Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3666101/4AD5EC589BA211ECB39203765A40D577/99A1984E57F311F086ED54DEDAE4EC9C.roa
File: 99A1984E57F311F086ED54DEDAE4EC9C.roa (raw, json)
Hash identifier: ZM8T8/0Cbu1okxArEtkbxlaS5j1+sO4e39kgIitch78=
Subject key identifier: AF:F3:CC:8C:F9:9F:D3:2C:07:22:57:3C:B8:7E:82:15:AD:1B:64:CA
Certificate issuer: /CN=F3666101AF/serialNumber=35A13A473166C54745054B2EAFEF3959E39E9D6F
Certificate serial: 04E8
Authority key identifier: 35:A1:3A:47:31:66:C5:47:45:05:4B:2E:AF:EF:39:59:E3:9E:9D:6F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/NaE6RzFmxUdFBUsur-85WeOenW8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3666101/4AD5EC589BA211ECB39203765A40D577/99A1984E57F311F086ED54DEDAE4EC9C.roa
Signing time: Thu 03 Jul 2025 09:53:42 +0000
ROA not before: Thu 03 Jul 2025 09:53:36 +0000
ROA not after: Mon 03 Jul 2028 09:53:36 +0000
asID: 29286
IP address blocks: 102.67.168.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3666101/4AD5EC589BA211ECB39203765A40D577/NaE6RzFmxUdFBUsur-85WeOenW8.crl
rsync://rpki.afrinic.net/repository/member_repository/F3666101/4AD5EC589BA211ECB39203765A40D577/NaE6RzFmxUdFBUsur-85WeOenW8.mft
rsync://rpki.afrinic.net/repository/afrinic/NaE6RzFmxUdFBUsur-85WeOenW8.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Jul 2025 00:06:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1256 (0x4e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3666101AF, serialNumber=35A13A473166C54745054B2EAFEF3959E39E9D6F
Validity
Not Before: Jul 3 09:53:36 2025 GMT
Not After : Jul 3 09:53:36 2028 GMT
Subject: CN=68665326-5fe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ae:23:e0:5b:d5:51:95:82:8a:82:f4:56:84:
c3:c8:44:43:4c:45:50:d7:b4:a7:6c:04:8a:db:48:
d7:69:02:79:12:24:b5:8d:b8:e7:3f:1e:fc:d8:f2:
a3:4a:f7:3a:72:13:f6:f7:9a:e9:a8:a1:bd:b5:46:
7f:bb:0c:5e:1a:42:cf:c8:22:a0:c0:a7:6e:56:81:
a6:4a:13:09:b3:c2:c0:20:1e:3c:18:5e:0c:f0:e6:
f5:81:4f:13:e5:35:82:fd:b3:41:bf:8c:7c:aa:9b:
f5:ed:4a:7d:fb:f1:48:ce:22:d4:e2:31:ec:1e:c3:
89:6a:77:29:aa:58:b0:d5:3a:3c:a0:9a:a8:57:10:
f9:d3:bf:a8:cd:23:3d:55:bb:77:b5:83:74:8f:16:
28:b3:2a:ab:50:81:f5:93:99:7b:a2:36:8e:de:8c:
f3:8c:23:7a:d8:a5:23:fb:39:92:ca:d6:f1:6d:05:
23:14:f8:e9:b2:2f:19:74:69:69:b8:0a:c4:2f:e0:
bf:b6:ae:5f:53:6b:88:f8:c4:0d:54:3f:b1:12:c0:
39:9b:03:fc:62:7b:74:7f:25:0d:93:b8:e4:77:f2:
4a:44:6a:52:4b:61:fa:34:28:42:0b:f7:c7:7a:28:
84:da:ca:0d:32:04:0f:09:f0:ce:9e:7e:b3:a6:f6:
17:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F3:CC:8C:F9:9F:D3:2C:07:22:57:3C:B8:7E:82:15:AD:1B:64:CA
X509v3 Authority Key Identifier:
keyid:35:A1:3A:47:31:66:C5:47:45:05:4B:2E:AF:EF:39:59:E3:9E:9D:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3666101/4AD5EC589BA211ECB39203765A40D577/NaE6RzFmxUdFBUsur-85WeOenW8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/NaE6RzFmxUdFBUsur-85WeOenW8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3666101/4AD5EC589BA211ECB39203765A40D577/99A1984E57F311F086ED54DEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.67.168.0/22
Signature Algorithm: sha256WithRSAEncryption
82:9f:f4:d0:2c:5b:b5:9f:72:2b:2f:7b:c8:fe:7a:6f:62:01:
b6:4f:e0:96:88:b8:24:ca:b0:2e:93:62:fa:8c:3b:0f:a6:ca:
b5:33:81:39:50:4b:83:46:2d:39:a4:8f:3c:09:46:ea:ba:b7:
35:c3:4a:15:b1:41:cf:ee:03:42:42:90:01:9a:8a:d6:42:24:
43:d6:f7:0f:94:9d:3d:6c:3a:6c:0a:dd:df:51:40:10:1b:ae:
f7:fc:d0:3b:fd:68:e9:11:1d:d7:71:ce:ed:33:1b:42:69:1f:
22:1b:0f:04:4c:4c:29:54:23:c6:ca:c3:a2:1b:5f:4d:f8:ea:
70:3f:dc:5d:74:b1:8a:00:9b:50:f0:1b:51:09:fa:4b:23:fc:
70:89:d4:86:10:06:29:f8:a5:87:50:d8:b6:32:23:63:76:c4:
4b:db:e7:bc:0a:d3:00:d0:57:f6:36:d2:53:e1:24:c1:09:72:
d8:94:e2:b0:da:da:e6:3e:45:9d:20:58:aa:ac:9c:f0:3b:c3:
66:36:a7:a6:73:ed:c1:a3:85:df:97:8c:b8:ad:47:9d:32:46:
64:44:93:e1:21:65:a2:ae:96:21:fa:fc:6e:c1:fa:3f:32:6b:
42:f6:3f:45:04:42:86:1f:2e:b7:3f:4b:8a:3a:1d:fb:cb:96:
75:40:1e:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 11:53:15 2025 by rpki-client