Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/267EAD8272DF11F0AD464C91DAE4EC9C.roa
File: 267EAD8272DF11F0AD464C91DAE4EC9C.roa (raw, json)
Hash identifier: C7Gyg+4x8Hh2iqCcntRO+fHKd/DGeXvmNHuRFLOmz04=
Subject key identifier: D3:1A:77:05:36:36:F8:22:2F:55:C5:8F:5F:1E:FD:95:A5:09:A4:B0
Certificate issuer: /CN=F36F731FAF/serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Certificate serial: 02FD
Authority key identifier: F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/267EAD8272DF11F0AD464C91DAE4EC9C.roa
Signing time: Wed 06 Aug 2025 16:05:20 +0000
ROA not before: Wed 06 Aug 2025 16:05:15 +0000
ROA not after: Tue 06 Aug 2030 16:05:15 +0000
asID: 29571
IP address blocks: 102.209.220.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.mft
rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 765 (0x2fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F731FAF, serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Validity
Not Before: Aug 6 16:05:15 2025 GMT
Not After : Aug 6 16:05:15 2030 GMT
Subject: CN=68937d40-f0b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:13:4c:08:da:4c:3c:ec:f0:42:45:1f:55:b2:
f5:1c:00:34:6f:63:15:36:e4:11:95:3e:71:e6:d3:
f1:60:ca:2c:4c:a7:72:f6:16:20:2f:3c:3b:3a:22:
41:77:ba:09:e9:91:19:09:21:7d:b4:be:4d:0b:70:
17:fa:4b:08:83:57:c2:cf:65:9c:29:98:f1:22:3d:
65:19:10:0e:32:6d:06:22:e4:3f:85:ab:57:03:d9:
eb:87:f7:38:b7:40:da:27:04:b2:2f:8b:a0:a4:97:
f8:05:d5:23:84:b4:a8:e3:ef:36:0d:8e:a6:a3:2c:
95:f9:b6:ff:a3:ac:6f:88:a1:de:e7:34:3e:f3:d9:
7d:e0:cf:ce:2c:a9:f3:e3:b0:db:52:68:a2:17:e7:
38:69:09:e8:c4:b9:44:c9:69:f5:83:af:d6:c5:0c:
52:80:f2:3e:fa:f3:4b:ea:3b:de:6d:d9:83:ce:57:
8b:8f:9b:1b:bb:e5:ea:aa:18:e1:03:c5:30:7f:fe:
0f:7d:c6:2b:17:4e:61:ae:d1:74:18:bb:fa:7e:67:
bf:da:78:60:77:71:e5:43:d5:f2:a1:85:45:95:0c:
a4:a5:68:41:31:7f:15:7a:c3:99:ae:87:03:16:02:
09:ca:26:4e:c4:d6:ff:5f:0a:4e:bf:2f:ee:09:05:
5f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:1A:77:05:36:36:F8:22:2F:55:C5:8F:5F:1E:FD:95:A5:09:A4:B0
X509v3 Authority Key Identifier:
keyid:F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/267EAD8272DF11F0AD464C91DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.220.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:09:b8:25:09:96:36:42:35:e8:ac:d1:a9:e8:f7:c9:87:24:
f1:02:3e:57:00:d3:ef:e5:4a:a3:f3:a6:e3:39:ef:dc:51:62:
f3:6c:35:b1:08:df:ea:41:db:a8:dc:7e:cc:e1:3d:23:fe:39:
27:2d:22:96:5d:d0:ed:3c:9b:f2:0f:21:55:e0:8c:97:ce:85:
eb:b2:67:19:30:c9:c9:51:51:a2:e8:1e:89:66:58:75:c5:6d:
c1:76:dc:38:fe:99:45:6b:39:38:7c:34:ed:57:a8:7c:5a:6e:
21:2e:c6:c1:03:46:f5:a1:25:b8:a8:c7:d6:6c:54:c0:05:71:
63:b2:45:21:d8:56:07:3b:2e:1f:bb:70:8c:a8:b2:4e:78:84:
83:19:e3:b1:37:30:7b:8a:75:d6:ca:26:7f:6e:c9:71:ef:d4:
48:2f:b3:24:f9:93:bf:10:b8:7a:f2:53:6c:51:7f:33:2d:60:
6f:4c:a4:29:50:49:dd:6b:c1:3d:ea:0d:43:8a:e9:94:c4:6f:
0c:c7:1b:84:5d:4c:55:81:a4:3b:89:88:60:4b:3f:f8:41:45:
18:82:60:46:4e:b3:1a:4d:2a:bb:06:12:ca:c7:95:5a:df:98:
83:e3:e0:ca:50:a5:5d:9d:ee:bb:25:8f:ea:9a:69:08:3f:11:
5e:66:46:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 18:34:51 2025 by rpki-client