Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/22518D92508411F0826E3AF4DAE4EC9C.roa
File: 22518D92508411F0826E3AF4DAE4EC9C.roa (raw, json)
Hash identifier: EF6bTXfWBzzaClQqi7lC/mW1TWW3PpSaQ+RMKUgfCww=
Subject key identifier: 3B:F1:41:BD:0C:E0:9E:BA:36:5C:4B:81:C6:87:E4:53:05:FC:F8:4B
Certificate issuer: /CN=F36CB1BEAF/serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Certificate serial: 01E7
Authority key identifier: A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/22518D92508411F0826E3AF4DAE4EC9C.roa
Signing time: Mon 23 Jun 2025 22:48:09 +0000
ROA not before: Mon 23 Jun 2025 22:48:03 +0000
ROA not after: Thu 31 Jul 2025 22:48:03 +0000
asID: 37577
IP address blocks: 2c0f:f138::/64 maxlen: 64
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.mft
rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Jul 2025 00:06:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 487 (0x1e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CB1BEAF, serialNumber=A5F0A2BB8B79EDD6D37C077ADFEA082514C0420F
Validity
Not Before: Jun 23 22:48:03 2025 GMT
Not After : Jul 31 22:48:03 2025 GMT
Subject: CN=6859d9a9-531f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cc:dd:14:2a:1e:46:02:a6:4d:a8:9d:66:f7:
4c:ec:68:9e:37:c3:b7:bb:f1:be:d8:f2:c4:c1:57:
e9:22:56:5d:fb:a4:7a:ac:06:9f:c8:b2:44:c0:26:
10:82:9d:07:72:a4:f4:c1:e8:50:95:8e:db:cd:cf:
18:b4:86:c4:56:8f:bf:a1:87:16:b9:7a:c8:06:9a:
7c:5f:3b:33:59:1a:e6:a4:19:cd:e1:74:45:49:8d:
41:68:bf:02:cc:f4:8b:a7:af:6c:c3:13:f3:46:51:
34:f9:68:f3:0b:21:8e:30:45:2e:d5:46:aa:b5:f3:
a4:35:8a:41:d5:46:49:93:2a:0c:2a:5d:ea:60:b7:
ff:7e:46:b3:2d:f5:47:e6:bc:2b:44:b2:d1:f9:e1:
ed:93:4a:73:ea:a3:47:bc:67:ed:f4:c5:b1:c9:93:
64:54:81:56:06:21:43:1f:36:4e:08:ad:22:3a:e0:
5a:76:64:34:62:db:cb:28:cf:27:96:cc:39:3f:b7:
94:13:c1:4a:37:ea:c0:ea:bf:43:bb:ee:15:b8:56:
cd:7f:f2:ed:73:eb:33:0d:fd:33:87:21:f4:93:c2:
fc:71:21:56:0e:7b:81:11:2f:84:a0:77:d9:71:61:
65:d0:5b:c0:39:8b:a3:1f:c7:db:41:33:a2:81:54:
8f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F1:41:BD:0C:E0:9E:BA:36:5C:4B:81:C6:87:E4:53:05:FC:F8:4B
X509v3 Authority Key Identifier:
keyid:A5:F0:A2:BB:8B:79:ED:D6:D3:7C:07:7A:DF:EA:08:25:14:C0:42:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/pfCiu4t57dbTfAd63-oIJRTAQg8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/pfCiu4t57dbTfAd63-oIJRTAQg8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CB1BE/F3228E86F0EE11EEA3BE0F58775412E6/22518D92508411F0826E3AF4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f138::/64
Signature Algorithm: sha256WithRSAEncryption
c7:84:d9:24:27:71:d6:62:e6:f6:d1:0b:c9:0c:61:14:40:d3:
54:fd:bf:02:83:fa:6e:2c:02:80:0a:3d:ce:d3:a5:b0:c1:a5:
aa:3d:aa:a1:91:4a:cf:3e:cc:53:99:76:d8:29:27:ee:47:25:
73:5c:3a:e4:1e:e0:f9:c4:f1:af:d7:f7:36:16:da:2a:3a:d3:
0a:90:1b:cb:dd:58:09:16:da:0a:c6:4b:c1:6d:a2:8e:ff:39:
fa:2d:f7:b0:cd:0b:15:a5:3f:c8:6c:3f:b4:3d:f5:6f:e5:16:
bf:48:c8:54:e4:a8:ec:ba:b5:52:f3:89:2d:59:5f:7b:8e:1c:
7b:68:ff:34:f8:67:8f:95:1e:26:5e:22:5a:76:88:c1:9b:aa:
f8:f3:e7:c2:33:8e:69:f4:e5:2f:6c:12:ca:57:f3:79:05:20:
54:49:ed:3a:80:0d:ad:2a:60:aa:6b:96:6d:bf:a5:3c:cb:46:
bb:b3:7a:78:f1:de:ed:53:82:95:96:a0:9a:c9:ba:24:bc:01:
6c:7a:75:3d:9b:8f:89:f7:14:df:c5:47:44:53:d0:97:d0:c2:
11:34:96:0a:b1:16:44:f9:8c:36:bc:01:f7:8d:0c:c3:3d:57:
1a:b5:80:3f:69:84:84:e7:f8:06:e9:2f:ea:0f:c2:df:b4:cd:
07:c4:97:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 07:08:13 2025 by rpki-client