Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7EEC0AC44B7E11F0B10DEAC4DAE4EC9C.roa
File: 7EEC0AC44B7E11F0B10DEAC4DAE4EC9C.roa (raw, json)
Hash identifier: nPUYMJNaXphdGwOwDmimZxa/aZmMY49VWRKTWjxP4Bg=
Subject key identifier: E1:F2:9B:1F:8E:A1:E7:B1:72:EF:1C:48:D0:1D:EA:19:F9:65:03:F4
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1508
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7EEC0AC44B7E11F0B10DEAC4DAE4EC9C.roa
Signing time: Tue 17 Jun 2025 13:25:12 +0000
ROA not before: Tue 17 Jun 2025 13:25:07 +0000
ROA not after: Thu 17 Jun 2027 13:25:07 +0000
asID: 7029
IP address blocks: 102.129.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 01 Jul 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5384 (0x1508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 17 13:25:07 2025 GMT
Not After : Jun 17 13:25:07 2027 GMT
Subject: CN=68516cb8-91ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b9:55:b6:fe:14:4b:d6:26:52:5c:9a:08:5b:
a3:19:be:a4:44:d7:83:df:f4:c9:6f:ba:a5:42:ff:
53:4d:4d:e3:72:9d:b1:cb:2b:5f:c4:93:cf:c4:08:
65:72:e6:44:5d:73:f5:c5:44:19:e2:5c:ba:1e:fc:
21:bf:c5:fb:8d:e6:66:0c:2c:7a:c3:05:56:bf:95:
29:a5:38:25:a5:71:5d:36:45:3f:75:f1:44:87:57:
13:d6:97:2c:7f:c9:e2:38:77:c4:34:a6:b6:d7:59:
3c:f6:bc:48:eb:f7:ad:83:05:90:55:21:0b:1b:55:
5e:98:fa:d8:b2:fb:28:1d:c2:a2:54:20:86:3f:cc:
36:6e:26:df:58:cd:18:4a:11:97:03:7e:ae:d1:44:
b8:b1:50:ee:b2:8f:b1:34:d5:f4:61:ac:c5:d4:d3:
2b:da:69:6d:8b:d5:1e:1e:88:73:f1:c1:82:10:03:
9c:58:1d:01:4c:79:22:55:7a:cb:be:84:e2:f2:2b:
7b:79:3a:33:8c:ab:6c:9c:c0:68:42:bc:27:6d:58:
61:b6:c5:c8:7f:9b:6a:ed:cb:74:3e:05:99:23:3a:
4b:c3:e7:d7:ea:eb:ea:53:88:6e:6e:8a:53:67:84:
c8:8e:50:cd:55:6f:0c:ac:ca:5d:9f:3e:1b:8e:6e:
cf:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F2:9B:1F:8E:A1:E7:B1:72:EF:1C:48:D0:1D:EA:19:F9:65:03:F4
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7EEC0AC44B7E11F0B10DEAC4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.244.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:c3:ba:4f:fb:9f:d4:87:2a:42:6f:7f:81:4c:74:11:53:b2:
19:94:cb:b0:f2:09:7b:22:c9:86:51:66:5c:fb:18:11:c3:46:
cc:17:c7:b8:69:b7:b2:ad:79:55:4c:e6:5b:c6:9b:cd:3a:09:
d9:62:7b:19:c5:b3:ed:b0:5a:4e:80:02:a7:b6:6d:e0:2d:18:
f8:91:ec:ac:de:c2:59:9b:09:3c:e9:d4:eb:c8:2e:a2:da:d4:
6c:d3:12:52:02:98:76:48:4f:cc:d8:17:c6:e4:42:fb:3c:c6:
d2:71:d0:cf:96:38:b6:53:c0:10:41:0e:08:42:e3:21:0d:b3:
52:ee:a0:0e:a8:5c:25:f9:5f:47:f4:04:e7:e6:4e:79:4a:b0:
fe:f9:26:e1:87:0c:20:97:ad:1b:02:91:2b:f3:d6:9f:c1:4a:
e8:6f:4f:b9:48:ce:6b:34:88:be:b8:09:35:49:c5:fb:3e:16:
75:d1:22:48:b0:32:10:5a:bd:d5:12:64:63:cf:35:52:df:cf:
75:e8:ea:c7:19:6f:37:e9:4f:f7:0c:49:8e:aa:f3:7b:83:b4:
1d:7f:ea:94:0a:b5:e5:97:b6:a0:94:7b:09:d4:04:07:25:32:
61:63:47:26:20:fe:2a:6b:2e:5c:a1:cd:ce:9c:21:71:83:3f:
2d:ad:6d:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:27:25 2025 by rpki-client