Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/2539CEB072E011F08CD40396DAE4EC9C.roa
File: 2539CEB072E011F08CD40396DAE4EC9C.roa (raw, json)
Hash identifier: hShops0GwFAXo5gbF/S8a7PguYniu2oQp8CEizQK5tY=
Subject key identifier: C9:33:8C:D0:66:A1:5A:DE:8C:65:30:8E:B5:0E:AC:B1:A1:0A:BB:1E
Certificate issuer: /CN=F36F731FAF/serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Certificate serial: 0305
Authority key identifier: F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/2539CEB072E011F08CD40396DAE4EC9C.roa
Signing time: Wed 06 Aug 2025 16:12:27 +0000
ROA not before: Wed 06 Aug 2025 16:12:23 +0000
ROA not after: Tue 06 Aug 2030 16:12:23 +0000
asID: 29571
IP address blocks: 102.210.80.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.mft
rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 773 (0x305)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F731FAF, serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Validity
Not Before: Aug 6 16:12:23 2025 GMT
Not After : Aug 6 16:12:23 2030 GMT
Subject: CN=68937eeb-0dee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:53:47:4f:33:22:d7:97:e5:f7:61:b9:33:d0:
be:5a:31:aa:b7:d1:de:b6:99:15:7d:12:e3:11:a1:
9d:40:30:91:51:e6:9f:d8:fe:ad:ef:68:fd:6f:c4:
60:a7:90:cb:92:c4:2d:b5:6e:05:9a:f6:4e:ce:e9:
fa:27:7b:71:9c:89:9b:42:24:22:c9:6a:8f:01:b7:
ef:99:31:ae:12:68:43:61:42:f7:ff:b2:05:2c:dc:
b4:cf:d7:3d:d1:c3:af:5a:12:a8:4d:8f:37:01:ee:
b6:3e:c1:f7:fb:3b:37:e1:d6:ce:02:11:c5:f4:68:
18:be:e1:d5:0d:4d:83:b9:7c:3e:be:1f:73:19:1b:
3a:80:41:0f:76:13:2d:36:c1:93:4f:5c:ff:7c:7a:
24:b3:10:be:6e:59:8f:19:37:d3:fc:d2:24:ba:67:
4c:79:3f:ea:02:e7:83:56:ec:e0:d5:53:66:10:2e:
21:a4:95:a2:4e:a8:3d:02:6f:b2:36:fc:09:16:b0:
ea:25:25:3d:1f:87:a9:6e:9f:1c:0a:b5:12:d2:5f:
2e:1b:e5:8b:fe:5f:4e:05:88:5d:48:14:8a:05:5f:
0a:1e:c8:2f:fa:f4:4e:ca:72:45:20:a1:31:4c:10:
f5:12:f0:70:d8:d9:83:40:96:c9:ee:13:7f:c7:e7:
6b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:33:8C:D0:66:A1:5A:DE:8C:65:30:8E:B5:0E:AC:B1:A1:0A:BB:1E
X509v3 Authority Key Identifier:
keyid:F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/2539CEB072E011F08CD40396DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.80.0/22
Signature Algorithm: sha256WithRSAEncryption
65:db:94:b4:51:ec:ef:c9:fa:52:f4:96:f1:e2:45:67:06:eb:
d3:49:d5:6a:1e:58:a1:68:69:83:ab:f5:51:92:c2:c5:5a:f4:
3e:f8:08:75:b1:e4:35:8f:cd:96:2f:1c:61:70:9f:06:b0:6d:
47:e5:67:88:b9:c4:37:97:a7:ab:05:13:3c:db:4c:d6:4b:41:
c5:1e:0c:ce:48:a3:a2:fc:14:0e:d7:eb:80:15:9d:dd:d9:f3:
9a:f3:35:c9:93:40:4a:7f:ce:7f:4e:6a:04:c3:9b:17:a6:b0:
53:3b:43:ba:33:9e:ea:20:31:5a:9f:02:eb:d5:72:69:f2:e9:
5b:24:8d:ad:44:2f:5c:f2:4b:b5:99:85:31:2f:ea:4c:f0:8f:
1a:ae:de:67:39:a4:e1:22:2c:ba:f0:d7:3d:c0:13:d8:b8:16:
f6:23:c6:3e:0d:ae:0b:9a:58:c9:1d:44:cb:6d:ef:32:bd:a1:
b2:db:49:88:45:47:17:54:e8:06:ce:59:56:18:51:c9:e7:af:
11:96:62:d9:0e:a1:36:b0:bc:fb:83:a7:63:98:3f:31:f4:4b:
03:e1:9c:f0:31:a1:74:ef:d5:08:c4:f2:f1:8a:22:6d:11:f7:
a0:e8:d2:d4:ab:5b:fd:4b:07:e5:f5:85:75:a5:fe:22:cd:47:
ca:37:7b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:42:29 2025 by rpki-client