Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/1F57366AAD9E11F0834ED8B4DAE4EC9C.roa
File: 1F57366AAD9E11F0834ED8B4DAE4EC9C.roa (raw, json)
Hash identifier: Zr7KgVk21J1guGSwDPBmYm/QDl0oDd0+ZlvGGCwRB7s=
Subject key identifier: 29:E9:F8:D3:37:0E:0B:B2:D4:FB:65:BF:5C:78:13:A3:C4:65:31:E9
Certificate issuer: /CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Certificate serial: 0266
Authority key identifier: A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/1F57366AAD9E11F0834ED8B4DAE4EC9C.roa
Signing time: Mon 20 Oct 2025 10:18:29 +0000
ROA not before: Mon 20 Oct 2025 10:18:25 +0000
ROA not after: Wed 31 Oct 2035 10:18:25 +0000
asID: 37577
IP address blocks: 2c0f:f138::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.mft
rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 614 (0x266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CB1BEAF, serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Validity
Not Before: Oct 20 10:18:25 2025 GMT
Not After : Oct 31 10:18:25 2035 GMT
Subject: CN=68f60c75-7953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:44:95:ab:51:ba:1a:b2:a6:f9:dd:19:7b:d4:
dc:2f:7c:94:51:51:6d:ba:00:be:11:50:69:72:2b:
63:cc:b7:cb:08:45:4d:de:9e:8e:5b:df:80:49:02:
87:65:09:56:96:88:38:b5:fb:6c:57:69:39:4f:52:
af:c3:6f:fc:ab:f0:be:59:62:e4:e1:a7:fe:a3:9f:
4b:50:47:b1:e8:20:12:62:92:2a:02:40:c7:20:67:
66:e8:d7:29:46:64:5e:4a:37:32:74:df:c2:66:86:
c2:eb:fc:f8:4c:d7:50:71:7d:13:d5:6f:93:4f:24:
98:c8:c5:3b:ce:3c:4d:ad:2d:0b:61:19:c7:16:45:
c8:8f:b1:0c:13:0b:b0:06:c0:41:97:b5:a8:6f:49:
2d:6b:03:aa:ee:5f:9b:ed:93:4b:af:8e:3a:d4:f7:
96:5e:b2:1e:c7:e4:d1:81:cd:c1:9d:b8:0b:87:7f:
7d:13:37:a3:14:82:a8:58:71:34:46:d4:cf:da:b8:
53:92:b1:c8:00:69:7a:03:54:26:2e:99:97:c1:0b:
ad:1a:24:b9:41:2d:a5:33:24:4f:22:38:df:93:c8:
75:7e:1d:dd:db:3f:c8:88:26:ee:70:80:78:10:6d:
60:0c:33:40:76:51:8c:54:5d:d7:4f:76:e9:3e:5c:
1c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E9:F8:D3:37:0E:0B:B2:D4:FB:65:BF:5C:78:13:A3:C4:65:31:E9
X509v3 Authority Key Identifier:
keyid:A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/1F57366AAD9E11F0834ED8B4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f138::/32
Signature Algorithm: sha256WithRSAEncryption
a4:65:6d:e6:a7:6b:40:1a:5d:f6:4c:47:c2:9f:48:a8:a4:3d:
34:ea:20:4a:41:97:f1:7d:02:9c:05:79:ba:8a:1d:8c:5c:af:
1e:29:49:65:f8:87:43:56:69:bf:3f:3d:c0:fb:8a:42:e6:60:
13:45:c9:88:c2:66:d9:29:02:e2:6a:ff:6f:ca:72:de:b3:8d:
d4:97:d7:91:82:a3:be:33:83:bf:b9:3a:9d:67:ef:03:d5:05:
68:a1:fa:ee:fe:ea:a9:d4:5a:d2:68:6c:95:6a:d5:de:6f:98:
70:69:f0:12:03:5a:be:dd:a9:42:1f:ce:93:80:c2:96:85:77:
44:85:a9:72:14:38:8c:27:27:43:d6:32:a1:80:ee:53:fb:8a:
90:cc:4c:e5:87:2b:24:e1:b9:d8:1c:d8:4d:d9:b8:74:11:47:
48:39:03:6a:f8:1b:1e:17:7f:bb:60:09:5e:fa:e2:86:4a:b8:
5a:2a:58:d9:b6:46:0e:29:87:16:f9:dd:20:eb:dd:13:27:e5:
35:14:8e:ba:9c:35:0d:ed:f3:43:a0:73:4f:b1:b8:5a:d3:71:
76:e8:aa:7c:24:cc:de:ac:23:ac:14:af:e1:d2:ad:c0:49:f7:
1c:73:55:fe:c0:8c:bd:62:cd:f5:b3:fe:bb:3d:15:c1:fb:9d:
46:28:f7:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 17:05:26 2025 by rpki-client