Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CBA0F/00E1DAE08BBD11EFA1253244762E951A/24A8660424DF11F0A5C536A7DAE4EC9C.roa
File: 24A8660424DF11F0A5C536A7DAE4EC9C.roa (raw, json)
Hash identifier: kvm//OdaPVQ9/XhneP66JlOKnj6P6OX4pnBxmeWkl88=
Subject key identifier: 2F:66:D9:7C:05:AB:5C:22:3E:A8:71:DD:70:41:58:C7:A7:A1:7F:EF
Certificate issuer: /CN=F36CBA0FAF/serialNumber=7F85311D43DEA95F4C148C0843FB2C29D3877CCC
Certificate serial: CF
Authority key identifier: 7F:85:31:1D:43:DE:A9:5F:4C:14:8C:08:43:FB:2C:29:D3:87:7C:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/f4UxHUPeqV9MFIwIQ_ssKdOHfMw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CBA0F/00E1DAE08BBD11EFA1253244762E951A/24A8660424DF11F0A5C536A7DAE4EC9C.roa
Signing time: Tue 29 Apr 2025 09:48:46 +0000
ROA not before: Tue 29 Apr 2025 09:48:42 +0000
ROA not after: Sun 29 Apr 2035 09:48:42 +0000
asID: 329478
IP address blocks: 102.206.160.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36CBA0F/00E1DAE08BBD11EFA1253244762E951A/f4UxHUPeqV9MFIwIQ_ssKdOHfMw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36CBA0F/00E1DAE08BBD11EFA1253244762E951A/f4UxHUPeqV9MFIwIQ_ssKdOHfMw.mft
rsync://rpki.afrinic.net/repository/afrinic/f4UxHUPeqV9MFIwIQ_ssKdOHfMw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 16 May 2025 00:06:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 207 (0xcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CBA0FAF, serialNumber=7F85311D43DEA95F4C148C0843FB2C29D3877CCC
Validity
Not Before: Apr 29 09:48:42 2025 GMT
Not After : Apr 29 09:48:42 2035 GMT
Subject: CN=6810a07e-ea69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:44:64:bf:d1:d3:60:54:25:ef:0d:b3:b1:e0:
48:ca:87:58:76:98:23:ac:50:bb:ce:18:1d:c6:d5:
38:47:8c:aa:62:25:1c:5a:f9:14:62:6d:56:a0:d4:
5d:88:e5:94:83:82:de:5b:52:02:38:4c:d3:2b:c4:
37:24:c3:58:aa:f0:55:6e:3f:bb:87:4d:92:4b:ce:
6c:a4:a1:1d:a3:cb:99:ce:e4:e2:8a:b1:30:4e:e9:
1b:73:55:6b:6c:3a:00:b1:be:53:dd:78:1d:5f:bc:
f4:56:13:6a:52:6e:38:07:1f:57:21:7f:3a:68:30:
1d:71:44:c9:2c:7b:20:30:15:df:01:7b:8b:64:4b:
39:bd:37:12:75:27:ea:d4:d4:0d:03:e9:df:2a:69:
39:c7:c4:a7:6a:a7:15:84:90:65:01:90:23:ef:c1:
2e:9e:6e:78:5c:f6:22:fd:d1:5f:03:5e:4b:bc:c1:
14:fa:1d:d8:72:83:46:c3:5e:8e:cf:0b:26:26:7d:
0e:9c:fe:1f:23:85:af:da:76:5d:fa:d9:fb:47:42:
f9:74:3e:c1:41:81:34:3d:f5:37:30:9c:40:f7:4a:
fe:68:c9:e5:f8:6f:a9:38:7e:7e:35:89:60:35:71:
b8:40:e2:ac:bc:93:1b:f7:bc:c0:f0:d1:b7:ec:90:
4c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:66:D9:7C:05:AB:5C:22:3E:A8:71:DD:70:41:58:C7:A7:A1:7F:EF
X509v3 Authority Key Identifier:
