Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/52095DF05FB411F096F2DAB3DAE4EC9C.roa
File: 52095DF05FB411F096F2DAB3DAE4EC9C.roa (raw, json)
Hash identifier: qqRCYBfVIJEgG/QZG+zJeoYUjOGPM7NC8/n4FqTATeo=
Subject key identifier: D9:2B:CF:C1:46:0D:D8:6B:7F:84:36:6D:82:C5:94:85:F2:44:5B:0B
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 1551
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/52095DF05FB411F096F2DAB3DAE4EC9C.roa
Signing time: Sun 13 Jul 2025 06:40:53 +0000
ROA not before: Sun 13 Jul 2025 06:40:47 +0000
ROA not after: Tue 13 Jul 2027 06:40:47 +0000
asID: 62390
IP address blocks: 102.129.186.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.mft
rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 23 Jul 2025 00:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5457 (0x1551)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF, serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jul 13 06:40:47 2025 GMT
Not After : Jul 13 06:40:47 2027 GMT
Subject: CN=687354f5-e0ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:5b:f7:e1:4a:72:7d:db:63:b0:db:4d:e9:
17:9e:67:17:01:9b:14:3f:5e:33:02:e5:b3:64:7b:
18:09:3a:eb:db:6f:a6:0c:82:e1:9e:13:df:7b:c3:
ed:8a:75:ec:01:ca:b4:33:ca:12:51:86:46:44:0b:
0c:2c:aa:cd:0d:d5:03:fc:75:ed:a6:6b:ea:eb:d9:
5d:cd:e9:c1:58:64:38:23:48:12:98:b1:e9:4a:db:
35:77:81:a1:6d:d6:00:8c:2f:56:b7:3d:13:78:e1:
5e:8d:76:6a:ef:c2:62:cf:50:06:ab:f1:77:e1:0b:
00:1e:97:98:55:2f:fd:96:e0:5f:14:98:46:c0:e3:
1b:1c:38:98:e4:88:56:11:25:a0:1b:d8:0d:91:82:
e8:a3:c8:65:fc:68:ad:53:d4:27:72:3a:69:67:9e:
35:09:a6:bf:a8:61:2a:c8:0c:e4:64:46:c0:c0:0b:
1f:c0:cb:84:d4:f5:22:6c:8f:8f:0b:39:95:76:7d:
f0:f0:13:ae:cb:fd:74:39:65:1b:b7:fd:ab:81:24:
be:a4:fb:7f:04:56:ba:a0:f7:c3:ce:4c:93:e5:a1:
d5:cb:63:1a:e2:80:9b:f4:78:a2:f1:04:a9:de:74:
29:7b:7e:02:b8:9e:63:59:3f:87:1c:f1:eb:c0:e1:
22:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:2B:CF:C1:46:0D:D8:6B:7F:84:36:6D:82:C5:94:85:F2:44:5B:0B
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/52095DF05FB411F096F2DAB3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.186.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:00:71:c5:d3:b9:70:18:fa:1f:44:b2:36:ae:8f:ba:9a:7d:
8d:be:81:f1:ba:19:84:b7:02:0f:cf:40:38:91:b1:02:d1:7e:
ac:84:01:26:07:f8:bd:f3:32:52:7c:90:e7:e6:a1:e2:56:c4:
00:8e:74:e1:81:ef:16:1e:8e:aa:19:34:37:17:50:08:7c:30:
34:3b:13:93:f8:de:63:a4:d5:e9:bf:a6:4a:fb:c9:45:bf:cc:
d2:f3:8f:f6:b8:de:3a:06:cc:83:bf:64:e7:53:20:6e:b8:f4:
8b:88:af:22:e4:53:b1:5a:2a:66:29:cd:2f:f2:0c:52:b7:12:
ea:9e:3d:5f:9f:fd:b0:2d:45:3d:2b:22:95:1d:c2:fa:a7:f0:
48:1b:2a:a7:6c:d2:94:d1:d2:0e:14:84:41:6e:8f:ae:80:e3:
4f:bf:89:1f:b5:e8:0c:a6:7f:6d:0c:c8:d0:f0:ab:e2:0f:51:
aa:49:3c:46:e6:34:f5:de:14:18:fe:2c:09:b0:42:24:ca:3b:
40:d6:bd:d3:b1:53:5b:61:b6:ce:0d:7e:c6:14:db:2b:8a:67:
d3:c0:bf:0b:b4:66:80:36:d1:2e:68:98:1f:a7:54:8f:7a:6f:
60:d9:bd:7a:72:d9:e6:21:7c:e4:d3:20:be:fd:e0:1e:ae:8b:
83:26:d0:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 13:02:18 2025 by rpki-client