Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/AC4C550A4B7E11F0BD654AC5DAE4EC9C.roa
File: AC4C550A4B7E11F0BD654AC5DAE4EC9C.roa (raw, json)
Hash identifier: 15xpej28X/vGApWuxPElY4Ww4kzxuqOfNowMCH4ZDRw=
Subject key identifier: DA:02:13:3E:C5:17:28:FC:04:2B:AE:0E:8B:D6:5B:24:91:D4:16:9E
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 150A
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/AC4C550A4B7E11F0BD654AC5DAE4EC9C.roa
Signing time: Tue 17 Jun 2025 13:26:30 +0000
ROA not before: Tue 17 Jun 2025 13:26:23 +0000
ROA not after: Thu 17 Jun 2027 13:26:23 +0000
asID: 7029
IP address blocks: 102.129.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 01 Jul 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5386 (0x150a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 17 13:26:23 2025 GMT
Not After : Jun 17 13:26:23 2027 GMT
Subject: CN=68516d06-fbb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:82:b6:6d:aa:6d:02:7f:cf:47:61:76:14:ae:
09:2a:9c:0b:ae:75:a8:72:7c:6f:70:90:23:f5:62:
88:ec:e3:28:9e:8e:67:5a:5e:d6:4c:ed:7f:8e:f3:
49:39:b1:cb:86:0d:5c:8d:d8:e7:e9:5d:f4:e6:72:
4e:f5:c8:ca:99:7d:68:1d:24:69:9b:84:b7:e1:38:
38:3b:be:f8:b3:d5:44:f3:ae:39:78:52:1c:1c:77:
b8:c1:b7:2e:0e:ae:93:69:1b:bc:28:42:ef:07:21:
a3:78:bf:90:f7:82:8b:1b:55:89:a9:8c:f4:09:87:
0d:f7:af:ab:dc:53:d2:e6:de:41:bc:4b:94:86:56:
8b:9e:5d:50:1a:38:19:1c:80:a0:7e:2e:a9:d0:7e:
cc:12:8b:07:7d:ba:7f:22:7a:67:d3:bd:01:17:d0:
2e:8c:2e:1e:c6:43:0c:f6:f3:65:80:b9:f7:fc:af:
7e:77:52:f8:83:d7:e7:43:33:e9:81:06:a3:08:6e:
07:7d:a8:b7:92:e0:cb:33:b7:c0:39:54:c0:64:1d:
e0:fa:3f:cf:af:e7:81:b1:3a:50:4f:3f:28:2a:81:
4c:e0:7e:b7:eb:e1:90:ec:81:27:3e:1f:ef:c9:29:
3a:c1:81:fd:a9:a1:16:76:10:c7:3f:c9:6d:ff:fd:
31:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:02:13:3E:C5:17:28:FC:04:2B:AE:0E:8B:D6:5B:24:91:D4:16:9E
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/AC4C550A4B7E11F0BD654AC5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.247.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:62:f1:a6:ae:2a:49:9b:63:4d:1a:f4:83:ca:97:21:b8:ef:
83:51:8b:b2:c6:b1:fa:35:e8:4c:4c:1c:e8:36:81:b4:a1:66:
8e:3a:40:0a:4c:92:c2:07:8b:a6:17:53:15:34:a7:6f:4c:c1:
18:b2:2b:d9:42:ad:db:f4:a0:de:65:8e:3a:28:c4:d5:07:33:
38:45:60:84:c5:fd:ed:73:53:d7:a8:d1:0a:c3:a1:00:ed:a0:
32:e8:85:49:2f:24:9d:2e:8e:08:e2:43:18:28:9d:7b:d8:eb:
c1:a2:c0:1b:dc:f2:86:3b:65:01:2a:ff:30:ad:b8:0b:4c:f8:
8f:06:53:8b:31:49:fa:f0:97:97:ad:a5:86:9f:47:de:12:98:
6d:02:9d:53:e4:75:3b:f5:fc:d3:15:01:da:f4:03:f7:8f:c6:
d3:6f:cc:f3:ff:f8:fa:37:15:96:c3:65:c4:2a:4a:67:1d:74:
7c:55:1a:e3:d0:94:03:94:ea:0d:52:8c:df:36:97:de:21:05:
49:69:a6:31:f1:0d:83:71:44:1c:df:21:cf:59:93:9d:02:d0:
f3:57:67:c3:e7:ef:ea:30:24:07:2f:3b:45:35:7f:8c:8d:61:
8a:d5:d1:c3:4e:6a:d4:1f:5e:c2:ca:1a:c5:25:29:57:7e:68:
fa:6a:3e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 08:04:58 2025 by rpki-client