serialNumber=E036AE08FE03416F58887A9D195DBFD86A25603C
Certificate serial: 020C
Authority key identifier: E0:36:AE:08:FE:03:41:6F:58:88:7A:9D:19:5D:BF:D8:6A:25:60:3C
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/4DauCP4DQW9YiHqdGV2_2GolYDw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BF59B/4AAAA214C75111EEA02EB392775412E6/115654BA470F11F09EF91AD4DAE4EC9C.roa
Signing time: Wed 11 Jun 2025 21:57:29 +0000
ROA not before: Thu 12 Jun 2025 21:57:23 +0000
ROA not after: Tue 30 Jun 2026 21:57:23 +0000
asID: 329249
IP address blocks: 102.209.243.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36BF59B/4AAAA214C75111EEA02EB392775412E6/4DauCP4DQW9YiHqdGV2_2GolYDw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36BF59B/4AAAA214C75111EEA02EB392775412E6/4DauCP4DQW9YiHqdGV2_2GolYDw.mft
rsync://rpki.afrinic.net/repository/afrinic/4DauCP4DQW9YiHqdGV2_2GolYDw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 04:25:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 524 (0x20c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BF59BAF, serialNumber=E036AE08FE03416F58887A9D195DBFD86A25603C
Validity
Not Before: Jun 12 21:57:23 2025 GMT
Not After : Jun 30 21:57:23 2026 GMT
Subject: CN=6849fbc9-ccbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a9:de:10:d0:f4:76:8e:83:bb:09:a1:c9:3b:
1e:a7:ef:33:6a:84:af:75:6b:50:3f:30:55:36:21:
0f:ae:22:c4:5e:cc:24:4c:10:60:2d:32:29:92:f9:
b8:80:d1:12:bc:61:c3:6f:35:db:7b:db:57:78:1e:
0a:fe:fb:c8:52:b4:fa:47:b6:92:08:ae:20:ca:a4:
de:e4:9c:fd:b0:70:ce:39:8d:c0:40:18:41:5c:9b:
da:b1:f3:1b:8b:cc:b3:41:68:f4:a1:b1:1e:42:64:
55:bd:f3:25:d1:bd:14:d9:fb:a2:e1:4a:84:00:33:
45:40:9d:32:f7:85:6e:7a:31:42:ac:34:09:ac:b0:
7d:40:df:b0:56:3f:f0:62:80:1a:0b:8f:94:75:63:
00:a7:95:a2:e0:28:ec:76:3e:94:c6:4c:36:03:38:
d6:79:0f:09:1e:20:64:c8:7a:17:8d:ed:16:43:43:
3a:a6:43:f9:e2:1e:22:45:87:00:74:b5:8b:90:6e:
54:e4:eb:a4:68:08:41:80:2c:d1:a5:a3:60:f7:77:
39:86:7d:20:30:96:bd:bb:e0:42:78:4e:0a:d8:6f:
68:ad:aa:45:34:9a:7c:da:fa:45:2a:57:af:8e:e8:
e5:56:e8:6b:66:7e:fc:bd:53:b4:34:2d:80:62:c8:
1d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0A:E0:F7:8B:FE:74:DA:DA:9D:0D:6A:A6:07:D0:94:73:B9:64:2F
X509v3 Authority Key Identifier:
keyid:E0:36:AE:08:FE:03:41:6F:58:88:7A:9D:19:5D:BF:D8:6A:25:60:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BF59B/4AAAA214C75111EEA02EB392775412E6/4DauCP4DQW9YiHqdGV2_2GolYDw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/4DauCP4DQW9YiHqdGV2_2GolYDw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BF59B/4AAAA214C75111EEA02EB392775412E6/115654BA470F11F09EF91AD4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.243.0/24
Signature Algorithm: sha256WithRSAEncryption
52:85:20:7d:6f:b9:a0:cc:6b:a9:28:41:d6:ee:e1:bc:ec:e5:
25:b6:af:fe:55:c0:8a:da:45:71:45:d9:91:16:e9:d7:d6:14:
e6:42:fa:b8:b5:87:8e:8b:5e:d2:64:1b:35:c1:5e:5c:4a:47:
a2:d5:76:80:4a:a0:90:81:06:ce:07:3d:3c:c5:0b:c5:91:40:
b0:c5:98:13:92:0f:ba:89:4e:35:ab:16:b5:5e:0c:0d:4a:d1:
ff:8a:10:d7:93:f7:c9:df:f8:03:ed:bf:5b:f6:35:fc:17:6a:
b3:ee:9b:0d:d1:d5:5c:4f:3a:2d:0c:91:50:e7:a3:d6:bf:0d:
67:26:13:34:85:14:86:11:45:58:73:6f:b6:1a:fc:da:8d:1e:
a0:04:1f:19:dc:1d:67:ac:92:bf:e2:f8:f4:2d:d7:8a:d1:84:
e5:cb:18:86:4f:52:c1:84:ec:d8:dc:54:bd:6d:93:84:64:bf:
81:57:b9:14:36:10:2f:23:a5:4a:3c:1f:c3:4b:ce:5c:e1:3b:
2e:17:c4:9b:73:e2:e7:bb:82:4f:1c:25:ae:96:25:89:f4:c0:
08:dd:c8:8f:e2:a4:fc:2c:07:e8:d0:49:2b:0c:e6:cf:99:81:
03:bb:e7:17:ea:83:2b:78:3f:d7:fe:92:50:f8:eb:f6:36:c7:
9e:66:70:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 16:35:00 2025 by rpki-client