Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/D2AC214272E011F08FD2499ADAE4EC9C.roa
File: D2AC214272E011F08FD2499ADAE4EC9C.roa (raw, json)
Hash identifier: eAUkLW2UflJP71U92dqZlcLwcktEmsvuPM9OK2RRXnQ=
Subject key identifier: DF:09:D6:2C:D6:C6:08:94:6B:4F:46:F9:1D:CE:35:02:52:5B:50:3E
Certificate issuer: /CN=F36F731FAF/serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Certificate serial: 0307
Authority key identifier: F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/D2AC214272E011F08FD2499ADAE4EC9C.roa
Signing time: Wed 06 Aug 2025 16:17:18 +0000
ROA not before: Wed 06 Aug 2025 16:17:14 +0000
ROA not after: Tue 06 Aug 2030 16:17:14 +0000
asID: 29571
IP address blocks: 102.213.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.mft
rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 775 (0x307)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F731FAF, serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Validity
Not Before: Aug 6 16:17:14 2025 GMT
Not After : Aug 6 16:17:14 2030 GMT
Subject: CN=6893800e-033e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:c1:03:b4:c2:76:81:02:c4:0f:b2:f9:f3:97:
76:74:ad:04:73:53:aa:b4:fd:4b:c9:89:48:e3:c1:
cc:02:0e:3d:e8:6b:cc:d7:a5:a1:dc:b5:68:03:27:
b8:1c:e3:f7:96:47:d1:c9:91:d1:e6:0c:3c:c7:e4:
da:49:7f:e1:77:26:10:85:64:9f:86:7a:4b:3b:68:
e1:63:7e:6b:1c:cc:7a:ab:c8:6f:5e:14:c5:91:94:
f0:35:10:4f:84:27:8d:ee:9a:d3:20:15:c9:23:26:
fd:05:1b:79:23:ba:4a:51:64:42:2d:0d:d6:cd:2a:
19:31:31:72:35:36:b3:70:28:a8:ec:ff:68:64:5b:
f5:34:0a:8a:6c:08:10:1f:0a:dd:a6:34:9c:66:bc:
63:50:b2:a6:c8:e9:12:5c:76:0d:9a:8f:99:94:df:
04:14:b4:87:24:bb:ef:ea:3f:85:ea:ea:a3:35:c3:
f2:a9:fa:20:c6:b3:7f:f6:eb:29:33:f3:1e:45:a8:
57:b7:64:46:e1:78:39:7a:d2:84:76:31:8d:7a:75:
38:dc:83:af:d4:a3:ec:99:70:3f:b2:44:41:1c:7a:
9b:cc:43:89:5d:39:21:c6:a7:00:1e:fa:c3:a4:a9:
9b:27:c3:f0:36:25:13:de:43:91:3f:eb:79:f9:56:
d5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:09:D6:2C:D6:C6:08:94:6B:4F:46:F9:1D:CE:35:02:52:5B:50:3E
X509v3 Authority Key Identifier:
keyid:F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/D2AC214272E011F08FD2499ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.213.112.0/22
Signature Algorithm: sha256WithRSAEncryption
71:9a:df:e0:d5:f2:14:58:4f:82:c9:7c:97:c8:4b:6f:98:1a:
a0:76:3e:fc:12:c1:cc:1d:11:de:31:73:fc:78:2c:7e:0a:b1:
3b:68:ec:b2:ff:20:ac:53:a8:4f:7f:a6:81:1d:92:8d:fa:2e:
80:84:f4:43:6e:93:15:7c:45:1d:3e:9a:7a:c7:a9:5d:32:b4:
da:46:f3:b6:77:a1:c4:e1:8f:ee:fa:bb:77:23:16:27:ff:d8:
8d:98:34:9f:4e:6a:3c:53:4e:f9:71:ab:3f:38:f5:8f:69:db:
31:cf:88:99:de:8e:cf:ef:f1:95:ae:7e:b8:00:0c:72:1b:d1:
26:12:d0:13:4b:c2:b7:a4:1b:fc:55:bb:29:0d:b3:38:d5:bc:
57:4a:ef:b0:e4:bf:6f:f9:6f:e1:64:35:78:b3:eb:e2:1a:66:
b4:f9:39:49:8c:89:2f:d5:f8:ad:12:f8:9f:a6:37:25:40:92:
25:8a:04:f3:be:56:a8:bc:20:0f:7b:dd:74:32:4d:71:7f:38:
5b:d9:28:b4:e7:8b:8a:bc:aa:fa:4f:e7:85:f2:7e:f2:e1:d7:
8c:6c:59:f2:71:f8:bf:0e:6c:79:e3:f1:a0:01:b1:a7:10:52:
c4:a8:bc:14:54:93:28:0b:98:4d:bd:ae:42:5c:a1:31:f2:bd:
cc:06:a8:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:10:45 2025 by rpki-client