Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/91475E9A72E211F09C8B08A7DAE4EC9C.roa
File: 91475E9A72E211F09C8B08A7DAE4EC9C.roa (raw, json)
Hash identifier: dmA6rvzXEJFKOZ61W1TI8NubIg9lNoADQlry0wfROZM=
Subject key identifier: E5:74:CA:FA:94:43:21:AD:5C:56:E0:49:C5:45:EE:66:19:58:0A:85
Certificate issuer: /CN=F36F731FAF/serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Certificate serial: 0313
Authority key identifier: F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/91475E9A72E211F09C8B08A7DAE4EC9C.roa
Signing time: Wed 06 Aug 2025 16:29:48 +0000
ROA not before: Wed 06 Aug 2025 16:29:43 +0000
ROA not after: Tue 06 Aug 2030 16:29:43 +0000
asID: 29571
IP address blocks: 41.66.0.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.mft
rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 787 (0x313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F731FAF, serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Validity
Not Before: Aug 6 16:29:43 2025 GMT
Not After : Aug 6 16:29:43 2030 GMT
Subject: CN=689382fc-b8d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c2:50:f1:5e:38:fb:ad:3b:03:18:ee:04:41:
48:56:87:5c:46:76:3e:bf:7d:e8:eb:35:4c:89:31:
11:dc:f0:a7:10:ed:84:65:69:ba:82:74:ae:b6:ce:
66:5b:98:db:4e:1f:68:fc:39:40:6d:be:38:f1:96:
02:7d:cb:dd:96:1e:61:5d:79:18:b5:2c:89:f1:fd:
9e:ea:3a:6b:44:52:74:00:f9:5b:12:6d:24:4c:6d:
50:49:b0:c7:40:ae:22:76:87:5f:e8:ba:8c:e3:f5:
ab:64:c1:a8:99:cf:62:f3:a9:fe:89:80:9d:28:da:
54:44:91:d0:1f:ee:cf:67:54:54:67:56:3d:c0:29:
32:6f:a4:7a:47:36:ad:46:ac:09:67:d9:28:5c:fc:
ee:ae:5c:ba:04:3f:a1:0a:1c:f3:97:ad:d3:cc:4d:
61:5a:f9:71:88:cf:03:8f:19:47:7e:d1:26:4d:76:
d4:1e:69:1c:c6:f0:c7:b4:7e:cb:7a:31:da:bc:94:
b1:54:74:67:a5:d0:aa:a2:e9:c1:1f:d9:e1:2e:91:
86:9f:c7:9f:90:4f:11:85:ab:71:76:f4:ea:d5:ed:
cf:f6:53:02:ea:52:08:72:4c:0b:d3:3e:c2:ec:69:
75:56:79:3b:37:0b:97:75:1d:cc:4d:16:70:17:80:
33:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:74:CA:FA:94:43:21:AD:5C:56:E0:49:C5:45:EE:66:19:58:0A:85
X509v3 Authority Key Identifier:
keyid:F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/91475E9A72E211F09C8B08A7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.66.0.0/18
Signature Algorithm: sha256WithRSAEncryption
59:a4:12:49:e3:92:cd:f4:77:d6:56:15:b8:df:2d:8b:ee:bc:
86:5b:1f:9f:d7:c8:a3:c5:2d:bc:df:3d:22:46:21:73:a6:16:
6d:a2:52:88:a0:35:3e:d3:b6:cf:83:5c:6b:ec:5a:ec:6e:fc:
e8:ac:dc:cd:17:c1:78:72:74:00:1b:73:6f:6f:01:e6:4a:c7:
33:0d:a2:92:ac:88:02:df:6a:79:9d:3a:72:1b:54:94:f7:c8:
22:75:40:c2:de:0a:97:7d:ed:21:f8:8e:9a:e7:29:f4:cf:c5:
49:37:43:cb:30:79:27:ef:3f:a5:c5:ab:d5:02:93:24:e0:3f:
73:91:ce:e3:f4:9d:19:0f:77:27:58:c5:e7:c7:f3:b9:06:1d:
1b:bf:7c:26:b3:fd:3b:ff:ff:1b:87:1c:15:a0:01:43:5a:6e:
ae:84:e2:e3:3b:f3:10:d6:75:a9:0e:29:ae:85:4d:0b:02:5f:
ff:d0:b9:20:27:46:e2:aa:3f:7f:28:8c:6f:2a:b2:16:7a:af:
4a:c7:50:cf:26:5e:9a:fc:67:96:63:27:85:d6:66:90:ee:f1:
f6:4e:67:ce:4f:62:59:76:4b:fe:ba:a7:f7:36:c9:b2:94:d1:
23:45:23:f4:fb:90:4d:c5:82:e6:d8:49:67:22:65:0a:e8:5b:
e6:22:71:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:18:30 2025 by rpki-client