Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/DD22D36872E111F0AC53A5A2DAE4EC9C.roa
File: DD22D36872E111F0AC53A5A2DAE4EC9C.roa (raw, json)
Hash identifier: QuCk5ffNaczjJdVdreAb3kkct9VCmQhrEAkYSnzbe2o=
Subject key identifier: 69:4C:6A:D5:33:54:C4:E6:FC:5E:02:8D:A4:1A:DE:FE:83:06:33:9A
Certificate issuer: /CN=F36F731FAF/serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Certificate serial: 030D
Authority key identifier: F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/DD22D36872E111F0AC53A5A2DAE4EC9C.roa
Signing time: Wed 06 Aug 2025 16:24:46 +0000
ROA not before: Wed 06 Aug 2025 16:24:41 +0000
ROA not after: Tue 06 Aug 2030 16:24:41 +0000
asID: 29571
IP address blocks: 41.207.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.mft
rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:06:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 781 (0x30d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F731FAF, serialNumber=F5C0B63BAA5E7AF7A4386B637FD1206A3682D0C3
Validity
Not Before: Aug 6 16:24:41 2025 GMT
Not After : Aug 6 16:24:41 2030 GMT
Subject: CN=689381cd-d03c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e0:ae:9f:d0:83:cb:a1:02:39:31:5a:da:e1:
38:fb:c5:cb:c4:dc:c6:fe:a1:c1:bf:39:14:27:03:
ef:20:08:ea:e2:a2:4b:41:e5:f0:1a:54:9d:ac:c6:
ce:e3:97:35:a3:ef:7a:65:e5:f3:b3:76:93:b9:45:
00:e2:1a:79:26:07:82:af:53:00:f7:9c:16:b3:2e:
7b:98:79:4f:12:f9:a8:de:07:da:0f:69:dd:89:48:
b7:06:f1:93:ec:e6:e2:3d:e2:1c:22:fd:6d:6a:66:
ba:99:f2:f2:ca:7b:94:75:62:a4:84:6e:12:9c:87:
90:4d:79:f6:c1:89:55:2f:be:55:f2:c3:17:24:5f:
02:29:ad:47:dc:ad:bb:a3:b7:e9:a3:37:3a:cb:69:
72:7a:0e:a9:89:c1:46:53:05:9a:19:27:f7:17:ae:
e3:6d:d2:42:80:4f:bb:39:30:c2:a5:a2:07:1e:7f:
67:55:cf:0f:3e:e2:62:24:7e:76:cd:fc:1f:07:78:
b3:8b:a4:e6:c5:ea:3b:db:59:5c:be:9f:4c:43:7f:
81:15:06:ff:81:92:3b:96:2b:cf:6f:36:c3:27:35:
55:ed:fd:00:95:4d:80:c5:25:c2:46:3a:91:e9:fb:
62:8e:2d:99:8f:c4:41:11:be:fb:11:b8:f7:1b:c7:
3a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:4C:6A:D5:33:54:C4:E6:FC:5E:02:8D:A4:1A:DE:FE:83:06:33:9A
X509v3 Authority Key Identifier:
keyid:F5:C0:B6:3B:AA:5E:7A:F7:A4:38:6B:63:7F:D1:20:6A:36:82:D0:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/9cC2O6peevekOGtjf9EgajaC0MM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9cC2O6peevekOGtjf9EgajaC0MM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F731F/A187DF92379711EEA4C498314AD9E6FC/DD22D36872E111F0AC53A5A2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.207.0.0/19
Signature Algorithm: sha256WithRSAEncryption
2d:b8:f9:95:90:ab:b7:99:57:8c:eb:e5:12:10:ed:08:eb:35:
0c:28:91:64:90:89:3a:4f:0e:c4:e2:5a:c8:b1:e3:74:de:64:
2c:94:90:eb:59:b1:2b:4b:3e:e9:8e:16:da:ec:38:e8:8c:18:
c2:d0:c7:d8:c8:79:ba:7e:ab:d8:19:ea:d2:36:7d:55:b4:ca:
65:59:d0:62:f3:39:6d:79:ae:8e:87:27:2a:c4:14:db:1d:46:
c0:2c:36:29:7d:d2:9f:8a:67:86:3c:6b:58:99:6c:d5:10:6b:
7a:1e:28:29:00:6b:16:87:41:b5:b0:d1:28:12:f7:24:fa:a6:
1a:2f:37:4b:1c:b6:4f:23:6f:73:ae:54:8c:e5:65:d1:86:67:
93:cf:c5:c7:53:b1:bd:81:74:f5:c5:ee:40:f8:60:b8:ae:0d:
e4:7e:99:c0:2d:5a:bb:36:40:9d:2e:cd:f9:a3:fb:de:b3:3c:
5f:f2:11:2a:55:18:c7:ea:d8:f2:ba:12:f9:30:b8:22:44:ca:
0a:93:29:74:ea:0e:d9:81:47:ce:2b:98:66:f8:ab:c2:1d:0e:
73:f5:24:a7:eb:32:c4:fa:f4:57:6e:4c:26:85:92:00:11:d2:
53:6a:56:5e:42:cc:e6:6c:0a:cb:ef:72:fb:7c:52:5b:a9:b2:
3c:ae:3f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:12:42 2025 by rpki-client