keyid:7F:85:31:1D:43:DE:A9:5F:4C:14:8C:08:43:FB:2C:29:D3:87:7C:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CBA0F/00E1DAE08BBD11EFA1253244762E951A/f4UxHUPeqV9MFIwIQ_ssKdOHfMw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/f4UxHUPeqV9MFIwIQ_ssKdOHfMw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CBA0F/00E1DAE08BBD11EFA1253244762E951A/24A8660424DF11F0A5C536A7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.206.160.0/22
Signature Algorithm: sha256WithRSAEncryption
65:24:75:3b:49:0a:fa:b0:33:7a:54:df:cc:4c:7c:2e:25:65:
26:9d:e7:c5:91:bb:ae:69:9d:39:27:14:55:17:f2:b3:4b:cf:
c4:31:ab:e1:bc:96:4c:27:4b:64:37:d2:d4:10:21:e0:0c:11:
ed:74:a4:9a:a6:fe:f0:7a:d7:7e:65:45:ff:74:7d:29:bb:85:
05:d4:1b:7b:a1:c1:2e:55:0e:47:a3:6a:d4:d3:1d:7f:e0:29:
4e:45:32:82:b0:29:28:e2:a7:8e:35:c0:ed:51:4c:bf:6d:18:
d5:19:55:12:c6:4f:70:1f:f4:75:c5:9e:e1:38:be:59:55:01:
44:9f:b6:c2:76:4a:f6:f8:c5:9b:eb:8a:e2:ad:4a:48:dc:c4:
36:a8:ae:f1:14:98:ac:75:2f:4f:21:98:75:cb:6c:ab:fe:a4:
c8:a4:8e:da:67:b2:12:79:5a:ec:b4:1e:06:84:42:a4:c9:da:
56:fd:bd:e1:62:42:f6:48:38:a9:76:be:35:b5:ac:bd:51:bb:
f7:d5:9e:78:2a:6a:24:b8:a4:4b:6b:36:fc:50:a2:45:af:2c:
2d:6e:5f:f4:1c:6a:6a:8c:c5:0b:4f:3c:00:ca:08:ea:31:c4:
77:10:96:28:e1:30:a7:26:4e:82:57:02:60:b6:70:0b:2f:16:
be:e6:73:38
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
Q0JBMEZBRjExMC8GA1UEBRMoN0Y4NTMxMUQ0M0RFQTk1RjRDMTQ4QzA4NDNGQjJD
MjlEMzg3N0NDQzAeFw0yNTA0MjkwOTQ4NDJaFw0zNTA0MjkwOTQ4NDJaMBgxFjAU
BgNVBAMTDTY4MTBhMDdlLWVhNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCcRGS/0dNgVCXvDbOx4EjKh1h2mCOsULvOGB3G1ThHjKpiJRxa+RRibVag
1F2I5ZSDgt5bUgI4TNMrxDckw1iq8FVuP7uHTZJLzmykoR2jy5nO5OKKsTBO6Rtz
VWtsOgCxvlPdeB1fvPRWE2pSbjgHH1chfzpoMB1xRMkseyAwFd8Be4tkSzm9NxJ1
J+rU1A0D6d8qaTnHxKdqpxWEkGUBkCPvwS6ebnhc9iL90V8DXku8wRT6Hdhyg0bD
Xo7PCyYmfQ6c/h8jha/adl362ftHQvl0PsFBgTQ99TcwnED3Sv5oyeX4b6k4fn41
iWA1cbhA4qy8kxv3vMDw0bfskEwzAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUL2bZ
fAWrXCI+qHHdcEFYx6ehf+8wHwYDVR0jBBgwFoAUf4UxHUPeqV9MFIwIQ/ssKdOH
fMwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkNCQTBGLzAwRTFEQUUwOEJCRDExRUZBMTI1MzI0NDc2MkU5NTFBL2Y0VXhI
VVBlcVY5TUZJd0lRX3NzS2RPSGZNdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2Y0VXhIVVBlcVY5TUZJd0lRX3NzS2RPSGZNdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkNCQTBGLzAwRTFEQUUwOEJCRDExRUZBMTI1MzI0NDc2
MkU5NTFBLzI0QTg2NjA0MjRERjExRjBBNUM1MzZBN0RBRTRFQzlDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJmzqAwDQYJKoZIhvcNAQEL
BQADggEBAGUkdTtJCvqwM3pU38xMfC4lZSad58WRu65pnTknFFUX8rNLz8Qxq+G8
lkwnS2Q30tQQIeAMEe10pJqm/vB6135lRf90fSm7hQXUG3uhwS5VDkejatTTHX/g
KU5FMoKwKSjip441wO1RTL9tGNUZVRLGT3Af9HXFnuE4vllVAUSftsJ2Svb4xZvr
iuKtSkjcxDaorvEUmKx1L08hmHXLbKv+pMikjtpnshJ5Wuy0HgaEQqTJ2lb9veFi
QvZIOKl2vjW1rL1Ru/fVnngqaiS4pEtrNvxQokWvLC1uX/QcamqMxQtPPADKCOox
xHcQlijhMKcmToJXAmC2cAsvFr7mczg=
-----END CERTIFICATE-----
Generated at Wed May 14 11:49:16 2025 by rpki-client