Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/76F95E68502711F0AE35B7A9DAE4EC9C.roa
File: 76F95E68502711F0AE35B7A9DAE4EC9C.roa (raw, json)
Hash identifier: iqAG/JSXJHrKb8qtb4+Yi8rkdWFLG5/7+aVu8ePaoNY=
Subject key identifier: E3:A6:90:B8:13:38:2B:59:B0:C9:5F:C0:8B:DF:EA:58:1E:E5:87:BE
Certificate issuer: /CN=F36FC6C8AF/serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Certificate serial: 0149
Authority key identifier: 25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/76F95E68502711F0AE35B7A9DAE4EC9C.roa
Signing time: Mon 23 Jun 2025 11:44:48 +0000
ROA not before: Mon 23 Jun 2025 11:44:44 +0000
ROA not after: Sat 23 Jun 2035 11:44:44 +0000
asID: 37680
IP address blocks: 2c0f:f9a8:8000::/36 maxlen: 36
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.mft
rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Jul 2025 04:51:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329 (0x149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AF, serialNumber=2511BAD4078D4672ACF4324299218CE4855D039D
Validity
Not Before: Jun 23 11:44:44 2025 GMT
Not After : Jun 23 11:44:44 2035 GMT
Subject: CN=68593e30-e899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:49:55:82:8a:5c:e4:25:af:e1:f3:72:c3:71:
38:c7:ae:cd:44:41:97:db:20:e2:5a:98:a9:e1:8d:
a4:fa:ca:b0:1c:fc:01:fe:48:20:03:a3:11:0b:6b:
06:c1:4b:c1:36:cd:7e:f5:f3:9c:ab:94:99:46:cf:
9d:42:c7:be:c4:a5:fd:cc:ae:24:90:f0:6c:a2:1e:
7c:ed:c7:fd:60:3a:ca:4f:70:bc:b0:bd:8f:6c:b6:
f9:8c:b9:d1:4e:db:10:7a:19:c4:91:03:20:50:83:
8f:79:70:0d:6c:56:a6:2d:eb:79:9a:6c:f3:ec:bb:
e4:85:96:70:79:97:02:85:d1:5b:c0:a4:da:00:c0:
8f:70:12:86:ef:74:10:84:81:67:aa:f0:2b:ff:99:
c2:52:42:e8:15:af:63:4d:98:5c:74:7b:e3:24:ff:
2f:6e:2d:d3:11:d5:8e:f0:86:49:83:d8:81:1b:05:
a0:c5:2b:ab:af:0e:80:af:35:3e:00:ae:05:74:1d:
88:7b:a7:ba:d0:fa:a4:4d:cb:2e:e1:fa:82:65:82:
fd:b3:25:fd:02:ae:32:32:62:8b:f4:fc:29:f3:d7:
79:5e:3a:7c:04:0e:24:7a:bc:89:ed:70:38:1a:e2:
b0:d7:96:44:1d:60:42:2a:ff:dd:df:08:38:ef:c2:
ce:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A6:90:B8:13:38:2B:59:B0:C9:5F:C0:8B:DF:EA:58:1E:E5:87:BE
X509v3 Authority Key Identifier:
keyid:25:11:BA:D4:07:8D:46:72:AC:F4:32:42:99:21:8C:E4:85:5D:03:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/JRG61AeNRnKs9DJCmSGM5IVdA50.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JRG61AeNRnKs9DJCmSGM5IVdA50.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/D37D2DA070E311EF84610147762E951A/76F95E68502711F0AE35B7A9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f9a8:8000::/36
Signature Algorithm: sha256WithRSAEncryption
69:43:aa:c9:fa:f0:39:e3:aa:36:96:1e:ef:67:11:40:af:93:
4b:5f:9d:67:ec:3f:51:28:6e:24:c4:4d:e1:20:ad:92:82:04:
c6:81:0c:cb:78:19:42:2f:23:8f:9a:0d:79:25:f2:c5:6d:57:
1e:4d:56:61:5e:c6:79:57:5a:8c:e8:51:0b:93:8d:20:03:ea:
31:05:19:b2:63:24:05:1e:d5:ca:e9:65:d4:55:08:77:dc:53:
4b:b9:01:21:29:0a:7e:28:7d:3f:19:61:a7:8b:cb:c8:29:80:
47:12:6f:97:7d:89:23:ca:a8:92:a6:16:8a:b0:e6:67:01:4c:
b9:d2:7d:57:64:ce:a5:b7:2b:29:76:3d:c6:d3:20:b9:4f:1c:
05:a0:9f:d2:ae:21:ce:95:7a:49:47:e8:40:68:77:01:c0:c9:
96:7a:4f:00:89:0b:e6:97:ca:7e:bb:fb:0f:91:4e:04:07:e8:
3e:73:59:9d:a2:7c:34:db:4e:c2:ca:b3:8b:25:4b:bd:ea:1a:
4d:f5:ef:3d:9f:fa:15:05:69:28:df:de:e2:5e:e4:2e:8d:0e:
20:75:cf:c7:3d:fb:00:1a:e5:13:d0:cc:a9:f5:fd:bf:e3:6c:
00:ab:77:90:b7:44:df:8e:8f:9a:9e:e3:5c:51:b2:0c:3c:9b:
12:4b:c3:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 13:31:12 2025 by rpki-client