Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/32652F9472E511F09A23C0B6DAE4EC9C.roa
File: 32652F9472E511F09A23C0B6DAE4EC9C.roa (raw, json)
Hash identifier: eZURWL+ZrtdxT2rF22IPu3O6ltuid4qJqQt7RblkS5I=
Subject key identifier: C4:E2:1B:BE:C8:F2:CF:75:98:38:92:21:48:85:01:F9:A8:11:8C:5B
Certificate issuer: /CN=F36F731FAF/serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Certificate serial: 031D
Authority key identifier: F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/32652F9472E511F09A23C0B6DAE4EC9C.roa
Signing time: Wed 06 Aug 2025 16:48:37 +0000
ROA not before: Wed 06 Aug 2025 16:48:32 +0000
ROA not after: Tue 06 Aug 2030 16:48:32 +0000
asID: 29571
IP address blocks: 102.213.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.mft
rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 797 (0x31d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F731FAF, serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Validity
Not Before: Aug 6 16:48:32 2025 GMT
Not After : Aug 6 16:48:32 2030 GMT
Subject: CN=68938765-6705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:df:5b:d1:a2:84:51:99:9c:e6:2a:b6:a1:e0:
3e:97:97:b6:44:11:d0:1a:f6:02:1a:7f:e9:da:cf:
21:b1:3e:45:2f:21:01:34:6d:d9:ef:57:2c:8c:92:
7f:74:65:31:31:a6:0d:97:5d:10:29:02:46:9e:44:
84:74:29:1e:d2:3e:95:8e:3a:ab:54:7f:3a:e9:5b:
13:63:9f:4b:b8:3d:e4:cc:f9:12:5f:f6:c1:58:d4:
65:c7:87:89:94:4e:37:20:d3:51:fc:b1:f9:9a:4b:
3b:cc:de:94:04:ea:ed:7d:98:c6:65:9f:fe:01:fe:
39:e5:b1:fd:54:90:7c:e9:b5:79:e7:7e:2e:01:a2:
af:b1:5d:3f:0e:a1:82:21:6c:83:a8:f7:b9:dc:ee:
3e:27:56:cd:2f:3e:d1:50:d9:15:e8:bf:ec:d7:64:
0d:e4:51:67:66:5f:85:d7:5a:d5:02:b1:6a:bb:02:
d3:6c:13:c1:ce:85:32:16:50:4a:e9:fe:8d:26:34:
8f:ce:8c:32:e9:d9:82:f6:27:db:dc:c8:17:02:d2:
92:74:f7:a7:74:d0:9e:8d:ea:70:96:a9:a8:6b:08:
d4:e1:30:e2:81:46:db:af:84:af:01:0b:3d:54:cb:
0f:0c:c2:95:63:07:61:b1:cc:01:d2:e5:d6:74:f4:
a5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E2:1B:BE:C8:F2:CF:75:98:38:92:21:48:85:01:F9:A8:11:8C:5B
X509v3 Authority Key Identifier:
keyid:F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/32652F9472E511F09A23C0B6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.172.0/22
Signature Algorithm: sha256WithRSAEncryption
33:48:4e:cb:4a:70:41:2c:30:3a:84:35:46:ea:e4:62:9a:06:
16:a3:c8:9f:79:18:a9:44:f5:b3:a6:08:c8:a4:34:13:a4:b7:
ee:76:2b:b4:d9:fe:56:d5:46:b2:4b:05:b7:bd:f1:b3:fb:f5:
c4:d7:40:10:5f:4e:81:a0:89:9d:65:e7:3d:ab:e6:c7:6f:e7:
07:96:5c:d2:3e:23:25:62:2a:6e:03:e0:5f:b1:6f:a8:80:6d:
79:e8:b7:6b:dc:2d:cd:36:f7:c9:12:66:f7:15:fc:61:09:09:
65:50:f4:e9:cf:a8:67:46:4f:fc:5c:65:26:82:47:27:78:ec:
4d:05:44:da:fe:62:bb:e5:c2:e9:e9:9a:95:7c:d1:23:c0:b4:
eb:ff:da:f9:a3:7e:ec:11:8e:27:f9:58:34:c8:05:9b:b6:cc:
4f:a7:91:94:24:c7:94:9d:98:9a:d4:12:a2:46:d0:e4:1e:73:
96:e5:96:1f:08:c2:fd:4a:c0:71:d7:ec:74:17:c1:ed:f2:a9:
09:f8:e6:fb:90:ce:c5:e0:66:c1:6c:9e:9c:1b:a2:a4:08:e9:
31:d9:9a:cd:87:e8:95:90:6f:d6:85:14:7c:d5:94:72:ef:a5:
15:27:59:75:8e:44:67:51:ed:4c:ca:c3:92:da:f2:bc:9f:7a:
bb:fd:01:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:12:40 2025 by rpki-client