Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E046F7BE774F11F08D4B6587DAE4EC9C.roa
File: E046F7BE774F11F08D4B6587DAE4EC9C.roa (raw, json)
Hash identifier: TgEPI/inh36w3V2iuSVJHAEI4syRhH6hQT0MK6wvXQk=
Subject key identifier: B7:50:2F:58:D0:01:9B:14:FD:D9:7B:BE:C5:23:21:11:AD:11:49:53
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1585
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E046F7BE774F11F08D4B6587DAE4EC9C.roa
Signing time: Tue 12 Aug 2025 07:42:20 +0000
ROA not before: Tue 12 Aug 2025 07:42:15 +0000
ROA not after: Thu 12 Aug 2027 07:42:15 +0000
asID: 42831
IP address blocks: 102.165.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5509 (0x1585)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Aug 12 07:42:15 2025 GMT
Not After : Aug 12 07:42:15 2027 GMT
Subject: CN=689af05c-ca56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:89:ad:b1:fd:34:e9:c5:5a:b5:d5:19:86:49:
9a:ac:67:50:a5:bf:a9:cc:8e:eb:2e:de:ba:f0:cf:
5b:1a:28:ed:1d:e9:3e:0b:a1:c1:5d:0d:d7:5b:d7:
1f:9d:d4:ac:d6:57:de:37:eb:d0:dc:a4:e0:c3:14:
de:10:08:7a:b4:11:6b:54:53:04:e2:62:83:ea:6d:
9b:d5:4f:a7:a5:ca:4c:d2:ae:49:da:3a:5d:b5:d9:
c5:f4:12:1c:d7:43:05:0b:60:c6:3f:56:8e:29:24:
84:3d:97:33:26:e0:05:cf:a2:b6:43:44:7d:b0:32:
fe:1f:3c:88:fc:a7:a3:12:a9:f5:e5:d9:c0:0a:51:
ca:98:a9:bb:b2:08:a5:69:02:2d:f8:5d:de:22:e2:
d7:d7:6d:11:09:eb:a9:0d:10:52:55:33:29:29:e1:
9d:bb:9f:24:b9:34:aa:6e:9b:f5:35:f7:2a:66:de:
b3:b4:b4:9c:09:7b:7f:1e:2e:fc:c4:5c:9f:18:a2:
c4:81:dd:e8:60:61:d8:f3:01:92:87:ba:e3:88:f1:
32:21:fc:6e:ae:5e:e6:f7:4f:b3:7f:0e:58:a1:c8:
90:63:19:13:f1:13:4e:b6:be:10:84:30:22:f3:b0:
d8:6e:6f:14:71:15:79:f6:a3:6d:bb:61:05:da:2c:
17:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:50:2F:58:D0:01:9B:14:FD:D9:7B:BE:C5:23:21:11:AD:11:49:53
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/E046F7BE774F11F08D4B6587DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.56.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:42:19:ec:54:c9:ab:cb:cc:2b:37:66:d7:28:1d:0d:72:4d:
d2:d4:df:49:0b:48:61:2e:3f:30:42:4d:7a:cc:e5:d3:88:f5:
39:58:8d:dd:51:af:17:a0:a6:8d:aa:e6:37:c8:8c:f6:8c:00:
9e:23:69:d2:fc:fb:cf:94:f5:52:d1:37:bc:4e:1f:de:cd:a7:
e7:04:fd:15:0c:18:43:eb:81:2a:02:af:5e:9a:bb:ea:f5:1a:
31:42:39:b5:65:38:86:9f:b3:53:15:3d:dc:5b:6d:f1:90:3a:
58:8c:4b:3d:79:42:b5:c7:85:52:9a:5d:8c:10:1e:f8:83:32:
4d:61:13:61:88:45:ed:08:c6:5b:45:06:d9:ac:13:c5:f2:54:
22:72:47:19:52:a8:cc:f7:0a:24:d5:eb:70:59:e1:24:55:60:
35:94:10:4d:91:60:d3:7b:94:47:a7:0f:88:09:d0:72:6f:56:
89:d4:8b:39:36:f8:2b:a8:a5:c3:92:58:5e:6c:24:56:41:e3:
fb:9d:96:04:05:02:37:fc:d2:4d:b0:db:2b:52:39:57:bc:75:
92:6c:0d:5f:42:a1:b8:f3:5e:ae:11:28:78:55:9b:2b:8e:23:
64:f6:22:ea:d7:c9:12:f3:ad:aa:f7:3b:b9:22:be:59:ce:67:
cf:45:03:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:18:32 2025 by rpki-client